urlquery - report: dateminx.com/?sub1=63175f8cd663a30001669472&sub2=&sub3=&sub4=&affiliate

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-09-06 10:46:34 UTC	143.204.55.35
ocsp.digicert.com (1)	86	2012-05-21 07:02:23 UTC	2022-09-06 12:27:00 UTC	93.184.220.29
www.googletagmanager.com (1)	75	2012-12-25 14:52:06 UTC	2022-09-06 04:39:51 UTC	142.250.74.72
dmx.datingtopgirls.com (3)	0	2022-07-02 13:12:08 UTC	2022-08-25 04:01:48 UTC	31.220.24.141	Domain (datingtopgirls.com) ranked at: 164758
b.clarity.ms (1)	3462	2021-07-27 12:49:08 UTC	2022-09-06 04:44:27 UTC	20.75.32.255
fonts.googleapis.com (1)	8877	2014-07-21 13:19:55 UTC	2022-09-06 12:21:11 UTC	142.250.74.10
r3.o.lencr.org (7)	344	2020-12-02 08:52:13 UTC	2022-09-06 04:41:22 UTC	23.36.77.32
ocsp.pki.goog (8)	175	2017-06-14 07:23:31 UTC	2022-09-06 04:40:10 UTC	142.250.74.3
www.google.no (1)	25607	2016-04-05 19:50:59 UTC	2022-09-06 05:35:59 UTC	142.250.74.3
region1.analytics.google.com (1)	0	2022-03-17 11:26:33 UTC	2022-09-06 07:06:14 UTC	216.239.32.36	Domain (google.com) ranked at: 1
stats.g.doubleclick.net (1)	96	2013-06-02 22:47:44 UTC	2022-09-06 04:41:00 UTC	142.251.1.156
c.bing.com (1)	247	2012-05-22 10:26:32 UTC	2022-09-06 04:41:29 UTC	13.107.21.200
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-09-06 05:16:49 UTC	143.204.55.25
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-09-06 04:40:31 UTC	34.117.237.239
e1.o.lencr.org (2)	6159	2021-08-20 07:36:30 UTC	2022-09-06 04:54:53 UTC	23.36.77.32
ocsp.sectigo.com (2)	487	2018-12-17 11:31:55 UTC	2022-09-06 07:27:18 UTC	172.64.155.188
botd.fpapi.io (1)	297160	2021-06-11 10:56:14 UTC	2022-09-06 08:03:55 UTC	18.235.188.227
c.clarity.ms (2)	803	2021-02-03 23:22:47 UTC	2022-09-06 04:48:30 UTC	20.234.93.27
img-getpocket.cdn.mozilla.net (7)	1631	2017-09-01 03:40:57 UTC	2022-09-06 08:08:24 UTC	34.120.237.76
dateminx.com (2)	331100	2016-02-06 19:57:58 UTC	2022-08-31 22:49:00 UTC	172.67.146.129
icalendar.datingtopgirls.com (1)	260095	2022-06-02 07:08:49 UTC	2022-09-05 20:14:46 UTC	31.220.24.141
push.services.mozilla.com (1)	2140	2015-09-03 10:29:36 UTC	2022-09-06 04:43:30 UTC	52.89.136.7
my.rtmark.net (4)	9054	2017-08-22 14:11:49 UTC	2022-09-06 10:00:53 UTC	139.45.195.8
ocsp.sca1b.amazontrust.com (1)	1015	2017-03-03 15:20:51 UTC	2019-03-27 04:05:54 UTC	54.230.245.100
www.clarity.ms (2)	1404	2018-08-22 07:41:57 UTC	2022-09-06 04:40:40 UTC	104.212.67.144

Scan Date	Severity	Indicator	Comment
2022-09-06	2	icalendar.datingtopgirls.com/icalendar.js	Malware
2022-09-06	2	dmx.datingtopgirls.com/b/22	Malware

Date	UQ / IDS / BL	URL	IP
2022-11-11 15:19:37 +0000	0 - 0 - 2	dateminx.com/	104.21.47.102
2022-09-06 14:56:39 +0000	0 - 0 - 2	dateminx.com/?sub1=63175f8cd663a30001669472&s (...)	104.21.47.102

Date	UQ / IDS / BL	URL	IP
2023-03-31 09:47:46 +0000	0 - 0 - 2	stdater.ru/distr/v4/57ce9f0c-88ce-401e-923e-b (...)	188.114.97.1
2023-03-31 09:47:41 +0000	0 - 2 - 0	testitsoft.com/file.zip?c=AFUiJmSsJwUAXFgCAEJ (...)	104.21.83.114
2023-03-31 09:46:57 +0000	0 - 2 - 0	raymond.cc/wp-content/sun/Take_Ownership.zip	172.67.75.93
2023-03-31 09:46:48 +0000	0 - 0 - 21	08cuftnkdywc94u.lspower.xyz/usps/verification.html	188.114.96.1
2023-03-31 09:46:11 +0000	0 - 0 - 20	pbxwnl4pxfhwa1bzgbe.lspower.xyz/usps/verifica (...)	104.21.64.71

Date	UQ / IDS / BL	URL	IP
2022-11-11 15:19:37 +0000	0 - 0 - 2	dateminx.com/	104.21.47.102
2022-09-27 20:17:36 +0000	0 - 0 - 2	lite.dateminx.com/	172.67.146.129
2022-09-12 18:51:10 +0000	0 - 0 - 2	dateminx.com/tour/05?sub1=631f7f82a5996400015 (...)	172.67.146.129
2022-09-06 14:56:39 +0000	0 - 0 - 2	dateminx.com/?sub1=63175f8cd663a30001669472&s (...)	104.21.47.102

Date	UQ / IDS / BL	URL	IP
2023-02-06 10:41:10 +0000	0 - 0 - 1	easy-lay.com/tt?sub1=63e0d922f59a610001610f96 (...)	188.114.96.1
2023-02-05 16:39:04 +0000	0 - 0 - 1	easy-lay.com/tt?sub1=63dfdb8b241ce200016afc86 (...)	172.67.204.103
2023-02-01 14:11:24 +0000	0 - 0 - 1	easy-lay.com/tt?sub1=63da72eadf3fd800012f92b0 (...)	104.21.93.42
2023-01-31 00:00:53 +0000	0 - 0 - 1	easy-lay.com/tt?sub1=63d85a14ee77b5000153fc7d (...)	188.114.96.1
2023-01-26 21:31:10 +0000	0 - 0 - 1	easy-lay.com/tt?sub1=63d2f0fcbec8a200010cc91e (...)	188.114.96.1

Request	Response
GET /?sub1=63175f8cd663a30001669472&sub2=&sub3=&sub4=&affiliate_id=14548&source=&mst=2 HTTP/1.1 Host: dateminx.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: dateminx.com/?sub1=63175f8cd663a30001669472&sub2=&sub3= (...) FQDN: dateminx.com IP: 172.67.146.129 HASH: 1ac63374d015eee8d9d875502aa63981dbeb9d86a14096de0d504763808e429b 172.67.146.129 HTTP/1.1 301 Moved Permanently Content-Type: text/html Date: Tue, 06 Sep 2022 14:56:28 GMT Transfer-Encoding: chunked Connection: keep-alive Location: https://dateminx.com/?sub1=63175f8cd663a30001669472&sub2=&sub3=&sub4=&affiliate_id=14548&source=&mst=2 CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pC%2B7JYM0Ebeu0Xxu7VrnENizJ419U3swHAp3eMVW9%2BhmV7R7jN782qlYoKtcBIKZN8IhVzK1wm5ofuKqwP%2F6VW%2Fg%2Ftqz9H3QyePEgSKqW%2F1ABHxq7Jn3Jl2Tm0NIxVk%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 74680d318feab4f7-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 169 Md5: b51956ed2a6129f43c5d0ecc011cc5a5 Sha1: c03157aff80067b6b57903d3843b9fd9e07b33ab Sha256: 1ac63374d015eee8d9d875502aa63981dbeb9d86a14096de0d504763808e429b
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.35 HASH: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e 143.204.55.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Tue, 06 Sep 2022 14:04:18 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Dh-DfMow6NG-6WQQSFrQBUyoAKmACwZpOehwpIldyi6sCkIFdwaNeg== Age: 3130 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 99b7d23c1748d0526782b9ff9ea45f09 Sha1: eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29" Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8063 Expires: Tue, 06 Sep 2022 17:10:51 GMT Date: Tue, 06 Sep 2022 14:56:28 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d931e0142ef5ffe9cdb4c4c6bfcb9bc9 Sha1: d9c4caf525e8926b042a14f38d374cc4033ed768 Sha256: f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 143.204.55.25 HASH: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345 143.204.55.25 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sat, 20 Aug 2022 23:18:05 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Tue, 06 Sep 2022 01:15:18 GMT etag: "742edb4038f38bc533514982f3d2e861" x-cache: Hit from cloudfront via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: EmJ2vd6Qf894P2uVUjXqsBNya3kB5-nNnLqmXznzKLSM8v4Q7y5OsA== age: 49271 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 742edb4038f38bc533514982f3d2e861 Sha1: cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Tue, 06 Sep 2022 14:56:28 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
POST / HTTP/1.1 Host: e1.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: e1.o.lencr.org/ FQDN: e1.o.lencr.org IP: 23.36.77.32 HASH: ddfd9a27daa10a38b7f4a207de194f91e54ad54825865833f656d23c836f30a0 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 345 ETag: "DDFD9A27DAA10A38B7F4A207DE194F91E54AD54825865833F656D23C836F30A0" Last-Modified: Tue, 06 Sep 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=705 Expires: Tue, 06 Sep 2022 15:08:13 GMT Date: Tue, 06 Sep 2022 14:56:28 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 345 Md5: 09270c69d346e051b8681586f75d01e4 Sha1: c4ea29b5b2289a24cb3d1711c8a4de09d725d51d Sha256: ddfd9a27daa10a38b7f4a207de194f91e54ad54825865833f656d23c836f30a0
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.35 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 143.204.55.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Tue, 06 Sep 2022 14:38:18 GMT Cache-Control: max-age=3600 Expires: Tue, 06 Sep 2022 15:34:05 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: hMM1WdsaGQngf8_h-DVIyu-g4C_tOkfuke4vbMofMWcok39AfSzg7g== Age: 1091 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: e1.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: e1.o.lencr.org/ FQDN: e1.o.lencr.org IP: 23.36.77.32 HASH: ddfd9a27daa10a38b7f4a207de194f91e54ad54825865833f656d23c836f30a0 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 345 ETag: "DDFD9A27DAA10A38B7F4A207DE194F91E54AD54825865833F656D23C836F30A0" Last-Modified: Tue, 06 Sep 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=704 Expires: Tue, 06 Sep 2022 15:08:13 GMT Date: Tue, 06 Sep 2022 14:56:29 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 345 Md5: 09270c69d346e051b8681586f75d01e4 Sha1: c4ea29b5b2289a24cb3d1711c8a4de09d725d51d Sha256: ddfd9a27daa10a38b7f4a207de194f91e54ad54825865833f656d23c836f30a0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: f41565238dc856269109dcc30c34c535 Sha1: 28517f51eb3b6cd08981afbf878446d635430741 Sha256: 9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: a442f581e40660d4a8f0ff7b02e73b4324cac79f4b707c51700e676ae92bb5a9 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A442F581E40660D4A8F0FF7B02E73B4324CAC79F4B707C51700E676AE92BB5A9" Last-Modified: Sun, 04 Sep 2022 01:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5488 Expires: Tue, 06 Sep 2022 16:27:57 GMT Date: Tue, 06 Sep 2022 14:56:29 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7f44014d35c5fcc1c4bc81eaf1f2c26f Sha1: 36a39784bffe76ddcc821dded6fbd7e207ff5015 Sha256: a442f581e40660d4a8f0ff7b02e73b4324cac79f4b707c51700e676ae92bb5a9
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3619 Cache-Control: 'max-age=158059' Date: Tue, 06 Sep 2022 14:56:29 GMT Last-Modified: Tue, 06 Sep 2022 13:56:10 GMT Server: ECS (ska/F704) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: e8952752ad4a452a575522a7eb737217 Sha1: c5554fa2af05d7a7117032b0f99352de08988346 Sha256: 8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
GET /icalendar.js HTTP/1.1 Host: icalendar.datingtopgirls.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: icalendar.datingtopgirls.com/icalendar.js FQDN: icalendar.datingtopgirls.com IP: 31.220.24.141 HASH: 533ecbbbb80cdf2f49dc8333f2801b3ab1a508bacc1abedcde6872c622c0d92e 31.220.24.141 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx/1.22.0 Date: Tue, 06 Sep 2022 14:56:29 GMT Last-Modified: Mon, 23 May 2022 15:29:00 GMT Transfer-Encoding: chunked Connection: keep-alive ETag: W/"628ba83c-173d" Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1796 Md5: d39f355915d9633385c213781d160c84 Sha1: f22997c5f291268e4f7996b2664ad19c241fd31f Sha256: 533ecbbbb80cdf2f49dc8333f2801b3ab1a508bacc1abedcde6872c622c0d92e Alerts: Blocklists: - fortinet: Malware
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: f41565238dc856269109dcc30c34c535 Sha1: 28517f51eb3b6cd08981afbf878446d635430741 Sha256: 9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: bcbb9bf29f1e0acaa7ac6d6566381370 Sha1: dec1bea642dffbc11ebd6d65c94f87d6db95703a Sha256: b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
GET /gtm.js?id=GTM-T76Q9QX HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.googletagmanager.com/gtm.js?id=GTM-T76Q9QX FQDN: www.googletagmanager.com IP: 142.250.74.72 HASH: 20a117936020f5c594afe350ef3a998e0c6e25e5f02e4464ebe3cb3cbd7dc23b 142.250.74.72 HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 06 Sep 2022 14:56:29 GMT expires: Tue, 06 Sep 2022 14:56:29 GMT cache-control: private, max-age=900 last-modified: Tue, 06 Sep 2022 12:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 55379 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (3486) Size: 55379 Md5: a402fcd357ce4cd0c3045f9d4fbad33b Sha1: 2b371fa7c95378dd79a1aaf5f9c77e5ec5a1eb9d Sha256: 20a117936020f5c594afe350ef3a998e0c6e25e5f02e4464ebe3cb3cbd7dc23b
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 62c739a1335c5cf0fd4e783db6cdf14b Sha1: 4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff Sha256: de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: +BhAd/20owU0gfaGpeqKtA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 52.89.136.7 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.89.136.7 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: p7Us0rLSgg2gFC2tbn0gfUacG2M= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/22 HTTP/1.1 Host: dmx.datingtopgirls.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://dateminx.com Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: dmx.datingtopgirls.com/b/22 FQDN: dmx.datingtopgirls.com IP: 31.220.24.141 HASH: d90a8a667bb809c4a2e24608df0c74eeafcb72ec650f7ece25513f97c4fc2524 31.220.24.141 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Server: nginx/1.22.0 Transfer-Encoding: chunked Connection: keep-alive Cache-Control: no-cache, private Date: Tue, 06 Sep 2022 14:56:29 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS Access-Control-Allow-Headers: DNT, X-User-Token, Keep-Alive, User-Agent, X-Requested-With, If-Modified-Since, Cache-Control, Content-Type Content-Encoding: gzip --- Additional Info --- Magic: data Size: 6321 Md5: 1c43b5a2442888da46e943909ea16955 Sha1: d04c0fcf925442988643c0e8fb3f53a8dde1259f Sha256: d90a8a667bb809c4a2e24608df0c74eeafcb72ec650f7ece25513f97c4fc2524 Alerts: Blocklists: - fortinet: Malware
GET /css/notification-style.css HTTP/1.1 Host: dmx.datingtopgirls.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: dmx.datingtopgirls.com/css/notification-style.css FQDN: dmx.datingtopgirls.com IP: 31.220.24.141 HASH: 051a7ffd9576d7cdaa8fd014ef92234dfa95bb37cc5b4f31e3e807453633b010 31.220.24.141 HTTP/1.1 200 OK Content-Type: text/css Server: nginx/1.22.0 Date: Tue, 06 Sep 2022 14:56:30 GMT Last-Modified: Mon, 23 May 2022 15:29:00 GMT Transfer-Encoding: chunked Connection: keep-alive ETag: W/"628ba83c-1bc" Content-Encoding: gzip --- Additional Info --- Magic: data Size: 265 Md5: 7a38bdef5e26beb95b0c8918f1e890a5 Sha1: ac047fdde3c1fabfa64ac30cef5415dbffeb70df Sha256: 051a7ffd9576d7cdaa8fd014ef92234dfa95bb37cc5b4f31e3e807453633b010
GET /util/104-small.jpg HTTP/1.1 Host: dmx.datingtopgirls.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: dmx.datingtopgirls.com/util/104-small.jpg FQDN: dmx.datingtopgirls.com IP: 31.220.24.141 HASH: 9a905feb87299b83441ac610a59afd6f75e9947d7142e81d1387a7f3c9233a3d 31.220.24.141 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.22.0 Date: Tue, 06 Sep 2022 14:56:30 GMT Content-Length: 41227 Last-Modified: Fri, 02 Apr 2021 14:16:22 GMT Connection: keep-alive ETag: "60672736-a10b" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x240, components 3\012- data Size: 41227 Md5: 74085ff03e12526b2d948c2d14c75f6c Sha1: 3cb46b792e5d5f9fc2ce08bba79629c0adb6ca7e Sha256: 9a905feb87299b83441ac610a59afd6f75e9947d7142e81d1387a7f3c9233a3d
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 172.64.155.188 HASH: 58d632863a6aab3b308ad380f47595e74120f4495f48e83e89647e4f42533fa3 172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 05 Sep 2022 06:25:21 GMT Expires: Mon, 12 Sep 2022 06:25:20 GMT Etag: "6cecdd7246361b80f2464910ba31ee1f4381ee7d" Cache-Control: max-age=487129,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb3 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 74680d3c7da7b50b-OSL --- Additional Info --- Magic: data Size: 471 Md5: 912f9a32166cf6d4e458969545df501d Sha1: 6cecdd7246361b80f2464910ba31ee1f4381ee7d Sha256: 58d632863a6aab3b308ad380f47595e74120f4495f48e83e89647e4f42533fa3
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 172.64.155.188 HASH: 58d632863a6aab3b308ad380f47595e74120f4495f48e83e89647e4f42533fa3 172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 05 Sep 2022 06:25:21 GMT Expires: Mon, 12 Sep 2022 06:25:20 GMT Etag: "6cecdd7246361b80f2464910ba31ee1f4381ee7d" Cache-Control: max-age=487129,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb5 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 74680d3c8849b521-OSL --- Additional Info --- Magic: data Size: 471 Md5: 912f9a32166cf6d4e458969545df501d Sha1: 6cecdd7246361b80f2464910ba31ee1f4381ee7d Sha256: 58d632863a6aab3b308ad380f47595e74120f4495f48e83e89647e4f42533fa3
GET /p.js?f=sync&lr=1&partner=3a05d8de1e835641a4122cb3d37a0af24eaf56590b1281864cb22b8f126cbfe5 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: my.rtmark.net/p.js?f=sync&lr=1&partner=3a05d8de1e835641 (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: a6a952ca48c1eb05cf81aaa8d867561ad7d150a12b5588e85649c021ddaead31 139.45.195.8 HTTP/2 200 OK content-type: text/javascript server: nginx date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 697 access-control-allow-origin: * access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text Size: 697 Md5: 7810e171104615cbf47646d929eb2f07 Sha1: 6186265ba25a5d3c24e3045237c4dd2b405914b6 Sha256: a6a952ca48c1eb05cf81aaa8d867561ad7d150a12b5588e85649c021ddaead31
GET /p.js?f=sync&lr=1&partner=7baf563de63d4c5cebd07a29a6b51c7eb1dcc7d6d9d09957dec27fe5801d2fa6 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: my.rtmark.net/p.js?f=sync&lr=1&partner=7baf563de63d4c5c (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: 6179364fc2690c7318d37c382b9c0eeca919124e75f4e467d57034fce8e4c472 139.45.195.8 HTTP/2 200 OK content-type: text/javascript server: nginx date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 697 access-control-allow-origin: * access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 1813 Md5: 5ecf511beea2175894f9fa2a7eda1313 Sha1: 59732ed370de33f5bdfb1886f9067941b72a8921 Sha256: 6179364fc2690c7318d37c382b9c0eeca919124e75f4e467d57034fce8e4c472
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 54.230.245.100 HASH: 7fa937575c03ff2eb9100914eba666524e542c2affae2bf3419e040cb786e8b0 54.230.245.100 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Tue, 06 Sep 2022 14:56:30 GMT Last-Modified: Tue, 06 Sep 2022 13:37:35 GMT Server: ECS (nyb/1D23) X-Cache: Miss from cloudfront Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: t_CKHrtxEZRRxS2DQ61BV1YkTTTB40oK5TGacO-nmdKIKem9jXyxuA== Age: 4735 --- Additional Info --- Magic: data Size: 471 Md5: 0f4305bbf6ec46a31fec6c4870ad87cf Sha1: 7b493589d5a28f234ebbd8317764c9203968ba2e Sha256: 7fa937575c03ff2eb9100914eba666524e542c2affae2bf3419e040cb786e8b0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e1336388cf579034dbc18680696da587 Sha1: 6d633baf8cf123d56a6da8bba402659ad4cb7c08 Sha256: 7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-Q7W6GLM2DR&cid=922336432.1662476185&gtm=2oe8v0&aip=1&z=1792635755 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&t (...) FQDN: www.google.no IP: 142.250.74.3 HASH: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 142.250.74.3 HTTP/2 200 OK content-type: image/gif p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Tue, 06 Sep 2022 14:56:30 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 42 Md5: d89746888da2d9510b64a9f031eaecd5 Sha1: d5fceb6532643d0d84ffe09c40c481ecdf59e15a Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e1336388cf579034dbc18680696da587 Sha1: 6d633baf8cf123d56a6da8bba402659ad4cb7c08 Sha256: 7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e
POST /api/v1/detect?version=0.1.23 HTTP/1.1 Host: botd.fpapi.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dateminx.com/ Content-Type: text/plain Origin: https://dateminx.com Content-Length: 21550 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: botd.fpapi.io/api/v1/detect?version=0.1.23 FQDN: botd.fpapi.io IP: 18.235.188.227 HASH: e2d1e1dce80588c0d6bd72d2ab94eb6ed4ea63771f52fc16d4ef2b96fef2dac9 18.235.188.227 HTTP/2 401 Unauthorized content-type: application/octet-stream date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 69 server: nginx access-control-allow-credentials: true access-control-allow-headers: Accept, Content-Type, Origin, Content-Length, Accept-Encoding, Authorization, Auth-Subscriptions, Botd-Password access-control-allow-methods: POST, GET, OPTIONS access-control-allow-origin: https://dateminx.com X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 69 Md5: 32ba2944a9fb9f71e7edc24a56593f3d Sha1: 52b5da6230916b04a19d6f712ef247513831038c Sha256: e2d1e1dce80588c0d6bd72d2ab94eb6ed4ea63771f52fc16d4ef2b96fef2dac9
GET /tag/bvsqia2v2y?ref=gtm HTTP/1.1 Host: www.clarity.ms User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.clarity.ms/tag/bvsqia2v2y?ref=gtm FQDN: www.clarity.ms IP: 104.212.67.144 HASH: c87dc6162512b082483ad622f76dc60fb7527871c4b7bcece5aebfc5a36fcc1d 104.212.67.144 HTTP/2 200 OK content-type: application/x-javascript cache-control: no-cache, no-store content-length: 1362 expires: -1 set-cookie: CLID=e1209db9d9f341c8a8e045d35e7c1e7b.20220906.20230906; expires=Wed, 06 Sep 2023 14:56:30 GMT; path=/; secure; samesite=none; httponly request-context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8 x-powered-by: ASP.NET x-cache: CONFIG_NOCACHE x-azure-ref: 0nl8XYwAAAABpJWE2bVRUTL49tXXrU6A1RlJBMzFFREdFMDMxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE= date: Tue, 06 Sep 2022 14:56:30 GMT X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (1362), with no line terminators Size: 1362 Md5: 7a5f7d5aa2a5020f4d11c361e0110f5b Sha1: 0e3bc727dedcd198b8329bac0a6ef1a461fc14a1 Sha256: c87dc6162512b082483ad622f76dc60fb7527871c4b7bcece5aebfc5a36fcc1d
GET /c.gif HTTP/1.1 Host: c.clarity.ms User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: c.clarity.ms/c.gif FQDN: c.clarity.ms IP: 20.234.93.27 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 20.234.93.27 HTTP/2 302 Found cache-control: private, no-cache, proxy-revalidate, no-store pragma: no-cache location: https://c.bing.com/c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AFEF8C&RedC=c.clarity.ms&MXFR=01A99B65AF4E60DF3E0A8972AB4E6EDC server: Microsoft-IIS/10.0 x-powered-by: ASP.NET p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure; MUID=01A99B65AF4E60DF3E0A8972AB4E6EDC; domain=.clarity.ms; expires=Sun, 01-Oct-2023 14:56:30 GMT; path=/; SameSite=None; Secure; Priority=High; date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-Q7W6GLM2DR&gtm=2oe8v0&_p=161487413&_gaz=1&cid=922336432.1662476185&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662476184&sct=1&seg=0&dl=https%3A%2F%2Fdateminx.com%2F%3Fsub1%3D63175f8cd663a30001669472%26sub2%3D%26sub3%3D%26sub4%3D%26affiliate_id%3D14548%26source%3D%26mst%3D2&dt=dateminx.com&en=page_view&_fv=1&_nsi=1&_ss=1&up.visitor_id=63175f8cd663a30001669472&up.member_id=&up.user_status=GUEST&up.networkname=dateminx&up.affiliate_id=14548 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://dateminx.com Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0	URL: region1.analytics.google.com/g/collect?v=2&tid=G-Q7W6GL (...) FQDN: region1.analytics.google.com IP: 216.239.32.36 HASH: 057d0b4755682bd7b87ef3c3e2f1621c70dcef6246a5e1c09e5c502c5d202682 216.239.32.36 HTTP/2 204 No Content content-type: text/plain access-control-allow-origin: https://dateminx.com date: Tue, 06 Sep 2022 14:56:30 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 58 Md5: 395cf28368dff757c3d2b6cdfbee5549 Sha1: fc64d88c3d9f4bce1fa074c75232b6d58bf71b4c Sha256: 057d0b4755682bd7b87ef3c3e2f1621c70dcef6246a5e1c09e5c502c5d202682
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 76c6ad39ad355f829170427e9076311a Sha1: 26a82c7dd26986900a4964464e43d9837dfef1f8 Sha256: 40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd
POST /g/collect?v=2&tid=G-Q7W6GLM2DR&cid=922336432.1662476185&gtm=2oe8v0&aip=1 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://dateminx.com Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0	URL: stats.g.doubleclick.net/g/collect?v=2&tid=G-Q7W6GLM2DR& (...) FQDN: stats.g.doubleclick.net IP: 142.251.1.156 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 142.251.1.156 HTTP/2 204 No Content content-type: text/plain access-control-allow-origin: https://dateminx.com date: Tue, 06 Sep 2022 14:56:30 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img.gif?f=sync&partner=3a05d8de1e835641a4122cb3d37a0af24eaf56590b1281864cb22b8f126cbfe5&ttl=&rurl=https%3A%2F%2Fdateminx.com%2F%3Fsub1%3D63175f8cd663a30001669472%26sub2%3D%26sub3%3D%26sub4%3D%26affiliate_id%3D14548%26source%3D%26mst%3D2 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: my.rtmark.net/img.gif?f=sync&partner=3a05d8de1e835641a4 (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 139.45.195.8 HTTP/2 200 OK content-type: image/gif server: nginx date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 43 access-control-allow-origin: * access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true set-cookie: ID=e0ee0d2a131444f6944564fdb1a43dd0; expires=Wed, 06 Sep 2023 14:56:30 GMT; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: b4491705564909da7f9eaf749dbbfbb1 Sha1: 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=7baf563de63d4c5cebd07a29a6b51c7eb1dcc7d6d9d09957dec27fe5801d2fa6&ttl=&rurl=https%3A%2F%2Fdateminx.com%2F%3Fsub1%3D63175f8cd663a30001669472%26sub2%3D%26sub3%3D%26sub4%3D%26affiliate_id%3D14548%26source%3D%26mst%3D2 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: my.rtmark.net/img.gif?f=sync&partner=7baf563de63d4c5ceb (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 139.45.195.8 HTTP/2 200 OK content-type: image/gif server: nginx date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 43 access-control-allow-origin: * access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true set-cookie: ID=7d296a4329014bdbbc764f3876aa2ed8; expires=Wed, 06 Sep 2023 14:56:30 GMT; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: b4491705564909da7f9eaf749dbbfbb1 Sha1: 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 76c6ad39ad355f829170427e9076311a Sha1: 26a82c7dd26986900a4964464e43d9837dfef1f8 Sha256: 40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17368 Expires: Tue, 06 Sep 2022 19:45:58 GMT Date: Tue, 06 Sep 2022 14:56:30 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: bc70b1691dd339e8120b92ba393ffb69 Sha1: 99118be3645b3182ccdc5f9da149a97c220a3929 Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17368 Expires: Tue, 06 Sep 2022 19:45:58 GMT Date: Tue, 06 Sep 2022 14:56:30 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: bc70b1691dd339e8120b92ba393ffb69 Sha1: 99118be3645b3182ccdc5f9da149a97c220a3929 Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17368 Expires: Tue, 06 Sep 2022 19:45:58 GMT Date: Tue, 06 Sep 2022 14:56:30 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: bc70b1691dd339e8120b92ba393ffb69 Sha1: 99118be3645b3182ccdc5f9da149a97c220a3929 Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17367 Expires: Tue, 06 Sep 2022 19:45:58 GMT Date: Tue, 06 Sep 2022 14:56:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: bc70b1691dd339e8120b92ba393ffb69 Sha1: 99118be3645b3182ccdc5f9da149a97c220a3929 Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17367 Expires: Tue, 06 Sep 2022 19:45:58 GMT Date: Tue, 06 Sep 2022 14:56:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: bc70b1691dd339e8120b92ba393ffb69 Sha1: 99118be3645b3182ccdc5f9da149a97c220a3929 Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6656 x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YAX-3F2ZIAMFpLg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0 x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google date: Mon, 05 Sep 2022 21:44:33 GMT age: 61918 etag: "5fc951e5236edd282d4975853ca35dab2e55fb17" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6656 Md5: 983e705542fa78b4d5c876e0c1eada7e Sha1: 5fc951e5236edd282d4975853ca35dab2e55fb17 Sha256: fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 12683 x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Xz8XmEe0IAMFQDA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0 x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw== via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google date: Tue, 06 Sep 2022 04:31:02 GMT age: 37529 etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12683 Md5: ec466c0d472e43c11d36bf6fce068205 Sha1: 720d3624a76d060b8e2699e9aa7a320e3efd4878 Sha256: 5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6482 x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YAX-5FaYIAMFzjw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0 x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: kD_wcIHwmUDV9M9Pl2NtUwRw0CElnHhX6NGZ5PQlnchvdxpLAZhm0w== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google date: Mon, 05 Sep 2022 21:46:42 GMT etag: "f8589eb3907582137d8b9373af745d80eddbf1bb" age: 61789 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6482 Md5: 0efc32eccbf76ac0d89f324d09a7fd1f Sha1: f8589eb3907582137d8b9373af745d80eddbf1bb Sha256: ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7152 x-amzn-requestid: 2571ff54-e2f8-4072-8a26-3d0dd4cd3523 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YAWsfHz_IAMFaXQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63166b1c-6a598849314cdc433f9f82f7;Sampled=0 x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: I6xmRiAaxHPKpBlCPaRWoMiISlrXRrltO57N3NayiuIvv3gCWTWCZQ== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Mon, 05 Sep 2022 21:53:35 GMT age: 61376 etag: "b1685694999272feb4d9fc39296418cd95480678" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7152 Md5: 8ce50dfa23e7f34ff68cc6426c2823f7 Sha1: b1685694999272feb4d9fc39296418cd95480678 Sha256: 4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4426 x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: XzfYTHHFIAMFjFw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0 x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: GSRJIWisH465dPqbKyPj1iZk1jAu3RGrgwj1CX3X8A397zv9Nt0cHA== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google date: Tue, 06 Sep 2022 08:35:06 GMT age: 22885 etag: "fc766bca874a352a4acb569577d4cf6527f4f074" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4426 Md5: c81f3df885bdee8cac46ea9495e6b63b Sha1: fc766bca874a352a4acb569577d4cf6527f4f074 Sha256: e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: a19b6749429e8ecaeac8fc0849abc4d891bfc628489762b1619a3ee3064536e3 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 12573 x-amzn-requestid: 93ac3b01-e2e3-462b-93d4-8f1bf949a015 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YAX-5E5JIAMFTJg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63166d2b-7fa8ddcb4b17c5ff1c214b94;Sampled=0 x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: qU3s1u1OYmhFyNM8dgd4R3mLfgN3VXlj7z0WGWFhmW-U00wuUld96w== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google date: Mon, 05 Sep 2022 21:45:23 GMT age: 61868 etag: "3f3aad2cc71226b39549db1a9baa6837d4f1d897" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12573 Md5: 3fe4a321dcd6a94a637a528d74f9321a Sha1: 3f3aad2cc71226b39549db1a9baa6837d4f1d897 Sha256: a19b6749429e8ecaeac8fc0849abc4d891bfc628489762b1619a3ee3064536e3
GET /c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AFEF8C&RedC=c.clarity.ms&MXFR=01A99B65AF4E60DF3E0A8972AB4E6EDC HTTP/1.1 Host: c.bing.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dateminx.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: c.bing.com/c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AF (...) FQDN: c.bing.com IP: 13.107.21.200 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 13.107.21.200 HTTP/2 302 Found cache-control: private, no-cache, proxy-revalidate, no-store pragma: no-cache location: https://c.clarity.ms/c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AFEF8C&MUID=32A410042A6C65C335AC02132B996414 p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" set-cookie: SRM_B=32A410042A6C65C335AC02132B996414; domain=c.bing.com; expires=Sun, 01-Oct-2023 14:56:31 GMT; path=/; SameSite=None; Secure; x-powered-by: ASP.NET x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: 324EEBA068BC453397B8A968B284EA03 Ref B: OSL30EDGE0522 Ref C: 2022-09-06T14:56:30Z date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AFEF8C&MUID=32A410042A6C65C335AC02132B996414 HTTP/1.1 Host: c.clarity.ms User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dateminx.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: c.clarity.ms/c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6 (...) FQDN: c.clarity.ms IP: 20.234.93.27 HASH: 99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12 20.234.93.27 HTTP/2 200 OK content-type: image/gif cache-control: private, no-cache, proxy-revalidate, no-store pragma: no-cache last-modified: Wed, 17 Aug 2022 23:56:46 GMT accept-ranges: bytes etag: "de363c295b2d81:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Tue, 06-Sep-2022 15:06:31 GMT; path=/; SameSite=None; Secure; date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 42 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 42 Md5: 32023bb33cfb2a1990a4ef2d85b6ac16 Sha1: 23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1 Sha256: 99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
POST /collect HTTP/1.1 Host: b.clarity.ms User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 945 Origin: https://dateminx.com Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: b.clarity.ms/collect FQDN: b.clarity.ms IP: 20.75.32.255 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 20.75.32.255 HTTP/2 204 No Content server: Microsoft-IIS/10.0 request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64 access-control-allow-origin: https://dateminx.com access-control-allow-credentials: true x-powered-by: ASP.NET date: Tue, 06 Sep 2022 14:56:30 GMT X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8cff825-6282-4340-aa72-8e15e060b3de.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: a83be2ef99fb72af5eed4489b83d26ca208dd7b49d495444a8191798730d5bc9 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 11720 x-amzn-requestid: 97f7796d-7181-4f67-affd-47d347ff0ded x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YAYWREzKoAMFvtQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63166dc1-5611e8e479f69a850d5efedc;Sampled=0 x-amzn-remapped-date: Mon, 05 Sep 2022 21:44:33 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: ydzlXF5bxCBQ6r6cRQRbuldbEjLhdOn5qPr_jAh7326T3DFs5D-6xA== via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Mon, 05 Sep 2022 21:58:49 GMT etag: "6d3e32e82671de26c379e35301baf9d7f91bd008" age: 61068 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11720 Md5: 72421f8b636827a090934c3127375974 Sha1: 6d3e32e82671de26c379e35301baf9d7f91bd008 Sha256: a83be2ef99fb72af5eed4489b83d26ca208dd7b49d495444a8191798730d5bc9
GET /?sub1=63175f8cd663a30001669472&sub2=&sub3=&sub4=&affiliate_id=14548&source=&mst=2 HTTP/1.1 Host: dateminx.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: dateminx.com/?sub1=63175f8cd663a30001669472&sub2=&sub3= (...) FQDN: dateminx.com IP: 172.67.146.129 172.67.146.129 HTTP/2 200 OK content-type: text/html; charset=UTF-8 date: Tue, 06 Sep 2022 14:56:29 GMT cache-control: no-cache, private set-cookie: geo=%7B%2291.90.42.154%22%3A%5B59.955%2C10.859%2C%22Norway%22%2C%22Oslo%22%2C%22Oslo%20County%22%5D%7D; expires=Tue, 13-Sep-2022 14:56:29 GMT; Max-Age=604800; path=/; secure; httponly; samesite=lax sub1=63175f8cd663a30001669472; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax sub2=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub3=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub4=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub5=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub6=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub7=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub8=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax source=unknown; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax affiliate_id=14548; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax cid=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax mst=2; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax tour=0; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax ivc=1; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fGEsaiL021rt5NpWmO%2FKJLB6eFCuSKCrLMCtVQ%2BOCQW536m2bsPcJcK0qpJHIa1fOdJ%2B0sKUTIswsISztxlpEv7ionxJiGKYivfhC0O%2Fxr5l7jQH%2FRFvE8BkDTPL4iE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 74680d342f1ab4ee-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---
GET /icon?family=Material+Icons HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/icon?family=Material+Icons FQDN: fonts.googleapis.com IP: 142.250.74.10 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 06 Sep 2022 14:56:29 GMT date: Tue, 06 Sep 2022 14:56:29 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /eus2/s/0.6.40/clarity.js HTTP/1.1 Host: www.clarity.ms User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: www.clarity.ms/eus2/s/0.6.40/clarity.js FQDN: www.clarity.ms IP: 104.212.67.144 104.212.67.144 HTTP/2 200 OK content-type: application/javascript;charset=utf-8 cache-control: public,max-age=86400 content-encoding: br last-modified: Wed, 01 Jun 2022 12:22:22 GMT accept-ranges: bytes etag: "1d8bd4806fdad30" vary: Accept-Encoding request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64 x-powered-by: ASP.NET x-cache: CONFIG_NOCACHE x-azure-ref: 0nl8XYwAAAADJVAiy3QOXTJi93SX3PozjRlJBMzFFREdFMDMxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE= date: Tue, 06 Sep 2022 14:56:30 GMT X-Firefox-Spdy: h2 --- Additional Info ---

                                        
                                            GET /?sub1=63175f8cd663a30001669472&sub2=&sub3=&sub4=&affiliate_id=14548&source=&mst=2 HTTP/1.1 

                                        
                                            
Host: dateminx.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         172.67.146.129

                                        
                                            HTTP/1.1 301 Moved Permanently 

                                        
                                            
Content-Type: text/html

                                        

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:28 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Location: https://dateminx.com/?sub1=63175f8cd663a30001669472&sub2=&sub3=&sub4=&affiliate_id=14548&source=&mst=2 

                                        
                                            
CF-Cache-Status: DYNAMIC 

                                        
                                            
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pC%2B7JYM0Ebeu0Xxu7VrnENizJ419U3swHAp3eMVW9%2BhmV7R7jN782qlYoKtcBIKZN8IhVzK1wm5ofuKqwP%2F6VW%2Fg%2Ftqz9H3QyePEgSKqW%2F1ABHxq7Jn3Jl2Tm0NIxVk%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 74680d318feab4f7-OSL 

                                        
                                            
alt-svc: h2=":443"; ma=60 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   169

                                                Md5:    b51956ed2a6129f43c5d0ecc011cc5a5

                                                Sha1:   c03157aff80067b6b57903d3843b9fd9e07b33ab

                                                Sha256: 1ac63374d015eee8d9d875502aa63981dbeb9d86a14096de0d504763808e429b

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29" 

                                        
                                            
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=8063 

                                        
                                            
Expires: Tue, 06 Sep 2022 17:10:51 GMT 

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    d931e0142ef5ffe9cdb4c4c6bfcb9bc9

                                                Sha1:   d9c4caf525e8926b042a14f38d374cc4033ed768

                                                Sha256: f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 06 Sep 2022 14:56:28 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.55.35

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/json

                                        

                                        
                                            
Content-Length: 329 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert 

                                        
                                            
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
Strict-Transport-Security: max-age=31536000 

                                        
                                            
X-Content-Type-Options: nosniff 

                                        
                                            
Date: Tue, 06 Sep 2022 14:38:18 GMT 

                                        
                                            
Cache-Control: max-age=3600 

                                        
                                            
Expires: Tue, 06 Sep 2022 15:34:05 GMT 

                                        
                                            
ETag: "1648230346554" 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: hMM1WdsaGQngf8_h-DVIyu-g4C_tOkfuke4vbMofMWcok39AfSzg7g== 

                                        
                                            
Age: 1091 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:29 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    f41565238dc856269109dcc30c34c535

                                                Sha1:   28517f51eb3b6cd08981afbf878446d635430741

                                                Sha256: 9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 3619 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:29 GMT 

                                        
                                            
Last-Modified: Tue, 06 Sep 2022 13:56:10 GMT 

                                        
                                            
Server: ECS (ska/F704) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    e8952752ad4a452a575522a7eb737217

                                                Sha1:   c5554fa2af05d7a7117032b0f99352de08988346

                                                Sha256: 8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:29 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    f41565238dc856269109dcc30c34c535

                                                Sha1:   28517f51eb3b6cd08981afbf878446d635430741

                                                Sha256: 9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6

                                        
                                            GET /gtm.js?id=GTM-T76Q9QX HTTP/1.1 

                                        
                                            
Host: www.googletagmanager.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://dateminx.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.72

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=UTF-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-headers: Cache-Control 

                                        
                                            
content-encoding: br 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
date: Tue, 06 Sep 2022 14:56:29 GMT 

                                        
                                            
expires: Tue, 06 Sep 2022 14:56:29 GMT 

                                        
                                            
cache-control: private, max-age=900 

                                        
                                            
last-modified: Tue, 06 Sep 2022 12:00:00 GMT 

                                        
                                            
strict-transport-security: max-age=31536000; includeSubDomains 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
server: Google Tag Manager 

                                        
                                            
content-length: 55379 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (3486)

                                                Size:   55379

                                                Md5:    a402fcd357ce4cd0c3045f9d4fbad33b

                                                Sha1:   2b371fa7c95378dd79a1aaf5f9c77e5ec5a1eb9d

                                                Sha256: 20a117936020f5c594afe350ef3a998e0c6e25e5f02e4464ebe3cb3cbd7dc23b

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: +BhAd/20owU0gfaGpeqKtA== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket

                                         52.89.136.7

                                        
                                            HTTP/1.1 101 Switching Protocols

                                        

                                        
                                            
Connection: Upgrade 

                                        
                                            
Upgrade: websocket 

                                        
                                            
Sec-WebSocket-Accept: p7Us0rLSgg2gFC2tbn0gfUacG2M= 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /css/notification-style.css HTTP/1.1 

                                        
                                            
Host: dmx.datingtopgirls.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://dateminx.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         31.220.24.141

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
Last-Modified: Mon, 23 May 2022 15:29:00 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: W/"628ba83c-1bc" 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   265

                                                Md5:    7a38bdef5e26beb95b0c8918f1e890a5

                                                Sha1:   ac047fdde3c1fabfa64ac30cef5415dbffeb70df

                                                Sha256: 051a7ffd9576d7cdaa8fd014ef92234dfa95bb37cc5b4f31e3e807453633b010

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sectigo.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         172.64.155.188

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Mon, 05 Sep 2022 06:25:21 GMT 

                                        
                                            
Expires: Mon, 12 Sep 2022 06:25:20 GMT 

                                        
                                            
Etag: "6cecdd7246361b80f2464910ba31ee1f4381ee7d" 

                                        
                                            
Cache-Control: max-age=487129,s-maxage=1800,public,no-transform,must-revalidate 

                                        
                                            
X-CCACDN-Proxy-ID: mcdpinlb3 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
CF-Cache-Status: DYNAMIC 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 74680d3c7da7b50b-OSL 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    912f9a32166cf6d4e458969545df501d

                                                Sha1:   6cecdd7246361b80f2464910ba31ee1f4381ee7d

                                                Sha256: 58d632863a6aab3b308ad380f47595e74120f4495f48e83e89647e4f42533fa3

                                        
                                            GET /p.js?f=sync&lr=1&partner=3a05d8de1e835641a4122cb3d37a0af24eaf56590b1281864cb22b8f126cbfe5 HTTP/1.1 

                                        
                                            
Host: my.rtmark.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://dateminx.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         139.45.195.8

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
content-length: 697 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE 

                                        
                                            
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token 

                                        
                                            
access-control-expose-headers: Authorization 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
strict-transport-security: max-age=1 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
timing-allow-origin: *, * 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   697

                                                Md5:    7810e171104615cbf47646d929eb2f07

                                                Sha1:   6186265ba25a5d3c24e3045237c4dd2b405914b6

                                                Sha256: a6a952ca48c1eb05cf81aaa8d867561ad7d150a12b5588e85649c021ddaead31

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         54.230.245.100

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
Last-Modified: Tue, 06 Sep 2022 13:37:35 GMT 

                                        
                                            
Server: ECS (nyb/1D23) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-P1 

                                        
                                            
X-Amz-Cf-Id: t_CKHrtxEZRRxS2DQ61BV1YkTTTB40oK5TGacO-nmdKIKem9jXyxuA== 

                                        
                                            
Age: 4735 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    0f4305bbf6ec46a31fec6c4870ad87cf

                                                Sha1:   7b493589d5a28f234ebbd8317764c9203968ba2e

                                                Sha256: 7fa937575c03ff2eb9100914eba666524e542c2affae2bf3419e040cb786e8b0

                                        
                                            GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-Q7W6GLM2DR&cid=922336432.1662476185&gtm=2oe8v0&aip=1&z=1792635755 HTTP/1.1 

                                        
                                            
Host: www.google.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://dateminx.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.3

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
pragma: no-cache 

                                        
                                            
expires: Fri, 01 Jan 1990 00:00:00 GMT 

                                        
                                            
cache-control: no-cache, no-store, must-revalidate 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: cafe 

                                        
                                            
content-length: 42 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   42

                                                Md5:    d89746888da2d9510b64a9f031eaecd5

                                                Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a

                                                Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

                                        
                                            POST /api/v1/detect?version=0.1.23 HTTP/1.1 

                                        
                                            
Host: botd.fpapi.io

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://dateminx.com/ 

                                        
                                            
Content-Type: text/plain 

                                        
                                            
Origin: https://dateminx.com 

                                        
                                            
Content-Length: 21550 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         18.235.188.227

                                        
                                            HTTP/2 401 Unauthorized 

                                        
                                            
content-type: application/octet-stream

                                        

                                        
                                            
date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
content-length: 69 

                                        
                                            
server: nginx 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-headers: Accept, Content-Type, Origin, Content-Length, Accept-Encoding, Authorization, Auth-Subscriptions, Botd-Password 

                                        
                                            
access-control-allow-methods: POST, GET, OPTIONS 

                                        
                                            
access-control-allow-origin: https://dateminx.com 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   69

                                                Md5:    32ba2944a9fb9f71e7edc24a56593f3d

                                                Sha1:   52b5da6230916b04a19d6f712ef247513831038c

                                                Sha256: e2d1e1dce80588c0d6bd72d2ab94eb6ed4ea63771f52fc16d4ef2b96fef2dac9

                                        
                                            GET /c.gif HTTP/1.1 

                                        
                                            
Host: c.clarity.ms

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://dateminx.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         20.234.93.27

                                        
                                            HTTP/2 302 Found

                                        

                                        
                                            
cache-control: private, no-cache, proxy-revalidate, no-store 

                                        
                                            
pragma: no-cache 

                                        
                                            
location: https://c.bing.com/c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AFEF8C&RedC=c.clarity.ms&MXFR=01A99B65AF4E60DF3E0A8972AB4E6EDC 

                                        
                                            
server: Microsoft-IIS/10.0 

                                        
                                            
x-powered-by: ASP.NET 

                                        
                                            
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" 

                                        
                                            
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=01A99B65AF4E60DF3E0A8972AB4E6EDC; domain=.clarity.ms; expires=Sun, 01-Oct-2023 14:56:30 GMT; path=/; SameSite=None; Secure; Priority=High; 

                                        
                                            
date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    76c6ad39ad355f829170427e9076311a

                                                Sha1:   26a82c7dd26986900a4964464e43d9837dfef1f8

                                                Sha256: 40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd

                                        
                                            GET /img.gif?f=sync&partner=3a05d8de1e835641a4122cb3d37a0af24eaf56590b1281864cb22b8f126cbfe5&ttl=&rurl=https%3A%2F%2Fdateminx.com%2F%3Fsub1%3D63175f8cd663a30001669472%26sub2%3D%26sub3%3D%26sub4%3D%26affiliate_id%3D14548%26source%3D%26mst%3D2 HTTP/1.1 

                                        
                                            
Host: my.rtmark.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://dateminx.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         139.45.195.8

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
content-length: 43 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE 

                                        
                                            
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token 

                                        
                                            
access-control-expose-headers: Authorization 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
set-cookie: ID=e0ee0d2a131444f6944564fdb1a43dd0; expires=Wed, 06 Sep 2023 14:56:30 GMT; secure; SameSite=None 

                                        
                                            
strict-transport-security: max-age=1 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
timing-allow-origin: *, * 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    b4491705564909da7f9eaf749dbbfbb1

                                                Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8

                                                Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    76c6ad39ad355f829170427e9076311a

                                                Sha1:   26a82c7dd26986900a4964464e43d9837dfef1f8

                                                Sha256: 40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" 

                                        
                                            
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=17368 

                                        
                                            
Expires: Tue, 06 Sep 2022 19:45:58 GMT 

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    bc70b1691dd339e8120b92ba393ffb69

                                                Sha1:   99118be3645b3182ccdc5f9da149a97c220a3929

                                                Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" 

                                        
                                            
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=17367 

                                        
                                            
Expires: Tue, 06 Sep 2022 19:45:58 GMT 

                                        
                                            
Date: Tue, 06 Sep 2022 14:56:31 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    bc70b1691dd339e8120b92ba393ffb69

                                                Sha1:   99118be3645b3182ccdc5f9da149a97c220a3929

                                                Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 6656 

                                        
                                            
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: YAX-3F2ZIAMFpLg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q== 

                                        
                                            
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Mon, 05 Sep 2022 21:44:33 GMT 

                                        
                                            
age: 61918 

                                        
                                            
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   6656

                                                Md5:    983e705542fa78b4d5c876e0c1eada7e

                                                Sha1:   5fc951e5236edd282d4975853ca35dab2e55fb17

                                                Sha256: fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 6482 

                                        
                                            
x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: YAX-5FaYIAMFzjw= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: kD_wcIHwmUDV9M9Pl2NtUwRw0CElnHhX6NGZ5PQlnchvdxpLAZhm0w== 

                                        
                                            
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Mon, 05 Sep 2022 21:46:42 GMT 

                                        
                                            
etag: "f8589eb3907582137d8b9373af745d80eddbf1bb" 

                                        
                                            
age: 61789 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   6482

                                                Md5:    0efc32eccbf76ac0d89f324d09a7fd1f

                                                Sha1:   f8589eb3907582137d8b9373af745d80eddbf1bb

                                                Sha256: ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 4426 

                                        
                                            
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: XzfYTHHFIAMFjFw= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: GSRJIWisH465dPqbKyPj1iZk1jAu3RGrgwj1CX3X8A397zv9Nt0cHA== 

                                        
                                            
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 06 Sep 2022 08:35:06 GMT 

                                        
                                            
age: 22885 

                                        
                                            
etag: "fc766bca874a352a4acb569577d4cf6527f4f074" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4426

                                                Md5:    c81f3df885bdee8cac46ea9495e6b63b

                                                Sha1:   fc766bca874a352a4acb569577d4cf6527f4f074

                                                Sha256: e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36

                                        
                                            GET /c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AFEF8C&RedC=c.clarity.ms&MXFR=01A99B65AF4E60DF3E0A8972AB4E6EDC HTTP/1.1 

                                        
                                            
Host: c.bing.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://dateminx.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         13.107.21.200

                                        
                                            HTTP/2 302 Found

                                        

                                        
                                            
cache-control: private, no-cache, proxy-revalidate, no-store 

                                        
                                            
pragma: no-cache 

                                        
                                            
location: https://c.clarity.ms/c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AFEF8C&MUID=32A410042A6C65C335AC02132B996414 

                                        
                                            
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" 

                                        
                                            
set-cookie: SRM_B=32A410042A6C65C335AC02132B996414; domain=c.bing.com; expires=Sun, 01-Oct-2023 14:56:31 GMT; path=/; SameSite=None; Secure; 

                                        
                                            
x-powered-by: ASP.NET 

                                        
                                            
x-cache: CONFIG_NOCACHE 

                                        
                                            
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version 

                                        
                                            
x-msedge-ref: Ref A: 324EEBA068BC453397B8A968B284EA03 Ref B: OSL30EDGE0522 Ref C: 2022-09-06T14:56:30Z 

                                        
                                            
date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST /collect HTTP/1.1 

                                        
                                            
Host: b.clarity.ms

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: text/plain;charset=UTF-8 

                                        
                                            
Content-Length: 945 

                                        
                                            
Origin: https://dateminx.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://dateminx.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         20.75.32.255

                                        
                                            HTTP/2 204 No Content

                                        

                                        
                                            
server: Microsoft-IIS/10.0 

                                        
                                            
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64 

                                        
                                            
access-control-allow-origin: https://dateminx.com 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
x-powered-by: ASP.NET 

                                        
                                            
date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /?sub1=63175f8cd663a30001669472&sub2=&sub3=&sub4=&affiliate_id=14548&source=&mst=2 HTTP/1.1 

                                        
                                            
Host: dateminx.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1

                                         172.67.146.129

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8

                                        

                                        
                                            
date: Tue, 06 Sep 2022 14:56:29 GMT 

                                        
                                            
cache-control: no-cache, private 

                                        
                                            
set-cookie: geo=%7B%2291.90.42.154%22%3A%5B59.955%2C10.859%2C%22Norway%22%2C%22Oslo%22%2C%22Oslo%20County%22%5D%7D; expires=Tue, 13-Sep-2022 14:56:29 GMT; Max-Age=604800; path=/; secure; httponly; samesite=lax
sub1=63175f8cd663a30001669472; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax
sub2=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax
sub3=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax
sub4=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax
sub5=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax
sub6=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax
sub7=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax
sub8=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax
source=unknown; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax
affiliate_id=14548; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax
cid=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax
mst=2; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax
tour=0; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax
ivc=1; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax 

                                        
                                            
cf-cache-status: DYNAMIC 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fGEsaiL021rt5NpWmO%2FKJLB6eFCuSKCrLMCtVQ%2BOCQW536m2bsPcJcK0qpJHIa1fOdJ%2B0sKUTIswsISztxlpEv7ionxJiGKYivfhC0O%2Fxr5l7jQH%2FRFvE8BkDTPL4iE%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 74680d342f1ab4ee-OSL 

                                        
                                            
content-encoding: br 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /eus2/s/0.6.40/clarity.js HTTP/1.1 

                                        
                                            
Host: www.clarity.ms

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://dateminx.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         104.212.67.144

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript;charset=utf-8

                                        

                                        
                                            
cache-control: public,max-age=86400 

                                        
                                            
content-encoding: br 

                                        
                                            
last-modified: Wed, 01 Jun 2022 12:22:22 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
etag: "1d8bd4806fdad30" 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64 

                                        
                                            
x-powered-by: ASP.NET 

                                        
                                            
x-cache: CONFIG_NOCACHE 

                                        
                                            
x-azure-ref: 0nl8XYwAAAADJVAiy3QOXTJi93SX3PozjRlJBMzFFREdFMDMxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE= 

                                        
                                            
date: Tue, 06 Sep 2022 14:56:30 GMT 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	dateminx.com/?sub1=63175f8cd663a30001669472&sub2=&sub3=&sub4=&affiliate_id=14548&source=&mst=2
IP	104.21.47.102 ()
ASN	#13335 CLOUDFLARENET
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-09-06 14:56:39 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	2
urlquery alerts	No alerts detected
Tags	None

Request	Response
GET /?sub1=63175f8cd663a30001669472&sub2=&sub3=&sub4=&affiliate_id=14548&source=&mst=2 HTTP/1.1 Host: dateminx.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: dateminx.com/?sub1=63175f8cd663a30001669472&sub2=&sub3= (...) FQDN: dateminx.com IP: 172.67.146.129 HASH: 1ac63374d015eee8d9d875502aa63981dbeb9d86a14096de0d504763808e429b 172.67.146.129 HTTP/1.1 301 Moved Permanently Content-Type: text/html Date: Tue, 06 Sep 2022 14:56:28 GMT Transfer-Encoding: chunked Connection: keep-alive Location: https://dateminx.com/?sub1=63175f8cd663a30001669472&sub2=&sub3=&sub4=&affiliate_id=14548&source=&mst=2 CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pC%2B7JYM0Ebeu0Xxu7VrnENizJ419U3swHAp3eMVW9%2BhmV7R7jN782qlYoKtcBIKZN8IhVzK1wm5ofuKqwP%2F6VW%2Fg%2Ftqz9H3QyePEgSKqW%2F1ABHxq7Jn3Jl2Tm0NIxVk%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 74680d318feab4f7-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 169 Md5: b51956ed2a6129f43c5d0ecc011cc5a5 Sha1: c03157aff80067b6b57903d3843b9fd9e07b33ab Sha256: 1ac63374d015eee8d9d875502aa63981dbeb9d86a14096de0d504763808e429b
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.35 HASH: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e 143.204.55.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Tue, 06 Sep 2022 14:04:18 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Dh-DfMow6NG-6WQQSFrQBUyoAKmACwZpOehwpIldyi6sCkIFdwaNeg== Age: 3130 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 99b7d23c1748d0526782b9ff9ea45f09 Sha1: eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29" Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8063 Expires: Tue, 06 Sep 2022 17:10:51 GMT Date: Tue, 06 Sep 2022 14:56:28 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d931e0142ef5ffe9cdb4c4c6bfcb9bc9 Sha1: d9c4caf525e8926b042a14f38d374cc4033ed768 Sha256: f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 143.204.55.25 HASH: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345 143.204.55.25 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sat, 20 Aug 2022 23:18:05 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Tue, 06 Sep 2022 01:15:18 GMT etag: "742edb4038f38bc533514982f3d2e861" x-cache: Hit from cloudfront via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: EmJ2vd6Qf894P2uVUjXqsBNya3kB5-nNnLqmXznzKLSM8v4Q7y5OsA== age: 49271 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 742edb4038f38bc533514982f3d2e861 Sha1: cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Tue, 06 Sep 2022 14:56:28 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
POST / HTTP/1.1 Host: e1.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: e1.o.lencr.org/ FQDN: e1.o.lencr.org IP: 23.36.77.32 HASH: ddfd9a27daa10a38b7f4a207de194f91e54ad54825865833f656d23c836f30a0 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 345 ETag: "DDFD9A27DAA10A38B7F4A207DE194F91E54AD54825865833F656D23C836F30A0" Last-Modified: Tue, 06 Sep 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=705 Expires: Tue, 06 Sep 2022 15:08:13 GMT Date: Tue, 06 Sep 2022 14:56:28 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 345 Md5: 09270c69d346e051b8681586f75d01e4 Sha1: c4ea29b5b2289a24cb3d1711c8a4de09d725d51d Sha256: ddfd9a27daa10a38b7f4a207de194f91e54ad54825865833f656d23c836f30a0
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.35 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 143.204.55.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Tue, 06 Sep 2022 14:38:18 GMT Cache-Control: max-age=3600 Expires: Tue, 06 Sep 2022 15:34:05 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: hMM1WdsaGQngf8_h-DVIyu-g4C_tOkfuke4vbMofMWcok39AfSzg7g== Age: 1091 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: e1.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: e1.o.lencr.org/ FQDN: e1.o.lencr.org IP: 23.36.77.32 HASH: ddfd9a27daa10a38b7f4a207de194f91e54ad54825865833f656d23c836f30a0 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 345 ETag: "DDFD9A27DAA10A38B7F4A207DE194F91E54AD54825865833F656D23C836F30A0" Last-Modified: Tue, 06 Sep 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=704 Expires: Tue, 06 Sep 2022 15:08:13 GMT Date: Tue, 06 Sep 2022 14:56:29 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 345 Md5: 09270c69d346e051b8681586f75d01e4 Sha1: c4ea29b5b2289a24cb3d1711c8a4de09d725d51d Sha256: ddfd9a27daa10a38b7f4a207de194f91e54ad54825865833f656d23c836f30a0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: f41565238dc856269109dcc30c34c535 Sha1: 28517f51eb3b6cd08981afbf878446d635430741 Sha256: 9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: a442f581e40660d4a8f0ff7b02e73b4324cac79f4b707c51700e676ae92bb5a9 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A442F581E40660D4A8F0FF7B02E73B4324CAC79F4B707C51700E676AE92BB5A9" Last-Modified: Sun, 04 Sep 2022 01:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5488 Expires: Tue, 06 Sep 2022 16:27:57 GMT Date: Tue, 06 Sep 2022 14:56:29 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7f44014d35c5fcc1c4bc81eaf1f2c26f Sha1: 36a39784bffe76ddcc821dded6fbd7e207ff5015 Sha256: a442f581e40660d4a8f0ff7b02e73b4324cac79f4b707c51700e676ae92bb5a9
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3619 Cache-Control: 'max-age=158059' Date: Tue, 06 Sep 2022 14:56:29 GMT Last-Modified: Tue, 06 Sep 2022 13:56:10 GMT Server: ECS (ska/F704) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: e8952752ad4a452a575522a7eb737217 Sha1: c5554fa2af05d7a7117032b0f99352de08988346 Sha256: 8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
GET /icalendar.js HTTP/1.1 Host: icalendar.datingtopgirls.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: icalendar.datingtopgirls.com/icalendar.js FQDN: icalendar.datingtopgirls.com IP: 31.220.24.141 HASH: 533ecbbbb80cdf2f49dc8333f2801b3ab1a508bacc1abedcde6872c622c0d92e 31.220.24.141 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx/1.22.0 Date: Tue, 06 Sep 2022 14:56:29 GMT Last-Modified: Mon, 23 May 2022 15:29:00 GMT Transfer-Encoding: chunked Connection: keep-alive ETag: W/"628ba83c-173d" Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1796 Md5: d39f355915d9633385c213781d160c84 Sha1: f22997c5f291268e4f7996b2664ad19c241fd31f Sha256: 533ecbbbb80cdf2f49dc8333f2801b3ab1a508bacc1abedcde6872c622c0d92e Alerts: Blocklists: - fortinet: Malware
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: f41565238dc856269109dcc30c34c535 Sha1: 28517f51eb3b6cd08981afbf878446d635430741 Sha256: 9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: bcbb9bf29f1e0acaa7ac6d6566381370 Sha1: dec1bea642dffbc11ebd6d65c94f87d6db95703a Sha256: b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
GET /gtm.js?id=GTM-T76Q9QX HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.googletagmanager.com/gtm.js?id=GTM-T76Q9QX FQDN: www.googletagmanager.com IP: 142.250.74.72 HASH: 20a117936020f5c594afe350ef3a998e0c6e25e5f02e4464ebe3cb3cbd7dc23b 142.250.74.72 HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 06 Sep 2022 14:56:29 GMT expires: Tue, 06 Sep 2022 14:56:29 GMT cache-control: private, max-age=900 last-modified: Tue, 06 Sep 2022 12:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 55379 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (3486) Size: 55379 Md5: a402fcd357ce4cd0c3045f9d4fbad33b Sha1: 2b371fa7c95378dd79a1aaf5f9c77e5ec5a1eb9d Sha256: 20a117936020f5c594afe350ef3a998e0c6e25e5f02e4464ebe3cb3cbd7dc23b
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 62c739a1335c5cf0fd4e783db6cdf14b Sha1: 4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff Sha256: de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: +BhAd/20owU0gfaGpeqKtA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 52.89.136.7 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.89.136.7 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: p7Us0rLSgg2gFC2tbn0gfUacG2M= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/22 HTTP/1.1 Host: dmx.datingtopgirls.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://dateminx.com Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: dmx.datingtopgirls.com/b/22 FQDN: dmx.datingtopgirls.com IP: 31.220.24.141 HASH: d90a8a667bb809c4a2e24608df0c74eeafcb72ec650f7ece25513f97c4fc2524 31.220.24.141 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Server: nginx/1.22.0 Transfer-Encoding: chunked Connection: keep-alive Cache-Control: no-cache, private Date: Tue, 06 Sep 2022 14:56:29 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS Access-Control-Allow-Headers: DNT, X-User-Token, Keep-Alive, User-Agent, X-Requested-With, If-Modified-Since, Cache-Control, Content-Type Content-Encoding: gzip --- Additional Info --- Magic: data Size: 6321 Md5: 1c43b5a2442888da46e943909ea16955 Sha1: d04c0fcf925442988643c0e8fb3f53a8dde1259f Sha256: d90a8a667bb809c4a2e24608df0c74eeafcb72ec650f7ece25513f97c4fc2524 Alerts: Blocklists: - fortinet: Malware
GET /css/notification-style.css HTTP/1.1 Host: dmx.datingtopgirls.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: dmx.datingtopgirls.com/css/notification-style.css FQDN: dmx.datingtopgirls.com IP: 31.220.24.141 HASH: 051a7ffd9576d7cdaa8fd014ef92234dfa95bb37cc5b4f31e3e807453633b010 31.220.24.141 HTTP/1.1 200 OK Content-Type: text/css Server: nginx/1.22.0 Date: Tue, 06 Sep 2022 14:56:30 GMT Last-Modified: Mon, 23 May 2022 15:29:00 GMT Transfer-Encoding: chunked Connection: keep-alive ETag: W/"628ba83c-1bc" Content-Encoding: gzip --- Additional Info --- Magic: data Size: 265 Md5: 7a38bdef5e26beb95b0c8918f1e890a5 Sha1: ac047fdde3c1fabfa64ac30cef5415dbffeb70df Sha256: 051a7ffd9576d7cdaa8fd014ef92234dfa95bb37cc5b4f31e3e807453633b010
GET /util/104-small.jpg HTTP/1.1 Host: dmx.datingtopgirls.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: dmx.datingtopgirls.com/util/104-small.jpg FQDN: dmx.datingtopgirls.com IP: 31.220.24.141 HASH: 9a905feb87299b83441ac610a59afd6f75e9947d7142e81d1387a7f3c9233a3d 31.220.24.141 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.22.0 Date: Tue, 06 Sep 2022 14:56:30 GMT Content-Length: 41227 Last-Modified: Fri, 02 Apr 2021 14:16:22 GMT Connection: keep-alive ETag: "60672736-a10b" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x240, components 3\012- data Size: 41227 Md5: 74085ff03e12526b2d948c2d14c75f6c Sha1: 3cb46b792e5d5f9fc2ce08bba79629c0adb6ca7e Sha256: 9a905feb87299b83441ac610a59afd6f75e9947d7142e81d1387a7f3c9233a3d
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 172.64.155.188 HASH: 58d632863a6aab3b308ad380f47595e74120f4495f48e83e89647e4f42533fa3 172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 05 Sep 2022 06:25:21 GMT Expires: Mon, 12 Sep 2022 06:25:20 GMT Etag: "6cecdd7246361b80f2464910ba31ee1f4381ee7d" Cache-Control: max-age=487129,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb3 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 74680d3c7da7b50b-OSL --- Additional Info --- Magic: data Size: 471 Md5: 912f9a32166cf6d4e458969545df501d Sha1: 6cecdd7246361b80f2464910ba31ee1f4381ee7d Sha256: 58d632863a6aab3b308ad380f47595e74120f4495f48e83e89647e4f42533fa3
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 172.64.155.188 HASH: 58d632863a6aab3b308ad380f47595e74120f4495f48e83e89647e4f42533fa3 172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 05 Sep 2022 06:25:21 GMT Expires: Mon, 12 Sep 2022 06:25:20 GMT Etag: "6cecdd7246361b80f2464910ba31ee1f4381ee7d" Cache-Control: max-age=487129,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb5 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 74680d3c8849b521-OSL --- Additional Info --- Magic: data Size: 471 Md5: 912f9a32166cf6d4e458969545df501d Sha1: 6cecdd7246361b80f2464910ba31ee1f4381ee7d Sha256: 58d632863a6aab3b308ad380f47595e74120f4495f48e83e89647e4f42533fa3
GET /p.js?f=sync&lr=1&partner=3a05d8de1e835641a4122cb3d37a0af24eaf56590b1281864cb22b8f126cbfe5 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: my.rtmark.net/p.js?f=sync&lr=1&partner=3a05d8de1e835641 (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: a6a952ca48c1eb05cf81aaa8d867561ad7d150a12b5588e85649c021ddaead31 139.45.195.8 HTTP/2 200 OK content-type: text/javascript server: nginx date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 697 access-control-allow-origin: * access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text Size: 697 Md5: 7810e171104615cbf47646d929eb2f07 Sha1: 6186265ba25a5d3c24e3045237c4dd2b405914b6 Sha256: a6a952ca48c1eb05cf81aaa8d867561ad7d150a12b5588e85649c021ddaead31
GET /p.js?f=sync&lr=1&partner=7baf563de63d4c5cebd07a29a6b51c7eb1dcc7d6d9d09957dec27fe5801d2fa6 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: my.rtmark.net/p.js?f=sync&lr=1&partner=7baf563de63d4c5c (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: 6179364fc2690c7318d37c382b9c0eeca919124e75f4e467d57034fce8e4c472 139.45.195.8 HTTP/2 200 OK content-type: text/javascript server: nginx date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 697 access-control-allow-origin: * access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 1813 Md5: 5ecf511beea2175894f9fa2a7eda1313 Sha1: 59732ed370de33f5bdfb1886f9067941b72a8921 Sha256: 6179364fc2690c7318d37c382b9c0eeca919124e75f4e467d57034fce8e4c472
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 54.230.245.100 HASH: 7fa937575c03ff2eb9100914eba666524e542c2affae2bf3419e040cb786e8b0 54.230.245.100 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Tue, 06 Sep 2022 14:56:30 GMT Last-Modified: Tue, 06 Sep 2022 13:37:35 GMT Server: ECS (nyb/1D23) X-Cache: Miss from cloudfront Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: t_CKHrtxEZRRxS2DQ61BV1YkTTTB40oK5TGacO-nmdKIKem9jXyxuA== Age: 4735 --- Additional Info --- Magic: data Size: 471 Md5: 0f4305bbf6ec46a31fec6c4870ad87cf Sha1: 7b493589d5a28f234ebbd8317764c9203968ba2e Sha256: 7fa937575c03ff2eb9100914eba666524e542c2affae2bf3419e040cb786e8b0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e1336388cf579034dbc18680696da587 Sha1: 6d633baf8cf123d56a6da8bba402659ad4cb7c08 Sha256: 7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-Q7W6GLM2DR&cid=922336432.1662476185&gtm=2oe8v0&aip=1&z=1792635755 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&t (...) FQDN: www.google.no IP: 142.250.74.3 HASH: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 142.250.74.3 HTTP/2 200 OK content-type: image/gif p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Tue, 06 Sep 2022 14:56:30 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 42 Md5: d89746888da2d9510b64a9f031eaecd5 Sha1: d5fceb6532643d0d84ffe09c40c481ecdf59e15a Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e1336388cf579034dbc18680696da587 Sha1: 6d633baf8cf123d56a6da8bba402659ad4cb7c08 Sha256: 7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e
POST /api/v1/detect?version=0.1.23 HTTP/1.1 Host: botd.fpapi.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dateminx.com/ Content-Type: text/plain Origin: https://dateminx.com Content-Length: 21550 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: botd.fpapi.io/api/v1/detect?version=0.1.23 FQDN: botd.fpapi.io IP: 18.235.188.227 HASH: e2d1e1dce80588c0d6bd72d2ab94eb6ed4ea63771f52fc16d4ef2b96fef2dac9 18.235.188.227 HTTP/2 401 Unauthorized content-type: application/octet-stream date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 69 server: nginx access-control-allow-credentials: true access-control-allow-headers: Accept, Content-Type, Origin, Content-Length, Accept-Encoding, Authorization, Auth-Subscriptions, Botd-Password access-control-allow-methods: POST, GET, OPTIONS access-control-allow-origin: https://dateminx.com X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 69 Md5: 32ba2944a9fb9f71e7edc24a56593f3d Sha1: 52b5da6230916b04a19d6f712ef247513831038c Sha256: e2d1e1dce80588c0d6bd72d2ab94eb6ed4ea63771f52fc16d4ef2b96fef2dac9
GET /tag/bvsqia2v2y?ref=gtm HTTP/1.1 Host: www.clarity.ms User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.clarity.ms/tag/bvsqia2v2y?ref=gtm FQDN: www.clarity.ms IP: 104.212.67.144 HASH: c87dc6162512b082483ad622f76dc60fb7527871c4b7bcece5aebfc5a36fcc1d 104.212.67.144 HTTP/2 200 OK content-type: application/x-javascript cache-control: no-cache, no-store content-length: 1362 expires: -1 set-cookie: CLID=e1209db9d9f341c8a8e045d35e7c1e7b.20220906.20230906; expires=Wed, 06 Sep 2023 14:56:30 GMT; path=/; secure; samesite=none; httponly request-context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8 x-powered-by: ASP.NET x-cache: CONFIG_NOCACHE x-azure-ref: 0nl8XYwAAAABpJWE2bVRUTL49tXXrU6A1RlJBMzFFREdFMDMxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE= date: Tue, 06 Sep 2022 14:56:30 GMT X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (1362), with no line terminators Size: 1362 Md5: 7a5f7d5aa2a5020f4d11c361e0110f5b Sha1: 0e3bc727dedcd198b8329bac0a6ef1a461fc14a1 Sha256: c87dc6162512b082483ad622f76dc60fb7527871c4b7bcece5aebfc5a36fcc1d
GET /c.gif HTTP/1.1 Host: c.clarity.ms User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: c.clarity.ms/c.gif FQDN: c.clarity.ms IP: 20.234.93.27 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 20.234.93.27 HTTP/2 302 Found cache-control: private, no-cache, proxy-revalidate, no-store pragma: no-cache location: https://c.bing.com/c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AFEF8C&RedC=c.clarity.ms&MXFR=01A99B65AF4E60DF3E0A8972AB4E6EDC server: Microsoft-IIS/10.0 x-powered-by: ASP.NET p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure; MUID=01A99B65AF4E60DF3E0A8972AB4E6EDC; domain=.clarity.ms; expires=Sun, 01-Oct-2023 14:56:30 GMT; path=/; SameSite=None; Secure; Priority=High; date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-Q7W6GLM2DR&gtm=2oe8v0&_p=161487413&_gaz=1&cid=922336432.1662476185&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662476184&sct=1&seg=0&dl=https%3A%2F%2Fdateminx.com%2F%3Fsub1%3D63175f8cd663a30001669472%26sub2%3D%26sub3%3D%26sub4%3D%26affiliate_id%3D14548%26source%3D%26mst%3D2&dt=dateminx.com&en=page_view&_fv=1&_nsi=1&_ss=1&up.visitor_id=63175f8cd663a30001669472&up.member_id=&up.user_status=GUEST&up.networkname=dateminx&up.affiliate_id=14548 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://dateminx.com Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0	URL: region1.analytics.google.com/g/collect?v=2&tid=G-Q7W6GL (...) FQDN: region1.analytics.google.com IP: 216.239.32.36 HASH: 057d0b4755682bd7b87ef3c3e2f1621c70dcef6246a5e1c09e5c502c5d202682 216.239.32.36 HTTP/2 204 No Content content-type: text/plain access-control-allow-origin: https://dateminx.com date: Tue, 06 Sep 2022 14:56:30 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 58 Md5: 395cf28368dff757c3d2b6cdfbee5549 Sha1: fc64d88c3d9f4bce1fa074c75232b6d58bf71b4c Sha256: 057d0b4755682bd7b87ef3c3e2f1621c70dcef6246a5e1c09e5c502c5d202682
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 76c6ad39ad355f829170427e9076311a Sha1: 26a82c7dd26986900a4964464e43d9837dfef1f8 Sha256: 40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd
POST /g/collect?v=2&tid=G-Q7W6GLM2DR&cid=922336432.1662476185&gtm=2oe8v0&aip=1 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://dateminx.com Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0	URL: stats.g.doubleclick.net/g/collect?v=2&tid=G-Q7W6GLM2DR& (...) FQDN: stats.g.doubleclick.net IP: 142.251.1.156 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 142.251.1.156 HTTP/2 204 No Content content-type: text/plain access-control-allow-origin: https://dateminx.com date: Tue, 06 Sep 2022 14:56:30 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img.gif?f=sync&partner=3a05d8de1e835641a4122cb3d37a0af24eaf56590b1281864cb22b8f126cbfe5&ttl=&rurl=https%3A%2F%2Fdateminx.com%2F%3Fsub1%3D63175f8cd663a30001669472%26sub2%3D%26sub3%3D%26sub4%3D%26affiliate_id%3D14548%26source%3D%26mst%3D2 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: my.rtmark.net/img.gif?f=sync&partner=3a05d8de1e835641a4 (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 139.45.195.8 HTTP/2 200 OK content-type: image/gif server: nginx date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 43 access-control-allow-origin: * access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true set-cookie: ID=e0ee0d2a131444f6944564fdb1a43dd0; expires=Wed, 06 Sep 2023 14:56:30 GMT; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: b4491705564909da7f9eaf749dbbfbb1 Sha1: 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=7baf563de63d4c5cebd07a29a6b51c7eb1dcc7d6d9d09957dec27fe5801d2fa6&ttl=&rurl=https%3A%2F%2Fdateminx.com%2F%3Fsub1%3D63175f8cd663a30001669472%26sub2%3D%26sub3%3D%26sub4%3D%26affiliate_id%3D14548%26source%3D%26mst%3D2 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: my.rtmark.net/img.gif?f=sync&partner=7baf563de63d4c5ceb (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 139.45.195.8 HTTP/2 200 OK content-type: image/gif server: nginx date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 43 access-control-allow-origin: * access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true set-cookie: ID=7d296a4329014bdbbc764f3876aa2ed8; expires=Wed, 06 Sep 2023 14:56:30 GMT; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: b4491705564909da7f9eaf749dbbfbb1 Sha1: 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Sep 2022 14:56:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 76c6ad39ad355f829170427e9076311a Sha1: 26a82c7dd26986900a4964464e43d9837dfef1f8 Sha256: 40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17368 Expires: Tue, 06 Sep 2022 19:45:58 GMT Date: Tue, 06 Sep 2022 14:56:30 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: bc70b1691dd339e8120b92ba393ffb69 Sha1: 99118be3645b3182ccdc5f9da149a97c220a3929 Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17368 Expires: Tue, 06 Sep 2022 19:45:58 GMT Date: Tue, 06 Sep 2022 14:56:30 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: bc70b1691dd339e8120b92ba393ffb69 Sha1: 99118be3645b3182ccdc5f9da149a97c220a3929 Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17368 Expires: Tue, 06 Sep 2022 19:45:58 GMT Date: Tue, 06 Sep 2022 14:56:30 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: bc70b1691dd339e8120b92ba393ffb69 Sha1: 99118be3645b3182ccdc5f9da149a97c220a3929 Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17367 Expires: Tue, 06 Sep 2022 19:45:58 GMT Date: Tue, 06 Sep 2022 14:56:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: bc70b1691dd339e8120b92ba393ffb69 Sha1: 99118be3645b3182ccdc5f9da149a97c220a3929 Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8" Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17367 Expires: Tue, 06 Sep 2022 19:45:58 GMT Date: Tue, 06 Sep 2022 14:56:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: bc70b1691dd339e8120b92ba393ffb69 Sha1: 99118be3645b3182ccdc5f9da149a97c220a3929 Sha256: da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6656 x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YAX-3F2ZIAMFpLg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0 x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google date: Mon, 05 Sep 2022 21:44:33 GMT age: 61918 etag: "5fc951e5236edd282d4975853ca35dab2e55fb17" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6656 Md5: 983e705542fa78b4d5c876e0c1eada7e Sha1: 5fc951e5236edd282d4975853ca35dab2e55fb17 Sha256: fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 12683 x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Xz8XmEe0IAMFQDA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0 x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw== via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google date: Tue, 06 Sep 2022 04:31:02 GMT age: 37529 etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12683 Md5: ec466c0d472e43c11d36bf6fce068205 Sha1: 720d3624a76d060b8e2699e9aa7a320e3efd4878 Sha256: 5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6482 x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YAX-5FaYIAMFzjw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0 x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: kD_wcIHwmUDV9M9Pl2NtUwRw0CElnHhX6NGZ5PQlnchvdxpLAZhm0w== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google date: Mon, 05 Sep 2022 21:46:42 GMT etag: "f8589eb3907582137d8b9373af745d80eddbf1bb" age: 61789 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6482 Md5: 0efc32eccbf76ac0d89f324d09a7fd1f Sha1: f8589eb3907582137d8b9373af745d80eddbf1bb Sha256: ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7152 x-amzn-requestid: 2571ff54-e2f8-4072-8a26-3d0dd4cd3523 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YAWsfHz_IAMFaXQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63166b1c-6a598849314cdc433f9f82f7;Sampled=0 x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: I6xmRiAaxHPKpBlCPaRWoMiISlrXRrltO57N3NayiuIvv3gCWTWCZQ== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Mon, 05 Sep 2022 21:53:35 GMT age: 61376 etag: "b1685694999272feb4d9fc39296418cd95480678" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7152 Md5: 8ce50dfa23e7f34ff68cc6426c2823f7 Sha1: b1685694999272feb4d9fc39296418cd95480678 Sha256: 4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4426 x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: XzfYTHHFIAMFjFw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0 x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: GSRJIWisH465dPqbKyPj1iZk1jAu3RGrgwj1CX3X8A397zv9Nt0cHA== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google date: Tue, 06 Sep 2022 08:35:06 GMT age: 22885 etag: "fc766bca874a352a4acb569577d4cf6527f4f074" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4426 Md5: c81f3df885bdee8cac46ea9495e6b63b Sha1: fc766bca874a352a4acb569577d4cf6527f4f074 Sha256: e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: a19b6749429e8ecaeac8fc0849abc4d891bfc628489762b1619a3ee3064536e3 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 12573 x-amzn-requestid: 93ac3b01-e2e3-462b-93d4-8f1bf949a015 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YAX-5E5JIAMFTJg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63166d2b-7fa8ddcb4b17c5ff1c214b94;Sampled=0 x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: qU3s1u1OYmhFyNM8dgd4R3mLfgN3VXlj7z0WGWFhmW-U00wuUld96w== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google date: Mon, 05 Sep 2022 21:45:23 GMT age: 61868 etag: "3f3aad2cc71226b39549db1a9baa6837d4f1d897" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12573 Md5: 3fe4a321dcd6a94a637a528d74f9321a Sha1: 3f3aad2cc71226b39549db1a9baa6837d4f1d897 Sha256: a19b6749429e8ecaeac8fc0849abc4d891bfc628489762b1619a3ee3064536e3
GET /c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AFEF8C&RedC=c.clarity.ms&MXFR=01A99B65AF4E60DF3E0A8972AB4E6EDC HTTP/1.1 Host: c.bing.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dateminx.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: c.bing.com/c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AF (...) FQDN: c.bing.com IP: 13.107.21.200 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 13.107.21.200 HTTP/2 302 Found cache-control: private, no-cache, proxy-revalidate, no-store pragma: no-cache location: https://c.clarity.ms/c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AFEF8C&MUID=32A410042A6C65C335AC02132B996414 p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" set-cookie: SRM_B=32A410042A6C65C335AC02132B996414; domain=c.bing.com; expires=Sun, 01-Oct-2023 14:56:31 GMT; path=/; SameSite=None; Secure; x-powered-by: ASP.NET x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: 324EEBA068BC453397B8A968B284EA03 Ref B: OSL30EDGE0522 Ref C: 2022-09-06T14:56:30Z date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6AFEF8C&MUID=32A410042A6C65C335AC02132B996414 HTTP/1.1 Host: c.clarity.ms User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dateminx.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: c.clarity.ms/c.gif?CtsSyncId=148EF1A3B3F64FC69F7C674FE6 (...) FQDN: c.clarity.ms IP: 20.234.93.27 HASH: 99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12 20.234.93.27 HTTP/2 200 OK content-type: image/gif cache-control: private, no-cache, proxy-revalidate, no-store pragma: no-cache last-modified: Wed, 17 Aug 2022 23:56:46 GMT accept-ranges: bytes etag: "de363c295b2d81:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Tue, 06-Sep-2022 15:06:31 GMT; path=/; SameSite=None; Secure; date: Tue, 06 Sep 2022 14:56:30 GMT content-length: 42 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 42 Md5: 32023bb33cfb2a1990a4ef2d85b6ac16 Sha1: 23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1 Sha256: 99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
POST /collect HTTP/1.1 Host: b.clarity.ms User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 945 Origin: https://dateminx.com Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: b.clarity.ms/collect FQDN: b.clarity.ms IP: 20.75.32.255 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 20.75.32.255 HTTP/2 204 No Content server: Microsoft-IIS/10.0 request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64 access-control-allow-origin: https://dateminx.com access-control-allow-credentials: true x-powered-by: ASP.NET date: Tue, 06 Sep 2022 14:56:30 GMT X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8cff825-6282-4340-aa72-8e15e060b3de.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: a83be2ef99fb72af5eed4489b83d26ca208dd7b49d495444a8191798730d5bc9 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 11720 x-amzn-requestid: 97f7796d-7181-4f67-affd-47d347ff0ded x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YAYWREzKoAMFvtQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63166dc1-5611e8e479f69a850d5efedc;Sampled=0 x-amzn-remapped-date: Mon, 05 Sep 2022 21:44:33 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: ydzlXF5bxCBQ6r6cRQRbuldbEjLhdOn5qPr_jAh7326T3DFs5D-6xA== via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Mon, 05 Sep 2022 21:58:49 GMT etag: "6d3e32e82671de26c379e35301baf9d7f91bd008" age: 61068 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11720 Md5: 72421f8b636827a090934c3127375974 Sha1: 6d3e32e82671de26c379e35301baf9d7f91bd008 Sha256: a83be2ef99fb72af5eed4489b83d26ca208dd7b49d495444a8191798730d5bc9
GET /?sub1=63175f8cd663a30001669472&sub2=&sub3=&sub4=&affiliate_id=14548&source=&mst=2 HTTP/1.1 Host: dateminx.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: dateminx.com/?sub1=63175f8cd663a30001669472&sub2=&sub3= (...) FQDN: dateminx.com IP: 172.67.146.129 172.67.146.129 HTTP/2 200 OK content-type: text/html; charset=UTF-8 date: Tue, 06 Sep 2022 14:56:29 GMT cache-control: no-cache, private set-cookie: geo=%7B%2291.90.42.154%22%3A%5B59.955%2C10.859%2C%22Norway%22%2C%22Oslo%22%2C%22Oslo%20County%22%5D%7D; expires=Tue, 13-Sep-2022 14:56:29 GMT; Max-Age=604800; path=/; secure; httponly; samesite=lax sub1=63175f8cd663a30001669472; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax sub2=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub3=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub4=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub5=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub6=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub7=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax sub8=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax source=unknown; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax affiliate_id=14548; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax cid=deleted; expires=Mon, 06-Sep-2021 14:56:28 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax mst=2; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax tour=0; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax ivc=1; expires=Mon, 28-Aug-2023 14:56:29 GMT; Max-Age=30758400; path=/; secure; httponly; samesite=lax cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fGEsaiL021rt5NpWmO%2FKJLB6eFCuSKCrLMCtVQ%2BOCQW536m2bsPcJcK0qpJHIa1fOdJ%2B0sKUTIswsISztxlpEv7ionxJiGKYivfhC0O%2Fxr5l7jQH%2FRFvE8BkDTPL4iE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 74680d342f1ab4ee-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---
GET /icon?family=Material+Icons HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/icon?family=Material+Icons FQDN: fonts.googleapis.com IP: 142.250.74.10 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 06 Sep 2022 14:56:29 GMT date: Tue, 06 Sep 2022 14:56:29 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /eus2/s/0.6.40/clarity.js HTTP/1.1 Host: www.clarity.ms User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dateminx.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: www.clarity.ms/eus2/s/0.6.40/clarity.js FQDN: www.clarity.ms IP: 104.212.67.144 104.212.67.144 HTTP/2 200 OK content-type: application/javascript;charset=utf-8 cache-control: public,max-age=86400 content-encoding: br last-modified: Wed, 01 Jun 2022 12:22:22 GMT accept-ranges: bytes etag: "1d8bd4806fdad30" vary: Accept-Encoding request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64 x-powered-by: ASP.NET x-cache: CONFIG_NOCACHE x-azure-ref: 0nl8XYwAAAADJVAiy3QOXTJi93SX3PozjRlJBMzFFREdFMDMxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE= date: Tue, 06 Sep 2022 14:56:30 GMT X-Firefox-Spdy: h2 --- Additional Info ---

Overview

Domain Summary (25)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 2 reports on IP: 104.21.47.102

Last 5 reports on ASN: CLOUDFLARENET

Last 4 reports on domain: dateminx.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (22)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (55)

Overview

Domain Summary (25)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 2 reports on IP: 104.21.47.102

Last 5 reports on ASN: CLOUDFLARENET

Last 4 reports on domain: dateminx.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (22)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (55)

Network Intrusion Detection Systems