www.putfog.sa.com/kwrxxtku/jvldr875802vain/tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
104.21.93.184200 OK 492 B URL HTTP/1.1 www.putfog.sa.com/kwrxxtku/jvldr875802vain/tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
IP 104.21.93.184:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 839ca30439b004620b5e3b74617d8a2e
96bd4060f4967065552f086dc415b41edec54dd9
5a8202e0eb62d9ddcca6ed32c6e24cd3300cba3e7b4bf996ff8a7aea8fa29c85
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /kwrxxtku/jvldr875802vain/tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yEfM23Iwds7j6an2CiDAP%2BbHwJKvaDz9vf%2BXtH12rlreesuklrCKeD%2FDolGHI8n4T4UKW6ZZTxNdV1AawagHXwYwBNTmm0Gzk9MaxKVWJoN85r%2FoMMPQUwUU66AZUYi6cYfuEw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750dd66abf80b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 17:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JEpLXjffo1P_ULNvUOT40S91gYvSpZw3REAHrDt1WV-F4pHEW59gMw==
Age: 2063
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8841
Expires: Mon, 26 Sep 2022 20:17:02 GMT
Date: Mon, 26 Sep 2022 17:49:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: E7c-mNHwOdLkZx-DVYtGxLJIO8oSpPwU3xUEObEwcgBpeb1W1DyKNQ==
age: 47666
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 17:49:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-22484186-3
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-22484186-3
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 9be196e1cc700ac6517859bbf296259e
dbf79417268f5acc4e2a3f2dff193dc38d537770
000378d1353c577ed16da03338f59f6de2f770b54e0aa78a3229cd5076fd95de
GET /gtag/js?id=UA-22484186-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 17:49:41 GMT
expires: Mon, 26 Sep 2022 17:49:41 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Sep 2022 16:59:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42300
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.putfog.sa.com/jquery-1.11.0.min.js
104.21.93.184200 OK 33 kB URL HTTP/1.1 www.putfog.sa.com/jquery-1.11.0.min.js
IP 104.21.93.184:0
File type ASCII text, with very long lines (32341)
Hash 95fe3f4dd117c33f6015e1c3d6df1d0d
d5b8856932d1ea63f51824de0bb50670d2e960bc
e6945ac3f1927f242a9fd7a5cf67720f7763888127a7427eb24ffc52019d4b16
Analyzer Verdict Alert quad9 Sinkholed
GET /jquery-1.11.0.min.js HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/kwrxxtku/jvldr875802vain/tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:03:39 GMT
ETag: W/"62e8238b-1787d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7ZCPHtZQBqDdnJlG80iIakKCYuWfAHHvD0GhcZasVXI5W3i2BdAw8uZntUZS7y7oObpuQ%2FV5UFqUt5t3Sml%2Fh64U6uV3mqqIwueUhz2ie6ob9%2FGGhsd8PUr3bXaQRQi3dCQQaA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd66caa30b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/offer.php?id=439&sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
104.21.93.184200 OK 293 B URL HTTP/1.1 www.putfog.sa.com/offer.php?id=439&sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
IP 104.21.93.184:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 96fb51f7887a8fbfe5df9c3844163c64
77ee70b2483c7b31c1bcc0be80bf2da1a4bdc9fa
22348742ccdab14847d98818f422d7dbea520a757a5cd20dc9c990fe9d7be55a
Analyzer Verdict Alert quad9 Sinkholed
GET /offer.php?id=439&sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/kwrxxtku/jvldr875802vain/tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=apyNBE1LOitNPcgI2wbE3Z7EZ%2F3cVCzje7i6Z%2F%2FFZB1JbPi%2F8%2FTJPmD%2BLHwIuLud4yyHpgkZ0EMphlwNPctJdZeolsWJxDZIGbH5pQjA%2Bd9GlVWrO%2BGcJQ0%2FBWuP%2BWDrt7iQjg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750dd66e6cadb505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 17:10:46 GMT
Expires: Mon, 26 Sep 2022 17:33:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pz5hQAWOC2NXjcKq1iK0LTpA5h36rRIVp28Xph4W1mBp5024B84wTQ==
Age: 2335
www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
104.21.93.184200 OK 6.3 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
IP 104.21.93.184:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (863), with CRLF line terminators
Hash 8168d887055bddd19297bb98cb6a52a7
66b63bc0cc41186dd0945745b8195a40ee54769c
7ccc65acc833f2c1b74fb4be8a679cd4977a2211452e92002edb3de4a2f8eba8
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dt%2BK9SdsMwzbrDJa5CGN%2BVzDLl2OC8yXcbvM%2BHsvEoV4dKdor7xiHOlU3lTemGRF4NL%2Bz%2BdssqgN6xUHZEIIfUzzorOlkyw7p7ukLLITLmbdeEHHnhbRj6Wnj3QXjDBMdVhXvA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750dd66f6e11b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5adb7eb1d103eadeeafac36e663ffdd3
23b784388dd634fa736cd60aed71570661e73d02
5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6089
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:41 GMT
Last-Modified: Mon, 26 Sep 2022 16:08:12 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
www.putfog.sa.com/clicks/AgelessDating_files/ge.js
104.21.93.184200 OK 211 B URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/ge.js
IP 104.21.93.184:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 07450fca2774490aef4165ddd2b70ee8
c8bddc11cbd4b4071f52693d71f23ee83c0a2b07
16cee0667a19dd81fa9184280942407bff96b4b72ebbc4a254143529cf314132
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/ge.js HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-f3"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yOTkafwsmtt49vXzkiChgZBVkNBaMs%2Bv8hmGnGPuv7r8WrU%2BP2FjcQBOeqX5a5C0Is3wACeI6As3F2a16PdexhaZH7d25gYw52w0RWZRAcqNTDBYn4t5YAVdgxOoP1rtnZo5ZA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd6702f38b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/global.css
104.21.93.184200 OK 1.7 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/global.css
IP 104.21.93.184:0
File type ASCII text, with very long lines (5468), with no line terminators
Hash 13913ecc70456624dd231b39589d9ede
fa5c01977124ccd181890c6b8b2b2dbd5988df04
c1da5860196bb00bc296c443c30424bbffe0afcbde045c858c433b12abae1247
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/global.css HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-155c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KNGMIW5RoWQqXe6htqJNIgpYxfxTB687JUTQlhPduoV9qRkJBFShM3sFjY%2F%2FTObtxJu3RtAVP4HehFU%2FNQtT7axf%2BGqILo6Wn%2Bg9VObBsKwhHN4xkjYtCp1PYaOqxaQdEX%2B54Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd6703a00b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/reset.css
104.21.93.184200 OK 510 B URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/reset.css
IP 104.21.93.184:0
File type ASCII text, with very long lines (894), with no line terminators
Hash 26fc6a8ffc234c2ddb7a1da486966916
fa51d889fd9aaa92a46db62b825f37dec89ebfa6
d27eba24b3cbbc4a40eb5ff2d89d3ad8862e66f913bcf6065ee287f97945479a
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/reset.css HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-37e"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BNWJexCJDLgELLcAyBe%2FiFytn6PWS68TjlyxHaWN%2BT3yneb5W3BnlcMiFRXGgZNhz3nqNQ0hUN9OkckBAU%2FCcETlegoGPKDUagU18ntI1%2BIIsTDsWehWzkWZ6c%2BrYotrItbixg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd6703bd00b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/webfont.js
104.21.93.184200 OK 5.4 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/webfont.js
IP 104.21.93.184:0
File type ASCII text, with very long lines (2134)
Hash f975e48f58032378726b1c12d09bdf52
1106ac0697fd30eb74ea30bbedb874677a216d6f
03bfd2ddd973b309112895fd3d2d37de1ee1cda79c0bbb70284300e6d9318683
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/webfont.js HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-3384"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UP2WxHvItO%2FbVAv2Lb%2BdtIeexBWcV4HfE8tMjmam95p5RQ8A9CKW4j9hCUzPukUt%2FytWj56eLH1nW3W%2BwwJCD%2BTdn842HFjEcbQcpRob7Rpo4%2FIbIKfcWND8dOsl1PSbHfSEWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd6702951b518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/amplitude-7.2.1-min.gz.js
104.21.93.184200 OK 19 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/amplitude-7.2.1-min.gz.js
IP 104.21.93.184:0
File type ASCII text, with very long lines (60877)
Hash ef9c6533692df9c6f6c589159851ac5a
4ff2cb0a5efdc7767f50bec1c09c52645f25b56f
c4f0240521da94ee905d751b4e3fb1b15494b09aa4c7703aa41f1fcca7693fb5
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/amplitude-7.2.1-min.gz.js HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-edce"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E3bsBRPs%2FahmG%2BpOOo8gPuOjCedjD9GawoxjuqXTg8F9qFHrH%2BjrnXuPhhpW%2F62G6QSWYzb0LlHCJIGAQWm9vIYWXSMCLzNfHcxi4%2BHxnIGoYvT5XTctFJ2fWDTJ8WAnvxZjcA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd6702bc90b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/gtm
104.21.93.184200 OK 128 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/gtm
IP 104.21.93.184:0
File type ASCII text, with very long lines (3691)
Size 128 kB (128150 bytes)
Hash 6aff0d55a06a718e0a8cee268d62c839
d1266034ba6b5a25860ee4314bb0627216411169
3b39136691710a356c07eaec1658d78beb689f20a4d1a2731c69aaee00b4206d
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/gtm HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:41 GMT
Content-Type: application/octet-stream
Content-Length: 128150
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: "62e82401-1f496"
Accept-Ranges: bytes
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3%2BGEJjD8ilUAw5%2Bmve3COVwbeWBnOTZx%2F0NMul5zsDaWyHg8jPONFBww7iKa2hhZQYnoc803WzyYG%2FJJBjQeEA%2BjjYqg0FWtN0NE2CYIazRnGh4CpZd2KJEe%2FCQzg9yqf%2BvQ3w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750dd670284c0b3d-OSL
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/forms.css
104.21.93.184200 OK 921 B URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/forms.css
IP 104.21.93.184:0
File type ASCII text, with very long lines (2703), with no line terminators
Hash 432f2422f61e5f6b055a9c4872aece3d
db2c5fc64cc2b974f6d9de7b71761e0d2754b6f9
df2084efb51ce2335e86adfbd443e6b2f52b0a0a9eee20bf44406d875c852ea8
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/forms.css HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-a8f"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q7M8As1bE%2F1i2mhl%2BgHFciq3BPXbynL%2FuykHUB%2F3tKWcxlB7Lq%2BlTB4eVWASeWjf%2FxO6vvz7PyMkOL120U5mJC28t%2BfPW3VnGLGbSIQpLdlkfZkebyohcR7LcFoDInHCR9siHg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd6710869b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/buttons.css
104.21.93.184200 OK 963 B URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/buttons.css
IP 104.21.93.184:0
File type ASCII text, with very long lines (3585), with no line terminators
Hash 09ecbd2cfcf74705c625384a5a56acf2
6d647122b86863c26b05dbb433d6c4ea4d2dd068
95249c57a184fd7b72b9a1a1d04d5a76278a379906ea5de7e4c3fd52492bd57d
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/buttons.css HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-e01"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yKedXyV6CHFwAK%2Bl0bFigwieYCMniIIzOLcM%2BGteGosLSZQtNg9sLtPuD3s6x1sh2On3mYwPHuIVo3y%2Fw2sCRU8Z1OAlE1eB2ly2LHfD9sAptH3yd7UZKH4IwxALNBwNHT6viA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd6711b0eb517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/global
104.21.93.184200 OK 7.4 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/global
IP 104.21.93.184:0
File type ASCII text, with very long lines (1317)
Hash cf1201a81ff04c50cfb03094ff9dd473
8b3b83a2899c02be1ca04ad069ea9bcee93096e6
6a976576c30c8355b268f0503b84d260c4f3856bc7b5ce55cacc0ff4b5904595
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/global HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: application/octet-stream
Content-Length: 7443
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: "62e82401-1d13"
Accept-Ranges: bytes
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0RiQoCjwkaCh3Zr8QjiMHZQxD5IhPCCx17Yc2OJxMkHCEy32%2Fj32lEPnhqiOCqzFtQehL1QCx8tTIdk%2FWT40%2FJA9TYu22NQ7fUAlaICZpDLevrXO0ymnEnOGx9CwVd4Zft1fAw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750dd6713ac9b518-OSL
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/splashOptIn
104.21.93.184200 OK 1.1 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/splashOptIn
IP 104.21.93.184:0
Hash 69327d0f3b3222c7e5002db282b169b6
9b9b4edf4b7792e391d7b16758c2035300c8fa55
720120770ff58ef6c208234657e203891dc0691104f374e6ce2eed8b017b532d
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/splashOptIn HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: application/octet-stream
Content-Length: 1102
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: "62e82401-44e"
Accept-Ranges: bytes
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6iE6HehU7att9u0jKRH2O0d29ZwHg5TkadHS2TKiGwAEf4VjBG2sGU0xXwjmAaLG4qgEG1d24BQS0C%2BDr4bjS0eFsNi9wBE%2FbWOaEglOPnSSDxU35Sef8nwSS2cYYRijVzzxTw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750dd671ec1ab517-OSL
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
104.21.93.184200 OK 655 B URL HTTP/1.1 www.putfog.sa.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 104.21.93.184:0
File type HTML document, ASCII text, with very long lines (1238)
Hash bc3ba461c8a309acf61b6d9c41cb6236
88482306ecc9258d5e9cbb9ba5314dab223a5db4
31331f1b1519882d2f2fb60367708fd56a7a1ec0bddd0554c635547179c7dc8f
Analyzer Verdict Alert quad9 Sinkholed
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 17:11:54 GMT
ETag: W/"632b45da-4d7"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CB8r2GIGNtSwVAybjTJ4iwO4k5GpEnMh6EZ4hAjnEKkKYO8eLJOGA4i9m6cpjCDMvnUVbH9su%2F9yAu7UGUJ9ylrKsTSARnRL8n%2BrM0pgcr2fUZRf9LH%2BR1O94Bd1ndftlHa78w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd6728cd5b517-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Wed, 28 Sep 2022 17:49:42 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
www.putfog.sa.com/clicks/AgelessDating_files/css.css
104.21.93.184200 OK 585 B URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/css.css
IP 104.21.93.184:0
Hash 3d2edc87de2c95441d7199fa6ce20b60
b8f1bbd5ed5b834c3bd4ce8c08abff2ee2381cf0
fdf2a06be34c437af33f344974f59bdb332758d03df25d648488be54c29f086f
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/css.css HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-fb0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=on7iT7famZBiaVR6qLbEU3r2MEXaSiH%2BoNab%2B4TRXShWqE7Im0VkiJAiegzOFOhf%2BEM0BroRvwp0bdlAJaQBdvZfAtgS1bRixzVTYOj2WCZwdB%2BlQUKQI2FIrOD%2FjVVocI0trw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd6720c1db518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/loadingCube.css
104.21.93.184200 OK 500 B URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/loadingCube.css
IP 104.21.93.184:0
Hash 6a01934a03b384c530b03c989bfda7cb
44a66a50fa18c5e7b05ee7071de19ae6041b5983
ea0b4f2c37fac1cbeee89ed527350168764f604dd845dafe8f8bce1d6596b34c
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/loadingCube.css HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-996"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=spPBZuJxymOE1TwvhC4l5aW2G4gQK2AICKvUdedZniazLlVD0Z%2FQjC42H1z9Fj%2BMa02%2F74N4S723qHFCuWqUXtVJWv%2B5gKiXjQMiRPJr49YiNYT7Whus0rJIZkJb0wqlCUUstg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd671e999b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/splashOptIn.css
104.21.93.184200 OK 1.2 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/splashOptIn.css
IP 104.21.93.184:0
Hash 907d02a5cd975845756a6de54399fb43
5e7fa1d06a3fcd3ed4e0ddd5e7b91f0b6feb6443
0ffbf3780d1e851d1d724f83a88786bc46f0f547ab21b8c9cad075b478cbc29e
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/splashOptIn.css HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-1289"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LrT5wQ8yVPHTjFIKX0HUqgErTd7Q7HnskBBbjnSvcSqV4hnrLnH60ucPNJbQhA2Xr2oxNNZhJjAw8p4zNrdCLsee9SC%2Bm0TghYUoHw4ywO289XE5ZuAvFl%2FMqJqYJI%2FDagZ%2BrA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd671ea180b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/openSans.css
104.21.93.184200 OK 1.8 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/openSans.css
IP 104.21.93.184:0
File type ASCII text, with very long lines (20732), with no line terminators
Hash 51c16be0ee73a03fc225feb19316e852
53254dfd00e01d64f7209c3eb2407d50eddd051e
4b5e60f487b878b021efbdeb0d40ff56a36cba601dfd4567db71446fc4e69cc0
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/openSans.css HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-50fc"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RzBaOylzDLRVvQpOFk48myLJXZ9Swstmq6b6CrY2PbmGSzcp5mDLm1n7yPRkGsehvJ0GHv5lfMzYyTN%2BH33oO6h2aF%2FzGpeDpQKUZkYFCVw6vJTdTdnNI100rnVx4N5Urbij3w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd671adf80b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
54.191.251.76101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.191.251.76:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nCmtCtuSuHs1VaFdpND/dw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FFFL75BMrzCMbKt2QjbQ2aDDSJI=
www.putfog.sa.com/clicks/AgelessDating_files/jquery-2.2.0.min.js
104.21.93.184200 OK 30 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/jquery-2.2.0.min.js
IP 104.21.93.184:0
File type ASCII text, with very long lines (32069)
Hash 561d2cf94e20516fbe1b51e65f61611d
4eeb9217a427312d584ea70657a0169dd5bda19e
dad7de6bf4feb86397d1c118c851307d016117d0b0104ee32551f47d04a9d2d9
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/jquery-2.2.0.min.js HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-14e55"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4QI9v6MGd6nHgkEMNfKYwNHOVC%2FulWVjcEZGX9sjzNSIVMcdbvZ556PQ00oY7U83oBJUU2oowrZ1KuwBR82vCnYDHGO9v%2FuY5AmiqML45FFcGYFsV4Aqw%2FqpdyOycj8P%2FFg7tQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd6712d380b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/placeholders.jquery.min
104.21.93.184200 OK 4.3 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/placeholders.jquery.min
IP 104.21.93.184:0
File type ASCII text, with very long lines (4289), with no line terminators
Hash e3a38f9f90665f041fc2f74a7783d11f
36a00e17f15f30e9bb864d42acf2614f0a6085af
76b055d98452d34162573203254cbdaa9938774e55fae84d7e8a41b912522687
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/placeholders.jquery.min HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: application/octet-stream
Content-Length: 4289
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: "62e82401-10c1"
Accept-Ranges: bytes
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UhzC5UXfSSVMAU68MkhjQn4cyAqz4S6Kfriy%2F5pNzDU%2BnemZiOfmutL9Zr7ATuErVmlYXzGFhzp0fGqjKYqFJZJ3zSKwt5qRpkZy74mUOXN4J0Wf7JFnvHIOrNrwRxDRuRvr3g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750dd6728cdab517-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.putfog.sa.com
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 425734
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,700
142.250.74.10200 OK 592 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:400,700
IP 142.250.74.10:0
Hash fb296e9a415e72d4395d2be2dd679085
f23a16fd98073b2bce91d58f06d4467044ed62fc
7683e392c0712d01ceff8e729e6aace131f8acf754873520a8f3749d2473678b
GET /css?family=Roboto:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 26 Sep 2022 17:49:42 GMT
Date: Mon, 26 Sep 2022 17:49:42 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.putfog.sa.com
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 425734
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v13/k3k702ZOKiLJc3WVjuplzOgdm0LZdjqr5-oayXSOefg.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v13/k3k702ZOKiLJc3WVjuplzOgdm0LZdjqr5-oayXSOefg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16276, version 1.6554\012- data
Hash 73437ad44345f889f45e27c428d618d8
578d7b5ff3816f7f666984e303364c81be0771d0
f164941997fbc7f7ed7d2a7c3e86b997d647f1910d93fdc2462dd86fd5affa48
GET /s/opensans/v13/k3k702ZOKiLJc3WVjuplzOgdm0LZdjqr5-oayXSOefg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.putfog.sa.com
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16276
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 04:28:11 GMT
expires: Sun, 24 Sep 2023 04:28:11 GMT
cache-control: public, max-age=31536000
age: 220891
last-modified: Mon, 27 Apr 2015 23:45:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v13/EInbV5DfGHOiMmvb1Xr-hugdm0LZdjqr5-oayXSOefg.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v13/EInbV5DfGHOiMmvb1Xr-hugdm0LZdjqr5-oayXSOefg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16276, version 1.6554\012- data
Hash ebb32457ce66d3a33281e1c7cff1914f
99df4361ec613b963dc2f7a241503ce331796a58
d6bb784c1fe36582c7a60310fe712f494161e4fd42b94057b9cd9bc8a91cd5db
GET /s/opensans/v13/EInbV5DfGHOiMmvb1Xr-hugdm0LZdjqr5-oayXSOefg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.putfog.sa.com
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16276
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 06:15:17 GMT
expires: Wed, 20 Sep 2023 06:15:17 GMT
cache-control: public, max-age=31536000
age: 560065
last-modified: Mon, 27 Apr 2015 23:45:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.putfog.sa.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 21 Sep 2022 20:15:52 GMT
Expires: Thu, 21 Sep 2023 20:15:52 GMT
Cache-Control: public, max-age=31536000
Age: 423230
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.putfog.sa.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 21 Sep 2022 20:15:52 GMT
Expires: Thu, 21 Sep 2023 20:15:52 GMT
Cache-Control: public, max-age=31536000
Age: 423230
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2
www.putfog.sa.com/clicks/AgelessDating_files/blank.htm
104.21.93.184200 OK 548 B URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/blank.htm
IP 104.21.93.184:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1254), with CRLF line terminators
Hash cd64b4aeec0a8560c0d6527312e2c806
3b84cb918c9cf6a06d81b2aee07f5fec52ec6878
7dc0902142b34ea216d209ad68f58687c2190ebb974b2f540f61cc64b2b22ef4
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/blank.htm HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
Cookie: _gcl_au=1.1.981137842.1664214580
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EXJ5xvZoJVaAwLaXAJrWvMIYDnccpZpmhZsphwDA8maSDNpN7lFphRDO4JHeC90ciGat4G8ez0pAg6pTDxbLZnqleu2B9%2BE4ziOPzvX0kPvhh2pk61neVye5eX%2F%2FY5d2p%2FDxGg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750dd673689c0b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/splashThumb.png
104.21.93.184200 OK 122 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/splashThumb.png
IP 104.21.93.184:0
File type PNG image data, 464 x 271, 8-bit/color RGBA, non-interlaced\012- data
Size 122 kB (122420 bytes)
Hash 7772288167b9ea9c7645069ca0ae64e0
5e85f6ce0eaf99347792fb514c9b5b0411edd3ed
b49bd09b72a99e16d0bc34c9efd620cf1be80f88cd252d6d98ad80a1d20631e2
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/splashThumb.png HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: image/png
Content-Length: 122420
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: "62e82401-1de34"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jAnuHWkrnQpjxuUaxn7JaNG1y3uS5S0e023illlBJO5uz9izmHijrSFEYlpSaYTlP3iZiCS4Q0B142XlleHOqzynNnYyUal3MJ41B4%2FFvkpY4EZfKOJaFkV%2F8A84UA20xD0s4w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd672fb550b3d-OSL
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/headerPG.jpg
104.21.93.184200 OK 38 kB URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/headerPG.jpg
IP 104.21.93.184:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 660x211, components 3\012- data
Hash 4924523e87815b145e7d0ccdd5e8076d
91c31850ae16a6c19c59e7d1dd3ddb27c33b28d8
a728afd81fc3a6edd53267ecac584e07e97392cb7ed73c4d57924514589a9d16
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/headerPG.jpg HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating.php?sid=994357&h=tnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu/ylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: image/jpeg
Content-Length: 37518
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: "62e82401-928e"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lJ9UhdWm2WLveRQquyuLjoEGfQPjNvcmhMsgU3UnWz6fakvVCwi9OWFWSPpBwcLMEMkENsMFlDZ1Sg8jO5m5BQAxttyCWntiGf3skvX3PULvULU9xuDaTu0YV6cNE2XRqiu6fg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd672f8080b61-OSL
alt-svc: h2=":443"; ma=60
www.putfog.sa.com/clicks/AgelessDating_files/blank_data/inject.css
104.21.93.184200 OK 928 B URL HTTP/1.1 www.putfog.sa.com/clicks/AgelessDating_files/blank_data/inject.css
IP 104.21.93.184:0
File type ASCII text, with CRLF line terminators
Hash e1c22e631b7cce42e3ef13cd9bb02ff5
6c6c2b15c56e776d9eac10babf3a6c4a2bd964ae
93950a736308fe62073a44a76b8ec05b9a651062f6ecee4782059d0718aab6dc
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/AgelessDating_files/blank_data/inject.css HTTP/1.1
Host: www.putfog.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.putfog.sa.com/clicks/AgelessDating_files/blank.htm
Cookie: _gcl_au=1.1.981137842.1664214580
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:49:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:05:37 GMT
ETag: W/"62e82401-f28"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eZafm1xDfQyJK9Q9uDAokbkUk82CvICbRADw2iz4hrmyTzc2wKBsjix0Vcjlv9z5dnllNk3d7xuwO0RYCm%2FYDwXXcsFx4Ak88JaGk2777e2D1CtB7ZGGI1SRgRjC9GGghnydAA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750dd67439ce0b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 129c5f9737e1eafb75329aa784d62a6f
50a07c79de788d77a65df6573d1c6057db12e3bd
d60963dcfc57dd2cfcac5344dc44640ff05a85ed10dd9b92c9ad9766d11cda6b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:42 GMT
Server: ECS (amb/6BA0)
Content-Length: 278
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 909221c7d0999bc5b8cc24651c8c830a
caa72adda4ddad04625d1d6259db6e7d2c88f328
ad116307fd6a6688ab15af1c16a4911e34bf23767506dcffd44df3c3c6789778
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 17:49:42 GMT
Last-Modified: Mon, 26 Sep 2022 16:05:51 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fH_AF1W0tgSJPS9VwPKUV6FCcYP9oCs4T1-Fr3k-bZK1Hn0Z_4Xv2w==
Age: 6231
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 129c5f9737e1eafb75329aa784d62a6f
50a07c79de788d77a65df6573d1c6057db12e3bd
d60963dcfc57dd2cfcac5344dc44640ff05a85ed10dd9b92c9ad9766d11cda6b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:42 GMT
Last-Modified: Mon, 26 Sep 2022 17:49:42 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 5b0295885b9dd38adc9d7caa4af14a52
4f3d7251601658363c9f2ec78b86a59440a7f9b4
2b55aa9678bf30f4c9568302631775c22feff862377c4c389e5f199d2c1e8b96
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 17:49:42 GMT
Last-Modified: Mon, 26 Sep 2022 16:01:02 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rOlsZVjbEg2NHZCjhWbV-OMjLdLN_5vUz6nM5SthXEgUMbTKVL5Alw==
Age: 6521
s3-us-west-2.amazonaws.com/storejs/a/QKEHDQ1/ge.js
52.218.154.8403 Forbidden 243 B URL HTTP/1.1 s3-us-west-2.amazonaws.com/storejs/a/QKEHDQ1/ge.js
IP 52.218.154.8:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 1431212f5c88210db4c2a22c683b27a5
4b22031f73845aff779701d53c1ab8eb6ba6b4c7
c04bfc09dd6eb7f5d103df534d6c85590b551bf556a69ce16cf07db0797c0c89
GET /storejs/a/QKEHDQ1/ge.js HTTP/1.1
Host: s3-us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
x-amz-request-id: 0ZWFK13J77WN94H7
x-amz-id-2: FoUMAytHn4L2s7MjxZcX/vPfC3ex3jeV5oIg5DjKuTf6U6G6+PeglA/yLa2IZ0CpQmfIlpUfRiI=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Mon, 26 Sep 2022 17:49:42 GMT
Server: AmazonS3
175132.tracking.hyros.com/v1/lst/universal-script?ph=9bc599f9ab46cb2f7507e8577d80913a8c63a505faba2e67e311117d32296386&tag=!ageless
52.4.16.207200 OK 48 kB URL HTTP/2 175132.tracking.hyros.com/v1/lst/universal-script?ph=9bc599f9ab46cb2f7507e8577d80913a8c63a505faba2e67e311117d32296386&tag=!ageless
IP 52.4.16.207:0
Hash 80bda8a6edf698bb3a20eb5a34076078
8f35e914773a8ace473923c2c9abe23454d08fea
edeede0b772f8c93dc81cf63451375f9a20ca4e99f9f9d0019cc4cd89a59a53c
GET /v1/lst/universal-script?ph=9bc599f9ab46cb2f7507e8577d80913a8c63a505faba2e67e311117d32296386&tag=!ageless HTTP/1.1
Host: 175132.tracking.hyros.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:49:42 GMT
content-type: text/plain;charset=utf-8
access-control-allow-methods: GET, PUT, POST, OPTIONS, DELETE
access-control-expose-headers: Session-ID
access-control-max-age: 86400
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 1835f5d31c5bdb14dccdfc23a351791e
3b68426e00bdad7e5c087fcf7232f02b23d87430
b0c795ba5fcf1633180ce2edc8a1196407031e080ef510c8dcfa443fa8a49524
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 17:49:43 GMT
Last-Modified: Mon, 26 Sep 2022 16:21:53 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EUp6gDBMNrsaziaJgnH2v81q4QMdUD4WiC-wCE3f5-B0YgbVDcm7dQ==
Age: 5270
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 1835f5d31c5bdb14dccdfc23a351791e
3b68426e00bdad7e5c087fcf7232f02b23d87430
b0c795ba5fcf1633180ce2edc8a1196407031e080ef510c8dcfa443fa8a49524
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 17:49:43 GMT
Last-Modified: Mon, 26 Sep 2022 17:18:53 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nQO1CG_QbgujUZDBGuN1RpTcoB9iQoeWcQUsMBwkFdNFBdMElKQcYA==
Age: 1851
www.google-analytics.com/analytics.js
216.239.32.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.32.178:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 16:41:09 GMT
expires: Mon, 26 Sep 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 4114
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bc7883d0a03d9c3559288a600fecc70a
b0e538996510ec8c861264cba4bf79fa73f6f7d6
c3bdc9bb12c7c951ca2d861c95156de2c724acc82386e882864c464132e07ac3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js
142.250.74.106200 OK 5.4 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (2134)
Hash 30ca3165d143baf2835023bfcf463450
62c662c0873b79a314c040fef28dcd29abb14480
4f405d00e8ced09d5826e3e070b7e4d3f3556f856ca790b0b4a2c2eaaf58d33b
GET /ajax/libs/webfont/1.6.26/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 22:00:13 GMT
expires: Thu, 21 Sep 2023 22:00:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 416970
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1654)
Hash 890f716858b5f72587e47c5eca121cb5
91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 26 Sep 2022 17:49:43 GMT
expires: Mon, 26 Sep 2022 17:49:43 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j97&a=1080722417&t=pageview&_s=1&dl=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&ul=en-us&de=UTF-8&dt=Before%20You%20Go!&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1226215335&gjid=44048296&cid=552265281.1664214581&tid=UA-22484186-3&_gid=2057880509.1664214581&_r=1>m=2ou9l0&z=288553654
216.239.32.178200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j97&a=1080722417&t=pageview&_s=1&dl=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&ul=en-us&de=UTF-8&dt=Before%20You%20Go!&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1226215335&gjid=44048296&cid=552265281.1664214581&tid=UA-22484186-3&_gid=2057880509.1664214581&_r=1>m=2ou9l0&z=288553654
IP 216.239.32.178:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j97&a=1080722417&t=pageview&_s=1&dl=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&ul=en-us&de=UTF-8&dt=Before%20You%20Go!&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1226215335&gjid=44048296&cid=552265281.1664214581&tid=UA-22484186-3&_gid=2057880509.1664214581&_r=1>m=2ou9l0&z=288553654 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.putfog.sa.com
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://www.putfog.sa.com
date: Mon, 26 Sep 2022 17:49:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4474bfba80fa3257384d1c908e1353bf
9a2869a3888743d575e6f87d2a7479d5d97fa123
63378e949c0ea9564e7660ea0522ce7a59727a0a5232b81b77f8525899f67a2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
175132.t.hyros.com/v1/lst/gusid?
52.4.16.207200 OK 1.1 kB URL HTTP/2 175132.t.hyros.com/v1/lst/gusid?
IP 52.4.16.207:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash da1bb7d6021f0e2571e76f922709aec7
4ce3e2ee50c86fccded23a4a82b66a2c80e02c54
5d69931fe1ce25c313bbb36c5667958579638ef360206914a03d6856616e4346
OPTIONS /v1/lst/gusid? HTTP/1.1
Host: 175132.t.hyros.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: product-id
Referer: http://www.putfog.sa.com/
Origin: http://www.putfog.sa.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:49:43 GMT
content-type: application/vnd.sun.wadl+xml;charset=utf-8
content-length: 1081
access-control-allow-origin: http://www.putfog.sa.com
access-control-allow-methods: GET, PUT, POST, OPTIONS, DELETE
access-control-allow-headers: product-id
access-control-expose-headers: Session-ID
access-control-max-age: 86400
access-control-allow-credentials: true
allow: HEAD,GET,OPTIONS
last-modified: Mon, 26 Sep 2022 17:49:43 UTC
X-Firefox-Spdy: h2
175132.t.hyros.com/v1/lst/gusid?
52.4.16.207200 OK 0 B URL HTTP/2 175132.t.hyros.com/v1/lst/gusid?
IP 52.4.16.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/lst/gusid? HTTP/1.1
Host: 175132.t.hyros.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Product-ID: 175132
Origin: http://www.putfog.sa.com
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:49:43 GMT
content-length: 0
access-control-allow-origin: http://www.putfog.sa.com
access-control-allow-methods: GET, PUT, POST, OPTIONS, DELETE
access-control-expose-headers: Session-ID
access-control-max-age: 86400
access-control-allow-credentials: true
etag: HB-ET_97bbb173cc3a81164867f7fe58cceaa3d8c52d18525010e3e8383fedbdac72f7
set-cookie: __mh_tt_disable_script=true;SameSite=None;Secure;Version=1;Path=/;Max-Age=0
__mh_tt_s=HB-ET_97bbb173cc3a81164867f7fe58cceaa3d8c52d18525010e3e8383fedbdac72f7;SameSite=None;Secure;Version=1;Path=/;Max-Age=400000000
session-id: HB-ET_97bbb173cc3a81164867f7fe58cceaa3d8c52d18525010e3e8383fedbdac72f7
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 002d49bafbcc428a44fe523322ad9e05
b39aad0d1e941121f28af8f9b6d76f19216800d5
59a10c7762be219b689cd518aea4d034aa725c6a632b7f866989dcf984b5e007
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/605860882/?random=1664214581324&cv=9&fst=1664214581324&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&tiba=Before%20You%20Go!&auid=981137842.1664214580&hn=www.google.com&async=1&rfmt=3&fmt=4
216.58.207.194200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/605860882/?random=1664214581324&cv=9&fst=1664214581324&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&tiba=Before%20You%20Go!&auid=981137842.1664214580&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (2574), with no line terminators
Hash 0761c7add4d58efc08ff548b50ceb427
1339c46cef3cd50a48c432fe9a5eab20240df082
f3cacd318ec9b236ce0a709e375fa7dc9033e8663227a92b058d5d5ea58a74ee
GET /pagead/viewthroughconversion/605860882/?random=1664214581324&cv=9&fst=1664214581324&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&tiba=Before%20You%20Go!&auid=981137842.1664214580&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 17:49:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1168
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 26-Sep-2022 18:04:43 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-22484186-3&cid=552265281.1664214581&jid=1226215335&gjid=44048296&_gid=2057880509.1664214581&_u=YEBAAUAAAAAAAC~&z=1808488192
64.233.162.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-22484186-3&cid=552265281.1664214581&jid=1226215335&gjid=44048296&_gid=2057880509.1664214581&_u=YEBAAUAAAAAAAC~&z=1808488192
IP 64.233.162.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-22484186-3&cid=552265281.1664214581&jid=1226215335&gjid=44048296&_gid=2057880509.1664214581&_u=YEBAAUAAAAAAAC~&z=1808488192 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.putfog.sa.com
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.putfog.sa.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 26 Sep 2022 17:49:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sleepwithyoungerwomen.com/click/import
172.67.160.182404 Not Found 473 B URL HTTP/2 sleepwithyoungerwomen.com/click/import
IP 172.67.160.182:0
Hash 936cfa59bf9e168fcd730a8df9d3d414
480a68f2113963f903ba70d17d64afd81c47b8cc
a92303e32ca31b738fe73f6c0e41951fe682703c6d862bb24b3d119a266ba982
POST /click/import HTTP/1.1
Host: sleepwithyoungerwomen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 96
Origin: http://www.putfog.sa.com
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Mon, 26 Sep 2022 17:49:42 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=p35t7e0jb2udsq8df3jv1i93o0; expires=Thu, 06-Oct-2022 17:49:42 GMT; Max-Age=864000; path=/; domain=.sleepwithyoungerwomen.com; secure; HttpOnly
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fAZszxuKN3aM0OH8NQ%2B%2Fs7BiveReobKkPL%2FUmZ%2FhdQNPu39%2BPykwPoup4PXyxYvroqJ0T1qnTajnnCRAGChaObQqfk9096QwOfXd2%2FVfyH9hKQWBDBMSJVHkdZ09sYSo4VCxC5v%2BclN80rRU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 750dd674e86db518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11360
Expires: Mon, 26 Sep 2022 20:59:03 GMT
Date: Mon, 26 Sep 2022 17:49:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11360
Expires: Mon, 26 Sep 2022 20:59:03 GMT
Date: Mon, 26 Sep 2022 17:49:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11360
Expires: Mon, 26 Sep 2022 20:59:03 GMT
Date: Mon, 26 Sep 2022 17:49:43 GMT
Connection: keep-alive
175132.t.hyros.com/v1/lst/pc?ref_url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&u_agent=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0
52.4.16.207200 OK 4.5 kB URL HTTP/2 175132.t.hyros.com/v1/lst/pc?ref_url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&u_agent=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0
IP 52.4.16.207:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 2c774a063b6a22af0f1d32ffd9f60f57
5c917169dc6107e3b6841e58b3cd88661cbbed87
260cceae494b82a6ae9aa5a75452da9753dacb42c473d9d38063c0e45dd328e9
OPTIONS /v1/lst/pc?ref_url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&u_agent=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0 HTTP/1.1
Host: 175132.t.hyros.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: access-control-allow-headers,access-control-allow-origin,content-type,product-id,session-id
Referer: http://www.putfog.sa.com/
Origin: http://www.putfog.sa.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:49:43 GMT
content-type: application/vnd.sun.wadl+xml;charset=utf-8
content-length: 4540
access-control-allow-origin: http://www.putfog.sa.com
access-control-allow-methods: GET, PUT, POST, OPTIONS, DELETE
access-control-allow-headers: access-control-allow-headers,access-control-allow-origin,content-type,product-id,session-id
access-control-expose-headers: Session-ID
access-control-max-age: 86400
access-control-allow-credentials: true
allow: HEAD,GET,OPTIONS
last-modified: Mon, 26 Sep 2022 17:49:43 UTC
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d02ede0c964f3346fd53ae2950bf2a62
e49306a3713cb724be024a4ddb5e90645718a718
c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HCJ483GPdpPhC7oYm1GrA02BqqST9sfqfCBSA93rZqaQYl-jezgP5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:20:40 GMT
age: 70143
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:02:10 GMT
age: 71253
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef17205adb2b478d3bff54b048208d22
12aac1bd22e675f09a220de08b4656e801c2e647
620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Iy0oyFx_T6CEuOQckEzvUQOUo307Jm_OgJzomWlMz9BhgD3eOaysdA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:48:52 GMT
age: 72051
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qvSIyV7uvUzXFn6Sw3izoZxQoFbmyRzQ9WKl33D7fNTcuV6WXTzD9Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 05:01:28 GMT
age: 46095
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c11e6fef1be62b971bd9daf378bfc95
ef9d756cbcda72cf7ef5029b7d384cd1fbaed633
b8369f83d6dddcd2355b81d8eb200791788165e56881ce21e1a1e9c8bb1bb2ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13584
x-amzn-requestid: 198bd2b4-d4ae-4f19-a500-463aee52b890
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHgFdNoAMFwEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc9-19a1f7d2102820da4b21f18b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yl8BCwdlIePsc4gIX4IYH0L6NHipn_5fBsa9nyYy14w0m49jPUYXBw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:57:51 GMT
age: 71512
etag: "ef9d756cbcda72cf7ef5029b7d384cd1fbaed633"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2fe8c4f0c70fb6c1f4259eabedc7015e
85e378d0fff856832a8dd01743516b9476fed8c6
508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 70767
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 95f95fee6e94fb192e7c06459e3e3f8e
025638b85afcc833cd592c98cc941dd011d2526f
dbc8654990b37741f8e393d069054ae68d584c2496421892e814e7a8c45467fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-22484186-3&cid=552265281.1664214581&jid=1226215335&_u=YEBAAUAAAAAAAC~&z=459119968
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-22484186-3&cid=552265281.1664214581&jid=1226215335&_u=YEBAAUAAAAAAAC~&z=459119968
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-22484186-3&cid=552265281.1664214581&jid=1226215335&_u=YEBAAUAAAAAAAC~&z=459119968 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 17:49:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
175132.t.hyros.com/v1/lst/pc?ref_url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&u_agent=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0
52.4.16.207200 OK 117 B URL HTTP/2 175132.t.hyros.com/v1/lst/pc?ref_url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&u_agent=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0
IP 52.4.16.207:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8b0bd46b3352afcd7ca92a4271ac516a
a9a6dc4db82018916c69ac96f9131fc00a8f12ec
eaf380e2d5771e3b9ca046ef80d9c30e269d592eb408a994753e609b6d1bd035
GET /v1/lst/pc?ref_url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&u_agent=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0 HTTP/1.1
Host: 175132.t.hyros.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: *
Content-type: application/json; charset=utf-8
Session-ID: HB-ET_97bbb173cc3a81164867f7fe58cceaa3d8c52d18525010e3e8383fedbdac72f7
Product-ID: 175132
Origin: http://www.putfog.sa.com
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Cookie: __mh_tt_s=HB-ET_97bbb173cc3a81164867f7fe58cceaa3d8c52d18525010e3e8383fedbdac72f7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:49:43 GMT
content-type: application/json;charset=utf-8
content-length: 117
access-control-allow-origin: http://www.putfog.sa.com
access-control-allow-methods: GET, PUT, POST, OPTIONS, DELETE
access-control-expose-headers: Session-ID
access-control-max-age: 86400
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/605860882/?random=1664214581324&cv=9&fst=1664211600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&frm=0&url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&tiba=Before%20You%20Go!&async=1&fmt=3&is_vtc=1&random=2602251144&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/605860882/?random=1664214581324&cv=9&fst=1664211600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&frm=0&url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&tiba=Before%20You%20Go!&async=1&fmt=3&is_vtc=1&random=2602251144&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/605860882/?random=1664214581324&cv=9&fst=1664211600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&frm=0&url=http%3A%2F%2Fwww.putfog.sa.com%2Fclicks%2FAgelessDating.php%3Fsid%3D994357%26h%3Dtnoegqpiqvcdv0n4yfyglfzeept954ivcdv4memicmu%2Fylsrgj-_qx7o1ppbb-w1iamn-um_hmkesmfj6zmmm46xl5o5hfsewkqcuhc5olchwyuar6htlpgukupqfb-knt3qaoqrlycrmez_1g4fkla&tiba=Before%20You%20Go!&async=1&fmt=3&is_vtc=1&random=2602251144&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.putfog.sa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 17:49:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:49:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN