GET /tds/kadam HTTP/1.1
Host: message-notific.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
 104.21.42.34
HTTP/1.1 301 Moved Permanently
Date: Sun, 23 Oct 2022 19:18:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 23 Oct 2022 20:18:25 GMT
Location: https://message-notific.club/tds/kadam
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jDKNhlQqB1D0EMc0eOTm9syKNgaaVlIwdkbkoau39lxZ83jeffjgMMjZ9cyGg0mAQIDb8QqzKRHbLBeO7uGmWlVYvK%2FgzlqGAPYeujDFXIgQA0sYmueUpEB%2FYhXOmw5lD8Q0uxy1lg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75ecd1876ef1b515-OSL
alt-svc: h2=":443"; ma=60
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "310C633350812C064E159275B6DBBDBA6D6A5991A54CCFCC23459320C6513572"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12604
Expires: Sun, 23 Oct 2022 22:48:29 GMT
Date: Sun, 23 Oct 2022 19:18:25 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
 143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 23 Oct 2022 18:26:53 GMT
Expires: Sun, 23 Oct 2022 18:57:47 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wGuL192yH0cg1MYHUC0Lghdd-S6T_chJhYbJLUVEI6N0ezD8qXroDw==
Age: 3092
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "78C2C60F2D752F572F1711E23AA3F82D5E5BCE1940064405F6F989886F6315DF"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15971
Expires: Sun, 23 Oct 2022 23:44:36 GMT
Date: Sun, 23 Oct 2022 19:18:25 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: tDaV+XgQIH88loe7gf2HWHsPm7fdaM/CWOpDZ+3Kh6trlXr0aZxIJmL4jJyXDYjuRg6wHEqzZGg=
x-amz-request-id: 9EGNSEB494YK34JK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 23 Oct 2022 18:38:05 GMT
age: 2420
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Sun, 23 Oct 2022 19:18:25 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Cache-Control: max-age=171379
Date: Sun, 23 Oct 2022 19:18:25 GMT
Etag: "63558df4-117"
Expires: Tue, 25 Oct 2022 18:54:44 GMT
Last-Modified: Sun, 23 Oct 2022 18:54:44 GMT
Server: nginx
Content-Length: 279
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 23 Oct 2022 18:43:40 GMT
Expires: Sun, 23 Oct 2022 19:41:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4I3GPBZkq-NeqUsc6EjMkakeD4HjGP_dFhq_LZF1GM-dk1n4mTgd3Q==
Age: 2085
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=171379
Date: Sun, 23 Oct 2022 19:18:25 GMT
Etag: "63558df4-117"
Expires: Tue, 25 Oct 2022 18:54:44 GMT
Last-Modified: Sun, 23 Oct 2022 18:54:44 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3218
Cache-Control: max-age=135715
Date: Sun, 23 Oct 2022 19:18:26 GMT
Etag: "6354f613-1d7"
Expires: Tue, 25 Oct 2022 09:00:21 GMT
Last-Modified: Sun, 23 Oct 2022 08:06:43 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
54.230.245.118
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=118477
Date: Sun, 23 Oct 2022 19:18:26 GMT
Etag: "6354bf4f-1d7"
Expires: Tue, 25 Oct 2022 04:13:03 GMT
Last-Modified: Sun, 23 Oct 2022 04:13:03 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tGSo1UCy6h80OO9RgiZiwJkgoe1Vi5WmQTJXmOpFBNW1F5Dk4kXTjQ==
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2LdDGB9+E5dm3U8pDXMGfA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
34.213.140.56
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iJC/4aWZ1zRLsjAAXtCXNTOtE+c=
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:18:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /bridge/intg.js?v=8 HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
 3.125.167.62
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 23 Oct 2022 19:18:26 GMT
content-length: 317
server: nginx
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
x-robots-tag: noindex
accept-ranges: bytes
cache-control: public, max-age=3600
last-modified: Thu, 20 Oct 2022 10:01:48 GMT
etag: W/"13d-183f4d782e0"
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3291
Cache-Control: max-age=90083
Date: Sun, 23 Oct 2022 19:18:27 GMT
Etag: "6354438b-118"
Expires: Mon, 24 Oct 2022 20:19:50 GMT
Last-Modified: Sat, 22 Oct 2022 19:24:59 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
|
GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sun, 23 Oct 2022 19:18:27 GMT
content-length: 13972
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61182885-3694"
last-modified: Sat, 14 Aug 2021 20:33:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 6403530
expires: Fri, 13 Oct 2023 19:18:27 GMT
accept-ranges: bytes
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75ecd19548d80b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3291
Cache-Control: max-age=90083
Date: Sun, 23 Oct 2022 19:18:27 GMT
Etag: "6354438b-118"
Expires: Mon, 24 Oct 2022 20:19:50 GMT
Last-Modified: Sat, 22 Oct 2022 19:24:59 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
|
GET /bridge/ao_loader.js HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 23 Oct 2022 19:18:27 GMT
content-length: 836
server: nginx
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
x-robots-tag: noindex
accept-ranges: bytes
cache-control: public, max-age=3600
last-modified: Thu, 20 Oct 2022 10:01:48 GMT
etag: W/"344-183f4d782e0"
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gomydates.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 17:10:21 GMT
expires: Wed, 18 Oct 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 439686
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /gtm.js?id=GTM-KMSJRW&l=adsLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 23 Oct 2022 19:18:27 GMT
expires: Sun, 23 Oct 2022 19:18:27 GMT
cache-control: private, max-age=900
last-modified: Sun, 23 Oct 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 49763
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /css?family=Lato:400,900,300%27%20rel=%27stylesheet%27%20type=%27text/css%27 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 23 Oct 2022 19:18:26 GMT
date: Sun, 23 Oct 2022 19:18:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
54.230.245.118
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93956
Date: Sun, 23 Oct 2022 19:18:27 GMT
Etag: "63544646-1d7"
Expires: Mon, 24 Oct 2022 21:24:23 GMT
Last-Modified: Sat, 22 Oct 2022 19:36:38 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Pn6lDSJLLMBBMS0PMwSvgiXwmwvzNZ0tv2IdveUcKNYxDQ7VcxNVIw==
Age: 6466
|
GET /ufis/rtr?referer=https%3A%2F%2Fgomydates.com%2Fjump%3Fsubid%3Dkadam%26tds_host%3Dgomydates.com%26clickid%3D%257Bclickid%257D%26subid2%3D%257Bsubid2%257D%26tds_rt%3D%26tds_ao%3D1%26tds_id%3Db0506rie_jump_a_1601039183809%26_tgUrl%3DaHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw%26tds_p_campaign%3Db4979kas%26tds_campaign%3Db0506rie%26tds_cid%3Dc11ef64d391e3294a024fc4209717fd0b4727cb9%26affid%3D9559e5a1%26id%3D23302%26utm_source%3Dintc%26dci%3Dec2f95c0edd463aa2120ca763a6cf5bca0e4c58e%26tds_ac_id%3Ds0624kas%26s1%3Dps%26tds_oid%3D23302 HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sun, 23 Oct 2022 19:18:27 GMT
content-length: 10
server: nginx
x-powered-by: Express
access-control-allow-origin: *
etag: W/"a-1IPl29QMdgDJc1c5Tr58fnR67p8"
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
GET /ufis/recaptcha/inject/gomydates.com?placement=default&doc_location=https%3A%2F%2Fgomydates.com%2Fjump%3Fsubid%3Dkadam%26tds_host%3Dgomydates.com%26clickid%3D%257Bclickid%257D%26subid2%3D%257Bsubid2%257D%26tds_rt%3D%26tds_ao%3D1%26tds_id%3Db0506rie_jump_a_1601039183809%26_tgUrl%3DaHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw%26tds_p_campaign%3Db4979kas%26tds_campaign%3Db0506rie%26tds_cid%3Dc11ef64d391e3294a024fc4209717fd0b4727cb9%26affid%3D9559e5a1%26id%3D23302%26utm_source%3Dintc%26dci%3Dec2f95c0edd463aa2120ca763a6cf5bca0e4c58e%26tds_ac_id%3Ds0624kas%26s1%3Dps%26tds_oid%3D23302 HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sun, 23 Oct 2022 19:18:27 GMT
content-length: 27
server: nginx
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1b-rve8vgDVBr+K40tPRpzMabcB/bQ"
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2197
Expires: Sun, 23 Oct 2022 19:55:04 GMT
Date: Sun, 23 Oct 2022 19:18:27 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2197
Expires: Sun, 23 Oct 2022 19:55:04 GMT
Date: Sun, 23 Oct 2022 19:18:27 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2197
Expires: Sun, 23 Oct 2022 19:55:04 GMT
Date: Sun, 23 Oct 2022 19:18:27 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2197
Expires: Sun, 23 Oct 2022 19:55:04 GMT
Date: Sun, 23 Oct 2022 19:18:27 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2197
Expires: Sun, 23 Oct 2022 19:55:04 GMT
Date: Sun, 23 Oct 2022 19:18:27 GMT
Connection: keep-alive
|
POST /tds/interlayer?handler=FrodiData HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 1592
Origin: https://gomydates.com
Connection: keep-alive
Referer: https://gomydates.com/jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:18:27 GMT
server: nginx
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
accept-ch: UA, Platform, Model, Mobile, Arch
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7a675ac-f55a-4071-867b-fffb2f9fabed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7762
x-amzn-requestid: 5c275a39-95dc-4329-9483-44ca93719be2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aO1dKGS5oAMFR3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f6920-2b700b217832bcd257e0f619;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 03:04:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ShsGMLBfS7cs-LpXBQPQHWvf2ppuoPPIEVMDmaEjrGgoSHbz2z03Mg==
via: 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 06:27:20 GMT
age: 46267
etag: "c4c9898711e33fb02374657dd18df8a41c78b4cb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd337e0f9-4135-4fa1-9843-c609356020a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10036
x-amzn-requestid: b1f0e0b9-6fc6-4b7c-a9b0-55845cdfd2d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: abR9aEvjIAMF22Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63546388-72742b3a1279d76e2e842930;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 21:41:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 90q23XmFTygl90mCmT8p2Qi7BY2K2gjg3apZpTreMxYFpgT-716CDg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 21:50:45 GMT
age: 77262
etag: "066fb94a6ae38e57d67001cc319eea17f837d511"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F412682e9-14c9-40e4-bfec-f73f656f5e10.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 5348
x-amzn-requestid: d44ded7c-15b6-4c30-a810-4af1edbb9bc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aPYYZEnboAMFcMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634fa102-6bdd3c1a2fa437b106f8ea79;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 07:02:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dx2yJ8T_lM1OMR3h0DUtiV359392U2UyReU6hi4tOxxbvFR0iZ_kAg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 10:33:33 GMT
age: 31494
etag: "4b5e283e4397985f837ab28d94c167ddfdb26c7c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c95e4a-b411-4326-8723-bceab59b6d74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8109
x-amzn-requestid: 39c9edcc-ea64-443e-82b3-230e41edbcb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aFhHBG_HoAMF7Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634baef9-7d6e66cd2012a3e8607f0d28;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 07:12:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BqGXfTDNR6-sNzqh1nIScjC2v2TCyOp0wY8AIXaKY3FdT4VH3ckBdw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 00:13:12 GMT
age: 68715
etag: "b488761c8ce781a44dcaf2e515ef548480dcd1bc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0856e94c-65e7-489a-95b5-cc37407bf90f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 12031
x-amzn-requestid: b15d6e4e-4880-4686-80c1-ba49f705631c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aFgJtHZHoAMFsMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634bad71-3ef572702125f3b32ceece12;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 07:06:25 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lH9TBIbvcDBvZlMi2a8yZ2iRcGCwJ7P0QoVvLVAjkCsVExNMi_UlRw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 10:35:08 GMT
age: 31399
etag: "50d9f1642c3c47504fb2d4086a40ae8fb9479b50"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /landings/23302/images/bg-web2.jpg HTTP/1.1
Host: cdn3reference.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn3reference.com/landings/23302/css/62785c7b6ca9a16c41ce1f973cf812b4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
54.230.111.43
HTTP/2 200 OK
content-type: image/jpeg
content-length: 134448
server: nginx
date: Sun, 23 Oct 2022 19:18:27 GMT
last-modified: Tue, 02 Apr 2019 14:25:38 GMT
etag: "20d30-5858ce9347c80"
accept-ranges: bytes
cache-control: public, max-age=604800
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hBuGs2MX8yInKoF3RPRBq1leeY1vx23Kk6OkcDaN5-aMs4UMCKu3wQ==
X-Firefox-Spdy: h2
|
GET /firebasejs/8.6.8/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.163
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10869
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 00:45:27 GMT
expires: Sat, 21 Oct 2023 00:45:27 GMT
cache-control: public, max-age=31536000
age: 239580
last-modified: Thu, 01 Jul 2021 23:11:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /ufis/webpush/track?uaDataValues={}&networkGroup= HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1199
Origin: https://gomydates.com
Connection: keep-alive
Referer: https://gomydates.com/jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sun, 23 Oct 2022 19:18:28 GMT
content-length: 30
server: nginx
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1e-/3vWFKUu6vRwhSyyyQNEIl/D/6U"
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
GET /ufis/webpush/sw.js?uaDataValues={}&networkGroup= HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sun, 23 Oct 2022 19:18:28 GMT
server: nginx
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
etag: W/"35e5-ggvNzPbrS4iAvrqVuh7HqGhzYqo"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
POST /ufis/webpush/track?uaDataValues=%7B%7D&networkGroup= HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gomydates.com/ufis/webpush/sw.js?uaDataValues={}&networkGroup=
content-type: application/json; charset=UTF-8
Origin: https://gomydates.com
Content-Length: 1216
Connection: keep-alive
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sun, 23 Oct 2022 19:18:28 GMT
content-length: 30
server: nginx
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1e-/3vWFKUu6vRwhSyyyQNEIl/D/6U"
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
GET /ufis/main.js?ippContent=null&wpContent=null&pwaContent=null&doc_location=https%3A%2F%2Fgomydates.com%2Fjump%3Fsubid%3Dkadam%26tds_host%3Dgomydates.com%26clickid%3D%257Bclickid%257D%26subid2%3D%257Bsubid2%257D%26tds_rt%3D%26tds_ao%3D1%26tds_id%3Db0506rie_jump_a_1601039183809%26_tgUrl%3DaHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw%26tds_p_campaign%3Db4979kas%26tds_campaign%3Db0506rie%26tds_cid%3Dc11ef64d391e3294a024fc4209717fd0b4727cb9%26affid%3D9559e5a1%26id%3D23302%26utm_source%3Dintc%26dci%3Dec2f95c0edd463aa2120ca763a6cf5bca0e4c58e%26tds_ac_id%3Ds0624kas%26s1%3Dps%26tds_oid%3D23302&uaDataValues={} HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sun, 23 Oct 2022 19:18:27 GMT
server: nginx
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
etag: W/"5a041-UbpfMy5dJZn9tmicKFHj98ELGEU"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /js/dc_img.js?v=8 HTTP/1.1
Host: cdn3reference.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
54.230.111.43
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sun, 23 Oct 2022 19:18:27 GMT
last-modified: Thu, 29 Oct 2020 09:19:39 GMT
content-encoding: gzip
etag: W/"1e8-5b2cbc78da216"
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: M-xoOFQ557MBDc_s3XvxxQgtltYPlfM1BS5ZSV5Uvv2st2pV4vwsIA==
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /css/webPushMotivationPopupSmall.css?v=2 HTTP/1.1
Host: cdn3reference.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
54.230.111.43
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sun, 23 Oct 2022 19:18:27 GMT
last-modified: Wed, 31 Oct 2018 08:29:51 GMT
content-encoding: gzip
etag: W/"1340-579821b240313"
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JfoaCQ6qpCtTKBbhntM8VWeAkUweKcREScF3VIF_DCP4yp0dlf90jQ==
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /integration.js HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sun, 23 Oct 2022 19:18:27 GMT
server: nginx
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
etag: W/"712-Q+yk3zBuTn4ZI0qMEgCg2J4yFEI"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
Blocklists:
- fortinet: Phishing
|
GET /bridge/frodi_data.js HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 23 Oct 2022 19:18:27 GMT
server: nginx
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
x-robots-tag: noindex
accept-ranges: bytes
cache-control: public, max-age=3600
last-modified: Thu, 20 Oct 2022 10:01:48 GMT
etag: W/"19f8-183f4d782e0"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
Blocklists:
- fortinet: Phishing
|
GET /ufis/pwa/sw.js?uaDataValues={}&networkGroup= HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sun, 23 Oct 2022 19:18:28 GMT
server: nginx
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
etag: W/"8a5-jxVx3HNgm8c2Bvxd6GQ6e3r2rSU"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /tds/kadam HTTP/1.1
Host: message-notific.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
172.67.199.188
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
date: Sun, 23 Oct 2022 19:18:25 GMT
location: https://gomydates.com/tds/ae?tdsId=s0624kas_r&tds_campaign=s0624kas&utm_sub=opnfnl&s1=ps&utm_source=intc&affid=9559e5a1&subid=kadam&clickid={clickid}&subid2={subid2}
access-control-allow-origin: *
set-cookie: qwerty_kadam=0; expires=Mon, 24-Oct-2022 19:18:25 GMT; Max-Age=86400; path=/
cache-control: max-age=172800, private, must-revalidate
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9lgmsX%2BuoE43V92%2Fjqyd4WQ6eV69snBT3hRkoXraq0H4BXBJNz96IiICKj4WTf6Zf4TSwfX07F4jkr81%2FzT7c%2BiSZEfRHj80LbRyw%2BC%2Fckkdxxdhjw4c%2FTugWKYPyw3nc2WSaEi7oQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75ecd18a89cb0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
Blocklists:
- fortinet: Phishing
|
GET /tds/ae?tdsId=s0624kas_r&tds_campaign=s0624kas&utm_sub=opnfnl&s1=ps&utm_source=intc&affid=9559e5a1&subid=kadam&clickid={clickid}&subid2={subid2} HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
3.125.167.62
HTTP/2 302 Found
date: Sun, 23 Oct 2022 19:18:26 GMT
location: https://gomydates.com/jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302
server: nginx
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
accept-ch: UA, Platform, Model, Mobile, Arch
set-cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; Max-Age=31536000; Domain=.gomydates.com; Path=/; Expires=Mon, 23 Oct 2023 19:18:26 GMT; Secure; SameSite=None
dm=fe450dd0d1dadc615429144d33241f42; Max-Age=432000; Path=/; Expires=Fri, 28 Oct 2022 19:18:26 GMT
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /ao.js HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 23 Oct 2022 19:18:27 GMT
server: nginx
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
x-robots-tag: noindex
accept-ranges: bytes
cache-control: public, max-age=3600
last-modified: Thu, 20 Oct 2022 10:01:48 GMT
etag: W/"1509-183f4d782e0"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
Blocklists:
- fortinet: Phishing
|
GET /jump?subid=kadam&tds_host=gomydates.com&clickid=%7Bclickid%7D&subid2=%7Bsubid2%7D&tds_rt=&tds_ao=1&tds_id=b0506rie_jump_a_1601039183809&_tgUrl=aHR0cHM6Ly9nb215ZGF0ZXMuY29tL3Rkcy9hZS90Zy9zLzlkYTA2ZDNlZTc0N2JmYzJjNGU2ZWNmYzBkZWQ3MzhlP19fdD0xNjY2NTUyNzA2NTIxJl9fbD0zNjAw&tds_p_campaign=b4979kas&tds_campaign=b0506rie&tds_cid=c11ef64d391e3294a024fc4209717fd0b4727cb9&affid=9559e5a1&id=23302&utm_source=intc&dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e&tds_ac_id=s0624kas&s1=ps&tds_oid=23302 HTTP/1.1
Host: gomydates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: dci=ec2f95c0edd463aa2120ca763a6cf5bca0e4c58e; dm=fe450dd0d1dadc615429144d33241f42
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
|
3.125.167.62
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sun, 23 Oct 2022 19:18:26 GMT
server: nginx
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /landings/23302/css/62785c7b6ca9a16c41ce1f973cf812b4.css HTTP/1.1
Host: cdn3reference.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
54.230.111.43
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sun, 23 Oct 2022 19:18:27 GMT
last-modified: Tue, 02 Apr 2019 15:21:31 GMT
content-encoding: gzip
etag: W/"5c1-5858db10f34c0"
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jRMvh6yICtJEw1MQ5q4hUJNd9UU_66ZT2Qn9VOevv6WHJmL0ksW6Sg==
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /fp/fp_ec.js HTTP/1.1
Host: retarget2core.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gomydates.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
52.28.1.52
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 23 Oct 2022 19:18:27 GMT
server: nginx
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
x-robots-tag: noindex
accept-ranges: bytes
cache-control: public, max-age=3600
last-modified: Thu, 20 Oct 2022 10:01:48 GMT
etag: W/"4bd-183f4d782e0"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
188.114.96.1