culos-tetas.com/video/incesto-con-la-esposa-chilena-de-su-hermano-388
213.227.149.234200 OK 529 B URL HTTP/1.1 culos-tetas.com/video/incesto-con-la-esposa-chilena-de-su-hermano-388
IP 213.227.149.234:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (529), with no line terminators
Hash f1d819602d9ca65f9eabb76300b94e5d
1c1bded4227bdb3aa1a2266b4c1b1d33f76cc6c3
3407600247bf8c2eb454e989381fde1cb0f4c4f4ee3736faa0764f2d0eb2a5df
Analyzer Verdict Alert fortinet Phishing
GET /video/incesto-con-la-esposa-chilena-de-su-hermano-388 HTTP/1.1
Host: culos-tetas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 529
content-type: text/html; charset=utf-8
date: Sun, 26 Mar 2023 02:20:06 GMT
server: nginx
set-cookie: sid=b9ecd15a-cb7c-11ed-9e18-76754be5a999; path=/; domain=.culos-tetas.com; expires=Fri, 13 Apr 2091 05:34:14 GMT; max-age=2147483647; HttpOnly
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3114
Expires: Sun, 26 Mar 2023 03:12:01 GMT
Date: Sun, 26 Mar 2023 02:20:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2895
Expires: Sun, 26 Mar 2023 03:08:22 GMT
Date: Sun, 26 Mar 2023 02:20:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 26 Mar 2023 02:15:30 GMT
content-type: application/json
age: 277
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4034
Expires: Sun, 26 Mar 2023 03:27:21 GMT
Date: Sun, 26 Mar 2023 02:20:07 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 26 Mar 2023 02:20:07 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 46qrHNERNmwIJrpMtzZnpCMEQNzpmY438ir1j8ZkobV75zYdM0lK4rcwfGET7py/X4Sz57Rg2Uo=
x-amz-request-id: B3Q70DA0W8RNWZ0V
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 26 Mar 2023 02:01:01 GMT
age: 1146
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
culos-tetas.com/favicon.ico
213.227.149.234404 Not Found 9 B URL HTTP/1.1 culos-tetas.com/favicon.ico
IP 213.227.149.234:0
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: culos-tetas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://culos-tetas.com/video/incesto-con-la-esposa-chilena-de-su-hermano-388
Cookie: sid=b9ecd15a-cb7c-11ed-9e18-76754be5a999
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Sun, 26 Mar 2023 02:20:07 GMT
server: nginx
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 87240d30a67f0737530bc26979e7d69d
e5c6d183c4c72377a896a6c6870a22ba59ff110e
47fecdf69d4c7f69f2c63be831c5bc2425b983987925278e44bfa8e62830c9c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47FECDF69D4C7F69F2C63BE831C5BC2425B983987925278E44BFA8E62830C9C2"
Last-Modified: Fri, 24 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9837
Expires: Sun, 26 Mar 2023 05:04:05 GMT
Date: Sun, 26 Mar 2023 02:20:08 GMT
Connection: keep-alive
culos-tetas.com/video/incesto-con-la-esposa-chilena-de-su-hermano-388?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTgwNDQwNywiaWF0IjoxNjc5Nzk3MjA3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDd0ZGE4MjhuMmJrbXU4bTgwZmNmOGwiLCJuYmYiOjE2Nzk3OTcyMDcsInRzIjoxNjc5Nzk3MjA3NDA4MzkwfQ.v9emSnYd9CjRNEwjXA7sK3LoFGxo3ruGDTSnxmWDNxs&sid=b9ecd15a-cb7c-11ed-9e18-76754be5a999
213.227.149.234302 Found 11 B URL HTTP/1.1 culos-tetas.com/video/incesto-con-la-esposa-chilena-de-su-hermano-388?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTgwNDQwNywiaWF0IjoxNjc5Nzk3MjA3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDd0ZGE4MjhuMmJrbXU4bTgwZmNmOGwiLCJuYmYiOjE2Nzk3OTcyMDcsInRzIjoxNjc5Nzk3MjA3NDA4MzkwfQ.v9emSnYd9CjRNEwjXA7sK3LoFGxo3ruGDTSnxmWDNxs&sid=b9ecd15a-cb7c-11ed-9e18-76754be5a999
IP 213.227.149.234:0
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /video/incesto-con-la-esposa-chilena-de-su-hermano-388?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTgwNDQwNywiaWF0IjoxNjc5Nzk3MjA3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDd0ZGE4MjhuMmJrbXU4bTgwZmNmOGwiLCJuYmYiOjE2Nzk3OTcyMDcsInRzIjoxNjc5Nzk3MjA3NDA4MzkwfQ.v9emSnYd9CjRNEwjXA7sK3LoFGxo3ruGDTSnxmWDNxs&sid=b9ecd15a-cb7c-11ed-9e18-76754be5a999 HTTP/1.1
Host: culos-tetas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://culos-tetas.com/video/incesto-con-la-esposa-chilena-de-su-hermano-388
Cookie: sid=b9ecd15a-cb7c-11ed-9e18-76754be5a999
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Sun, 26 Mar 2023 02:20:07 GMT
location: http://ishku-wbq.com/zcvisitor/ba4ac946-cb7c-11ed-b50c-0a27b5007bf5/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=fbf34910-6652-11ed-9380-0a918cbcbb97
server: nginx
set-cookie: sid=b9ecd15a-cb7c-11ed-9e18-76754be5a999; path=/; domain=.culos-tetas.com; expires=Fri, 13 Apr 2091 05:34:15 GMT; max-age=2147483647; HttpOnly
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 26 Mar 2023 02:14:34 GMT
age: 334
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1oDCYOE/mG3EkqktXns6Sg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MYcFfv92PA7TyUeBBmO2uisSWMQ=
Date: Sun, 26 Mar 2023 02:20:08 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ishku-wbq.com/zcvisitor/ba4ac946-cb7c-11ed-b50c-0a27b5007bf5/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=fbf34910-6652-11ed-9380-0a918cbcbb97
54.237.193.255200 1.1 kB URL HTTP/1.1 ishku-wbq.com/zcvisitor/ba4ac946-cb7c-11ed-b50c-0a27b5007bf5/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=fbf34910-6652-11ed-9380-0a918cbcbb97
IP 54.237.193.255:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6c42c069e0365b87f2b3e75c81a8a4f0
a59c4b0b189e2c923cb943347e215d5f390eb223
272b80a2b7c0c01e1c88ebd1e42ac11c2723c44777ec478ddaaff0201b8434e2
GET /zcvisitor/ba4ac946-cb7c-11ed-b50c-0a27b5007bf5/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=fbf34910-6652-11ed-9380-0a918cbcbb97 HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://culos-tetas.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sun, 26 Mar 2023 02:20:08 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: HtxrMccE
ishku-wbq.com/zcredirect?visitid=ba4ac946-cb7c-11ed-b50c-0a27b5007bf5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
54.237.193.255200 822 B URL HTTP/1.1 ishku-wbq.com/zcredirect?visitid=ba4ac946-cb7c-11ed-b50c-0a27b5007bf5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP 54.237.193.255:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (368)
Hash 568de89558da6930750abca14daf7303
758ce6af0cd7c33a36d4ed8283878bba5d917e20
2a1135b5d050a79ba38a2a88779bae564b6df234f3bf139073e14ea94149b0d8
GET /zcredirect?visitid=ba4ac946-cb7c-11ed-b50c-0a27b5007bf5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ishku-wbq.com/zcvisitor/ba4ac946-cb7c-11ed-b50c-0a27b5007bf5/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=fbf34910-6652-11ed-9380-0a918cbcbb97
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sun, 26 Mar 2023 02:20:08 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: KiNDAQvf
cartining-specute.com/zp-redirect?target=https%3A%2F%2Finspxtrc.com%2F%3Fa%3D12209%26c%3D41495%26s2%3Dw6jma70233hhu2ini960d980%26s3%3D719fbd40-273d-47b8-882f-683d1074b172w6jma70233hhu2ini960d980&caid=d308f874-3267-4862-bbc9-80b387c007a6&zpid=ba4ac946-cb7c-11ed-b50c-0a27b5007bf5&cid=w6jma70233hhu2ini960d980&rt=R
18.197.36.77302 Found 0 B URL HTTP/2 cartining-specute.com/zp-redirect?target=https%3A%2F%2Finspxtrc.com%2F%3Fa%3D12209%26c%3D41495%26s2%3Dw6jma70233hhu2ini960d980%26s3%3D719fbd40-273d-47b8-882f-683d1074b172w6jma70233hhu2ini960d980&caid=d308f874-3267-4862-bbc9-80b387c007a6&zpid=ba4ac946-cb7c-11ed-b50c-0a27b5007bf5&cid=w6jma70233hhu2ini960d980&rt=R
IP 18.197.36.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zp-redirect?target=https%3A%2F%2Finspxtrc.com%2F%3Fa%3D12209%26c%3D41495%26s2%3Dw6jma70233hhu2ini960d980%26s3%3D719fbd40-273d-47b8-882f-683d1074b172w6jma70233hhu2ini960d980&caid=d308f874-3267-4862-bbc9-80b387c007a6&zpid=ba4ac946-cb7c-11ed-b50c-0a27b5007bf5&cid=w6jma70233hhu2ini960d980&rt=R HTTP/1.1
Host: cartining-specute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ishku-wbq.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sun, 26 Mar 2023 02:20:08 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://inspxtrc.com/?a=12209&c=41495&s2=w6jma70233hhu2ini960d980&s3=719fbd40-273d-47b8-882f-683d1074b172w6jma70233hhu2ini960d980
pragma: no-cache
set-cookie: cc-v4=fcH1HRTv1dG6g5nGsyoVnPNnmp56MdlzMD%2BZ%2F6GI3jShF8JLAMdmHOAUrmHLg%2B4uxEOr9PbLJxww%2BMOBAl7ubBnqFCQaT3UtvMzYGdj5DWEdUOEUnxPbRePdLydvj05vB7V3ctzu21oPjjqmn4mZ%2BA%3D%3D; Max-Age=31536000; Expires=Mon, 25-Mar-2024 02:20:08 GMT; Domain=cartining-specute.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
ishku-wbq.com/favicon.ico
54.237.193.255404 653 B URL HTTP/1.1 ishku-wbq.com/favicon.ico
IP 54.237.193.255:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ishku-wbq.com/zcredirect?visitid=ba4ac946-cb7c-11ed-b50c-0a27b5007bf5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Sun, 26 Mar 2023 02:20:09 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: uZHEkUSg
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash c9cda8c7f0eea10db4d70223e58308a7
ff1f1f34ad9b4b53ac690b67e47ebd00021a5902
60a681ea2ca2ba220d96f8ee4feac64cde51c35e42a8c22314056353c513293a
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Mar 2023 02:20:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 30 Mar 2023 00:16:22 GMT
ETag: "ff1f1f34ad9b4b53ac690b67e47ebd00021a5902"
Last-Modified: Sun, 26 Mar 2023 00:16:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2729
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7adbe9ad4b90b518-OSL
inspxtrc.com/?a=12209&c=41495&s2=w6jma70233hhu2ini960d980&s3=719fbd40-273d-47b8-882f-683d1074b172w6jma70233hhu2ini960d980
52.209.162.59302 Found 329 B URL HTTP/1.1 inspxtrc.com/?a=12209&c=41495&s2=w6jma70233hhu2ini960d980&s3=719fbd40-273d-47b8-882f-683d1074b172w6jma70233hhu2ini960d980
IP 52.209.162.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 620081f16c4be1e52da31ef425286e37
62b72060e64da8f73c6d2b61be9faadc8907e9e1
d1ae2f72d51ac3435cc4b71604dfcddf64382e4f2e5e031d90485b5490d54819
GET /?a=12209&c=41495&s2=w6jma70233hhu2ini960d980&s3=719fbd40-273d-47b8-882f-683d1074b172w6jma70233hhu2ini960d980 HTTP/1.1
Host: inspxtrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ishku-wbq.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 329
Content-Type: text/html; charset=utf-8
Date: Sun, 26 Mar 2023 02:20:09 GMT
Location: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=4Jb+xE32bEP8T09BngCiCR/76ecuicyGoqvY45Y0bjie1p2adFNIdA==; domain=.inspxtrc.com; path=/; SameSite=None; secure; HttpOnly
trk=K+Cw9pK2f+JtjoWv5rebVh/76ecuicyGoqvY45Y0bjie1p2adFNIdA==; domain=.inspxtrc.com; expires=Wed, 26-Mar-2025 02:20:09 GMT; path=/; SameSite=None; secure; HttpOnly
c15384=4Jb+xE32bEOtNkERTPk9N/XpC58Htb6974eKCAcS78kju18+aFrywQ==; domain=.inspxtrc.com; expires=Tue, 25-Apr-2023 02:20:09 GMT; path=/; SameSite=None; secure; HttpOnly
Connection: close
www.60-dating.no/oms/storage/assets/d60/tpl-ghp/images/warning-symbol.png
104.17.165.216200 OK 673 B URL HTTP/2 www.60-dating.no/oms/storage/assets/d60/tpl-ghp/images/warning-symbol.png
IP 104.17.165.216:0
File type PNG image data, 60 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c2d8dc29bae57291c29c45f411930cc
73ff70bc79cff2e4a1d19cc52124632ed20ca948
ec1c5ab997ef021ea898e6dae7a23b33910de2d0d61daa884087972a2761926e
GET /oms/storage/assets/d60/tpl-ghp/images/warning-symbol.png HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: image/png
content-length: 673
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
last-modified: Fri, 17 Mar 2023 14:41:58 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
cf-cache-status: HIT
age: 5195
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7adbe9b01a171c0a-OSL
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/nodes/ZDYwX19uYl9fMjIzNjQ5/c3783782a907c99ac053f03123f0c3e1.js
104.17.165.216200 OK 43 kB URL HTTP/2 www.60-dating.no/oms/storage/nodes/ZDYwX19uYl9fMjIzNjQ5/c3783782a907c99ac053f03123f0c3e1.js
IP 104.17.165.216:0
File type Unicode text, UTF-8 text, with very long lines (22623), with no line terminators
Hash 988ae489711451a0bbccdc7e07d99f9a
b4ecdd37f3558df1267d12eef4a596499a07b147
a7d60bf55959f80f6d1599af8943dcda63d6df0d2815a1d02490550b072c9f57
GET /oms/storage/nodes/ZDYwX19uYl9fMjIzNjQ5/c3783782a907c99ac053f03123f0c3e1.js HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: application/javascript
cf-bgj: minify
last-modified: Tue, 21 Mar 2023 08:23:57 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1724
server: cloudflare
cf-ray: 7adbe9b00a141c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/logos/d60/D60_Logo_neg_RGB-no.svg
104.17.165.216200 OK 21 kB URL HTTP/2 www.60-dating.no/oms/storage/logos/d60/D60_Logo_neg_RGB-no.svg
IP 104.17.165.216:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1553)
Hash 6ad8475c20cb453724652e14abf010b0
ac04733546f5e661e1d9b80d38ef7263e1bdf51e
81f77e018ed33f04a2cf6c86a60d5958660f998285d58c8ebefa9f7cac1bcbf4
GET /oms/storage/logos/d60/D60_Logo_neg_RGB-no.svg HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: image/svg+xml
last-modified: Fri, 17 Mar 2023 14:41:58 GMT
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 5196
vary: Accept-Encoding
server: cloudflare
cf-ray: 7adbe9b00a151c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/fonts/roboto/roboto-v30-latin-regular.woff2
104.17.165.216200 OK 16 kB URL HTTP/2 www.60-dating.no/oms/storage/fonts/roboto/roboto-v30-latin-regular.woff2
IP 104.17.165.216:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /oms/storage/fonts/roboto/roboto-v30-latin-regular.woff2 HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: font/woff2
content-length: 15744
last-modified: Fri, 17 Mar 2023 14:41:58 GMT
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 4473
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7adbe9b02a3a1c0a-OSL
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/fonts/roboto/roboto-v30-latin-900.woff2
104.17.165.216200 OK 16 kB URL HTTP/2 www.60-dating.no/oms/storage/fonts/roboto/roboto-v30-latin-900.woff2
IP 104.17.165.216:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /oms/storage/fonts/roboto/roboto-v30-latin-900.woff2 HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: font/woff2
content-length: 15752
last-modified: Fri, 17 Mar 2023 14:41:58 GMT
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 4473
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7adbe9b03a3b1c0a-OSL
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/assets/components/luxembourg-overlay/images/flag-lu.jpg
104.17.165.216200 OK 1.4 kB URL HTTP/2 www.60-dating.no/oms/storage/assets/components/luxembourg-overlay/images/flag-lu.jpg
IP 104.17.165.216:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 278x167, components 3\012- data
Hash 2cdee573e13d0bcf7ebfa831a4a0103c
45cac7385334587b2c2cd2413e1989ecaf7f9dba
6e114d9d6bfb883fa77c7022ee7778108c1c2cde5941aac60007102968c31fd2
GET /oms/storage/assets/components/luxembourg-overlay/images/flag-lu.jpg HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: image/jpeg
content-length: 1354
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2842
last-modified: Fri, 17 Mar 2023 14:41:58 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
cf-cache-status: HIT
age: 5194
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7adbe9b02a371c0a-OSL
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/logos/d60/D60_Logo_pos_RGB-no.svg
104.17.165.216200 OK 15 kB URL HTTP/2 www.60-dating.no/oms/storage/logos/d60/D60_Logo_pos_RGB-no.svg
IP 104.17.165.216:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1570)
Hash 35076adcb81451c0614bb694cf3765d3
217dbf7fa1892e4b9d791df9b6598cdf9ee67adc
acda1b1861441c5bc43a1df34cd432593b8ffa857be5f27b70f025b1d77d5583
GET /oms/storage/logos/d60/D60_Logo_pos_RGB-no.svg HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: image/svg+xml
last-modified: Fri, 17 Mar 2023 14:41:58 GMT
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 5195
vary: Accept-Encoding
server: cloudflare
cf-ray: 7adbe9b01a191c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/favicons/d60_x16.png
104.17.165.216200 OK 559 B URL HTTP/2 www.60-dating.no/oms/storage/favicons/d60_x16.png
IP 104.17.165.216:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 4108489b07926d16a9c02083bb356d9d
1188dd2ce29c3ec77e45264bc2b5507592f6a8d9
aa45902d7d9513b6bb49cf64bf308ce3e8e60bf9ddf2a4229eff0f7a63d942fd
GET /oms/storage/favicons/d60_x16.png HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: image/png
content-length: 559
cf-bgj: imgq:100,h2pri
cf-polished: origSize=616
last-modified: Fri, 17 Mar 2023 14:41:58 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
cf-cache-status: HIT
age: 5193
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7adbe9b10a8a1c0a-OSL
X-Firefox-Spdy: h2
app.60sdating.com/api/v1/events/pre-registration
104.17.165.216200 OK 0 B URL HTTP/2 app.60sdating.com/api/v1/events/pre-registration
IP 104.17.165.216:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/events/pre-registration HTTP/1.1
Host: app.60sdating.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.60-dating.no/
Origin: https://www.60-dating.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-length: 0
cf-ray: 7adbe9b15bd5fab4-OSL
access-control-allow-origin: https://www.60-dating.no
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, no-transform, max-age=0, private
expires: 0
strict-transport-security: max-age=15552000; includeSubDomains
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
content-security-policy:
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
set-cookie: irouted=.biz26; path=/; Secure; HttpOnly
__cf_bm=x1pOJR55jKzENeKDa0jrGsMFSJ_3Su.FNnv9PG4Tszk-1679797209-0-Ab5eDt/Us3BrgkLsumx6mTxu1tioYwo7vLZ4cAE74keXrQDlGSoDhzqHCqyd4fxjR8zaVfAFuZg4tzyKppGKXSMKCuYDCnnApK/KXPip9J3l; path=/; expires=Sun, 26-Mar-23 02:50:09 GMT; domain=.app.60sdating.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/nodes/ZDYwX19uYl9fMjIzNjQ5/dc0b6174b59acb292306408f567a746a.css
104.17.165.216200 OK 46 kB URL HTTP/2 www.60-dating.no/oms/storage/nodes/ZDYwX19uYl9fMjIzNjQ5/dc0b6174b59acb292306408f567a746a.css
IP 104.17.165.216:0
File type ASCII text, with very long lines (42582), with no line terminators
Hash 6602f1bd87140790d751f4fb6e9643bc
fdbeb7a339efbb3aae40b690321b04d8254056c3
7a5a7cc588e0bf08910f10140aac5e0ca4d5a4cd993aa2297fafca85faaf1e98
GET /oms/storage/nodes/ZDYwX19uYl9fMjIzNjQ5/dc0b6174b59acb292306408f567a746a.css HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=42599
last-modified: Tue, 21 Mar 2023 08:23:57 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1723
server: cloudflare
cf-ray: 7adbe9b0ba711c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
104.17.165.216200 OK 23 kB URL HTTP/2 www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
IP 104.17.165.216:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4337)
Hash 7969015fb18687c5ec37ee70ee294ac1
9cb927ecc361bbbd6b9fb3567e74220d4eaf84d0
3e7d1cfd0e544b4ac0d8835fcc921c48a0a845ec07a019270608e0db98d3c331
GET /dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500 HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ishku-wbq.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
content-security-policy-report-only: default-src 'self' https://app.60sdating.com *.60-dating.no https://www.google.com *.google-analytics.com https://stats.g.doubleclick.net; child-src *; script-src 'self' https://app.60sdating.com *.60-dating.no 'nonce-6a0becf3bf1f0fbc84d87a0a1711ec5181b5e1931c708427a7bae4d2dd8e6e20' 'unsafe-eval' https://www.google.com *.google-analytics.com https://stats.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://connect.facebook.net; style-src 'self' https://app.60sdating.com *.60-dating.no 'unsafe-inline'; img-src 'self' data: https://app.60sdating.com *.60-dating.no https:; media-src 'self' data: https://app.60sdating.com *.60-dating.no; report-uri https://www.60-dating.no/oms/api/v1/ack/csp;
reporting-endpoints: epcsp='https://www.60-dating.no/oms/api/v1/ack/csp'
vary: Accept-Encoding
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS; path=/; expires=Sun, 26-Mar-23 02:50:09 GMT; domain=.www.60-dating.no; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7adbe9aef9c71c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2315
Expires: Sun, 26 Mar 2023 02:58:45 GMT
Date: Sun, 26 Mar 2023 02:20:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2315
Expires: Sun, 26 Mar 2023 02:58:45 GMT
Date: Sun, 26 Mar 2023 02:20:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2315
Expires: Sun, 26 Mar 2023 02:58:45 GMT
Date: Sun, 26 Mar 2023 02:20:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb3b49ab-f78e-4860-8aae-369eacfe43e3.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb3b49ab-f78e-4860-8aae-369eacfe43e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6530dbbc16d84b7047fa4bc66364fbf4
a53e0919923151e009e12010c60acb5a9175d37e
e64a2699e763d75a068ee6ceafd4eb2a1922488dc2e052699fb4242f0bf20524
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb3b49ab-f78e-4860-8aae-369eacfe43e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9486
x-amzn-requestid: b0324b5e-303e-485a-ae57-c001378aa401
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW2eRHjaoAMF74w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6ac1-27f002da252bd7ee19802f3d;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:42:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: V-lhHgr1lyxVF9XaxHQ6abgEwVC_llAl8opmQ8qKJ7Ee76HWSP1ZoA==
via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 22:08:53 GMT
age: 15077
etag: "a53e0919923151e009e12010c60acb5a9175d37e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ec08d4bd079a92161fc80f41281b5a9
bf61369962342cce85de8f48942b4b150fd2721e
8a8ed12c31d89d71c3cb88f0813ded83939529206461e917dcb0b8bc11abdda4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3589
x-amzn-requestid: 9c09af43-79e8-4734-b28b-4194e0bb1e4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uyE2joAMF50g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6991-7607d33f6301182b591c56e8;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:21 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: pjRA439kqSg5daR_Zuvsf2l45R4oqv3AMWNiMCGQ_C5o2KA8kEd3TQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:37:21 GMT
etag: "bf61369962342cce85de8f48942b4b150fd2721e"
content-type: image/jpeg
age: 16969
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb1e74ca-70b3-444b-a861-5272d79b4b54.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb1e74ca-70b3-444b-a861-5272d79b4b54.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6c20e353b556352fe8cac572c1a521a
8a398c883e28f78bbcc77561b19d21723184e5ef
50609077420d3540ba2a4eae74a28389384fc4acb085f0c04a9ec2d28b32569e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb1e74ca-70b3-444b-a861-5272d79b4b54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12879
x-amzn-requestid: 50831082-faf7-4213-9a38-35722e395f31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1smGOzIAMFdDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6983-2dfea10b0cbe3e3e62f4e9c5;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: Vq8840kkTD_41lk9KsOVX-TWpiSFTT7NlhWmw_DDJ7ry3aP_rbPg6g==
via: 1.1 626ad4a6bf529166d2aad94a2957694c.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:37:07 GMT
etag: "8a398c883e28f78bbcc77561b19d21723184e5ef"
content-type: image/jpeg
age: 16983
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bddb40b-73f5-45a0-8b5e-1e501d9c1b58.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bddb40b-73f5-45a0-8b5e-1e501d9c1b58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b4da1d92d6e695611277e1b2c214338
ce5d9df1d047ae6737db15dd1198e03dcd3fead4
da571a6e3c80bafafa72ebbfa02702809d9a93204ce87de479b21c74d4cb1d9a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bddb40b-73f5-45a0-8b5e-1e501d9c1b58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12116
x-amzn-requestid: 99fa02b3-cd37-4902-a41b-400f7c93f98e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CUJVKEHzoAMFxOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e55ba-3fd7842d2cf016ca7887df0b;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 02:00:26 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 0ad82-sPtuScQPHlKnVqnPA1PyGkc-m5mG8cdmtqeftbo48ciCTd8Q==
via: 1.1 e39f48cc8f516dc1072afdb086c71f32.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 07:14:16 GMT
age: 68754
etag: "ce5d9df1d047ae6737db15dd1198e03dcd3fead4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c1b9b23-a69e-4b1e-84d5-d7f840d9e026.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c1b9b23-a69e-4b1e-84d5-d7f840d9e026.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 213ded5820ff11a18bf9c374d5ea86ca
c3b4003e8f2b394ed8ad5e2d33fb04d6458a64c2
d9bbe5babe57b151d133b65eed68acc69ca294df77b22f04857a15a67dd50efa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c1b9b23-a69e-4b1e-84d5-d7f840d9e026.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10327
x-amzn-requestid: 6b71b02f-f694-4dc5-a49d-8246a4ba0e95
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW2BmGzBIAMF6AA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6a09-028b3d525ba3abe42b19ff0d;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:39:22 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: YHtixWCOatdxyX9UupsWdbdDLqDysgN1WnnPirI7Rw5sE_uRtYR4CQ==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 22:09:51 GMT
age: 15019
etag: "c3b4003e8f2b394ed8ad5e2d33fb04d6458a64c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.60-dating.no/oms/api/v1/lux
104.17.165.216200 OK 4.0 kB URL HTTP/2 www.60-dating.no/oms/api/v1/lux
IP 104.17.165.216:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 667fdc07bd5ddf193a6eb795dd2324ba
bac1d83bfea7b3a256ca00fd053ba7b9f7c40e7d
e9ef7ef08c81a882bd1f01682c948710df2c63277ce64c527c52a3c9bd182e5a
POST /oms/api/v1/lux HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Content-Type: application/json
Origin: https://www.60-dating.no
Content-Length: 9
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS; ipx_cookie_overlay={"created":1679797224194,"clientId":"","displayedOverlay":"v4","acceptedValues":{"show":true,"acceptedURL":""},"googleAnalyticsCategory":2,"trackingCategories":[{"id":1,"enabled":true},{"id":2,"enabled":false},{"id":3,"enabled":false},{"id":4,"enabled":false},{"id":5,"enabled":false}]}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-origin: https://www.60-dating.no
access-control-max-age: 1000
cache-control: no-cache, private
vary: Origin,Accept-Encoding
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7adbe9b10a901c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.60-dating.no/cdn-cgi/challenge-platform/h/b/cv/result/7adbe9aef9c71c0a
104.17.165.216200 OK 0 B URL HTTP/2 www.60-dating.no/cdn-cgi/challenge-platform/h/b/cv/result/7adbe9aef9c71c0a
IP 104.17.165.216:0
POST /cdn-cgi/challenge-platform/h/b/cv/result/7adbe9aef9c71c0a HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12739
Origin: https://www.60-dating.no
Connection: keep-alive
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS; ipx_cookie_overlay={"created":1679797224194,"clientId":"","displayedOverlay":"v4","acceptedValues":{"show":true,"acceptedURL":""},"googleAnalyticsCategory":2,"trackingCategories":[{"id":1,"enabled":true},{"id":2,"enabled":false},{"id":3,"enabled":false},{"id":4,"enabled":false},{"id":5,"enabled":false}]}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:10 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __cf_bm=_EdtMkSH23ES6fojaf0i7OLpP2TWW7R4GeEL8iwAPZc-1679797210-0-AVOtq/lURcih5bgd+vIGFMcqdMk1GFIa3nEZfbPpdrHSYTu6d60lq//OmthhdDk2NAHnMxBNl4CCCj9DmMp0hss4HWoKboa5DywCiX9a78sjBJtTs0p1GeZ87VwumN5pBju/+gC8DaNjhf+qqILjlyRv/Nl0jhlVn7IlGumZ1TDZ1MWnGtRUWxSoIi/Vw7ddCA==; path=/; expires=Sun, 26-Mar-23 02:50:10 GMT; domain=.www.60-dating.no; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 7adbe9b4bbc81c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/fonts/dating-social-media-icons/social_media_icons.ttf?adj6um
104.17.165.216200 OK 0 B URL HTTP/2 www.60-dating.no/oms/storage/fonts/dating-social-media-icons/social_media_icons.ttf?adj6um
IP 104.17.165.216:0
GET /oms/storage/fonts/dating-social-media-icons/social_media_icons.ttf?adj6um HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/oms/storage/nodes/ZDYwX19uYl9fMjIzNjQ5/dc0b6174b59acb292306408f567a746a.css
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS; ipx_cookie_overlay={"created":1679797224194,"clientId":"","displayedOverlay":"v4","acceptedValues":{"show":true,"acceptedURL":""},"googleAnalyticsCategory":2,"trackingCategories":[{"id":1,"enabled":true},{"id":2,"enabled":false},{"id":3,"enabled":false},{"id":4,"enabled":false},{"id":5,"enabled":false}]}
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: font/ttf
last-modified: Fri, 17 Mar 2023 14:41:58 GMT
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 4473
vary: Accept-Encoding
server: cloudflare
cf-ray: 7adbe9b1faea1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
app.60sdating.com/api/v1/events/pre-registration
104.17.165.216200 OK 0 B URL HTTP/2 app.60sdating.com/api/v1/events/pre-registration
IP 104.17.165.216:0
POST /api/v1/events/pre-registration HTTP/1.1
Host: app.60sdating.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/
Content-Type: application/json
Origin: https://www.60-dating.no
Content-Length: 376
Connection: keep-alive
Cookie: __cf_bm=Uife9TnrGsdzhxCnM.7JP67X3L3XNb.xZraet4APjec-1679797209-0-AckexGVd8jgYwmvz5jKkMaPQ87Gp7YsfRK+hG3WFa3iCjCzKtJNtVzfdgSt9icAxTRxBwGjk/kGmmENAgl1DPtjlmxD980IIR2GfrxsRfGoP
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:10 GMT
content-type: application/json;charset=UTF-8
cf-ray: 7adbe9b50983b4fd-OSL
access-control-allow-origin: https://www.60-dating.no
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, no-transform, max-age=0, private
content-encoding: gzip
expires: 0
set-cookie: irouted=.biz28; path=/; Secure; HttpOnly
strict-transport-security: max-age=15552000; includeSubDomains
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
content-security-policy:
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
app.60sdating.com/api/v1/events/pre-registration
104.17.165.216200 OK 0 B URL HTTP/2 app.60sdating.com/api/v1/events/pre-registration
IP 104.17.165.216:0
POST /api/v1/events/pre-registration HTTP/1.1
Host: app.60sdating.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/
Content-Type: application/json
Origin: https://www.60-dating.no
Content-Length: 322
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: application/json;charset=UTF-8
cf-ray: 7adbe9b1bfb0b4fd-OSL
access-control-allow-origin: https://www.60-dating.no
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, no-transform, max-age=0, private
content-encoding: gzip
expires: 0
strict-transport-security: max-age=15552000; includeSubDomains
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
content-security-policy:
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
set-cookie: irouted=.biz25; path=/; Secure; HttpOnly
__cf_bm=Uife9TnrGsdzhxCnM.7JP67X3L3XNb.xZraet4APjec-1679797209-0-AckexGVd8jgYwmvz5jKkMaPQ87Gp7YsfRK+hG3WFa3iCjCzKtJNtVzfdgSt9icAxTRxBwGjk/kGmmENAgl1DPtjlmxD980IIR2GfrxsRfGoP; path=/; expires=Sun, 26-Mar-23 02:50:09 GMT; domain=.app.60sdating.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/assets/d60/tpl-ghp/images/d60_illustration_1.svg
104.17.165.216200 OK 0 B URL HTTP/2 www.60-dating.no/oms/storage/assets/d60/tpl-ghp/images/d60_illustration_1.svg
IP 104.17.165.216:0
GET /oms/storage/assets/d60/tpl-ghp/images/d60_illustration_1.svg HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: image/svg+xml
last-modified: Fri, 17 Mar 2023 14:41:58 GMT
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 5195
vary: Accept-Encoding
server: cloudflare
cf-ray: 7adbe9b01a1a1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/nodes/ZDYwX19uYl9fMjIzNjQ5/d66cf6fdd2e2765086914b429c565b47.js
104.17.165.216200 OK 0 B URL HTTP/2 www.60-dating.no/oms/storage/nodes/ZDYwX19uYl9fMjIzNjQ5/d66cf6fdd2e2765086914b429c565b47.js
IP 104.17.165.216:0
GET /oms/storage/nodes/ZDYwX19uYl9fMjIzNjQ5/d66cf6fdd2e2765086914b429c565b47.js HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: application/javascript
cf-bgj: minify
last-modified: Tue, 21 Mar 2023 08:23:57 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1724
server: cloudflare
cf-ray: 7adbe9b01a1d1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.60-dating.no/oms/storage/assets/d60/tpl-ghp/images/d60_illustration_2.svg
104.17.165.216200 OK 0 B URL HTTP/2 www.60-dating.no/oms/storage/assets/d60/tpl-ghp/images/d60_illustration_2.svg
IP 104.17.165.216:0
GET /oms/storage/assets/d60/tpl-ghp/images/d60_illustration_2.svg HTTP/1.1
Host: www.60-dating.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.60-dating.no/dlpm/aff-d60-no-1222-ghp-couple.html?CID=10NOb_284_229565_1&linkid=12209__w6jma70233hhu2ini960d980&accid=12209&subid1=&subid2=w6jma70233hhu2ini960d980&visid=1770900500
Connection: keep-alive
Cookie: __cf_bm=O.fusQEd_ZHGyuZhd2dne4eZ1hk_LAOo59B9wXIuf2o-1679797209-0-AX3DjjZb7abxJ1nmt0h7kKPtebmskb8wFc8KnpRZlCQGvU4FwNlVPnh9Er6Hj5vqHk+7EdZ5oOzbk9eWBF5WaUI3JaIF/KsDFctC7N9m7pQS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 02:20:09 GMT
content-type: image/svg+xml
last-modified: Fri, 17 Mar 2023 14:41:58 GMT
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 5195
vary: Accept-Encoding
server: cloudflare
cf-ray: 7adbe9b01a1c1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2