detectportal.firefox.com/success.txt?ipv4
200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Fri, 20 Jan 2023 10:40:21 GMT
Age: 23453
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
302 Moved Temporarily 110 B URL HTTP/1.1 www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f366e0e18b589cb6f243bf43ce75e83c
0f95dda86ab28586f00bc878b42ecd09e579a890
075f0fd7eeb4bfec31816d61be72b064d4899853b224bd5f380041d7dd0b1d19
GET /8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: awselb/2.0
Date: Fri, 20 Jan 2023 17:11:14 GMT
Content-Type: text/html
Content-Length: 110
Connection: keep-alive
Location: https://www.seniorflirting.com:443/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 37284a837312d6586460a3b86bbe7bd0
6ac0847abd48eb8607597218aaa2cb2d434c012b
6a0e11bb042555d72b397ae0cc3d5e242d3a3fe04418e28ffd222decca7d16ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A0E11BB042555D72B397AE0CC3D5E242D3A3FE04418E28FFD222DECCA7D16CA"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11870
Expires: Fri, 20 Jan 2023 20:29:04 GMT
Date: Fri, 20 Jan 2023 17:11:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d3bb7b1f9716183d6400199cc5e002da
ffac4d9825f16a577003bf13a74eba9c12aa129f
b0bc8cadc20d366cd6ca9afc702d93fbfd1fe6d419407f0a512c2e267fefdd43
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0BC8CADC20D366CD6CA9AFC702D93FBFD1FE6D419407F0A512C2E267FEFDD43"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7115
Expires: Fri, 20 Jan 2023 19:09:49 GMT
Date: Fri, 20 Jan 2023 17:11:14 GMT
Connection: keep-alive
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
200 OK 42 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 481cd9e9c124009bbf05c2d33bc105e7
28af6f42491d47fc394a75d613bf179c12424cbc
047f9ec9d883e4bc73498165bfbc6de5861b2151510646e6a2a6cc0eaaface46
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: nDjjTxWl1LSBY-qZxbOjXGAv8wNGmlmo_N1sSdcMzLREaQL-BazRBg==
content-encoding: gzip
via: 1.1 27fe6f224e0cfa3f3a446471ee256e56.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 17:03:39 GMT
age: 455
content-type: application/json
content-length: 41881
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7afaa97fbfa9baa1485c892eac8e114d
8c17c707c218e28ac14197ce8e5eef873207a732
59db16baacb452453dbf44fc2a24f25ab09c4dbaec3a9271fda84230d8f11925
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59DB16BAACB452453DBF44FC2A24F25AB09C4DBAEC3A9271FDA84230D8F11925"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7907
Expires: Fri, 20 Jan 2023 19:23:01 GMT
Date: Fri, 20 Jan 2023 17:11:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: h5mzz3FmRFK5oQhTwGm65UgsflclgNczLl9JJyMVVwNPYTZhLDiWncuRe6gZ873VhbWzppgI/wY=
x-amz-request-id: 60PX9ANFH4NJY48S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 20 Jan 2023 16:34:26 GMT
age: 2208
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b36ef73c20dffb6bc10194bbd2d0dcfa
a67a4023dc8b4944debaeb92f3ba0f1402c079a6
05a7a4d832cf9e593ca44efea309edcbd80734583bada15fda3e740612eff991
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05A7A4D832CF9E593CA44EFEA309EDCBD80734583BADA15FDA3E740612EFF991"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10403
Expires: Fri, 20 Jan 2023 20:04:37 GMT
Date: Fri, 20 Jan 2023 17:11:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 20 Jan 2023 16:49:34 GMT
content-type: application/json
age: 1301
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 20 Jan 2023 17:11:14 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 0b03d0e58a36bec85a93c0bcc4f2a995
a31e42cec837de24b1655ad5f18fcd761aebc9aa
d69c5fc1425ef04731de05f19e92a4c1411d01d732eb11c07759da98db9fa448
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=169598
Date: Fri, 20 Jan 2023 17:11:15 GMT
Etag: "63cabc24-1d7"
Expires: Sun, 22 Jan 2023 16:17:53 GMT
Last-Modified: Fri, 20 Jan 2023 16:07:00 GMT
Server: ECS (dcb/7EEE)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BWHvAgnEpLvk_m3xFefDhb0vFNLeLyg8up6jKtIpA7vNxBwEoIqmbg==
Age: 653
www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
200 OK 8.1 kB URL HTTP/2 www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1438)
Hash 500db5883f4a42fa8085903f4b87b3eb
0ea30f9e9ad95bf5a6067bf18c473530650c59f1
4d4a8e9b13090384dde0179e18c15814f1470ecd9247253f08d443287ab94f8d
GET /8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/html; charset=UTF-8
content-length: 8057
server: Apache/2.4.38 (Debian)
x-powered-by: PHP/7.1.33
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
detectportal.firefox.com/success.txt?ipv4
200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Fri, 20 Jan 2023 10:40:21 GMT
Age: 23454
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
www.seniorflirting.com/8365/css/jquery-ui.css
200 OK 8.4 kB URL HTTP/2 www.seniorflirting.com/8365/css/jquery-ui.css
IP
File type ASCII text, with very long lines (2363)
Hash eb890942f434115913de08899ef174a4
84518af33d2157bf638eecd96ec00eeb378f547d
65c520e543b735967301de8a17d88ebfe96f9969d596fe477ebe4850f99f5d32
GET /8365/css/jquery-ui.css HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 8405
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "8d02-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/magnific-popup7a19.css?1552897983
200 OK 2.8 kB URL HTTP/2 www.seniorflirting.com/8365/css/magnific-popup7a19.css?1552897983
IP
Hash 428b1ed02fbe4fec6ad424877bb5e008
535e0b27a42fbb4023673b4ac992ab238cf64676
ae290d16bfe3943a7eb5ccdb590f4a792eaf3accf94fb1fc083f4804211ced6d
Analyzer Verdict Alert fortinet Phishing
GET /8365/css/magnific-popup7a19.css?1552897983 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 2824
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "2b38-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/all.css
200 OK 9.0 kB URL HTTP/2 www.seniorflirting.com/8365/css/all.css
IP
File type ASCII text, with very long lines (41352)
Hash 3e803635b0b559c291e5393f9b5a21c2
f2fc7fa483de814eca551f3574d67a8b6b94715c
8ad49d7db43a2ef26a506d5a668d0b29b30876c6bf94c96e353f2e00b58dbab5
GET /8365/css/all.css HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 9047
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "a23d-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/bootstrap.min5146.css?1552897995
200 OK 21 kB URL HTTP/2 www.seniorflirting.com/8365/css/bootstrap.min5146.css?1552897995
IP
File type ASCII text, with very long lines (65324)
Hash 4e2c02211d789bbe7250420d16cef501
a8c6cb2336ce2313a99d934e8f77345b3f946137
a825f26affa88c3d5651c464aa7e866df1c3980051bc0620c546aa728eb713a8
GET /8365/css/bootstrap.min5146.css?1552897995 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 21047
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "22688-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/cssd4a6.css?family=Raleway:300,400,500,600,700,800
200 OK 226 B URL HTTP/2 www.seniorflirting.com/8365/css/cssd4a6.css?family=Raleway:300,400,500,600,700,800
IP
Hash bfcfa21350d158280f771d5b3f0c981e
7e8a162a764e6721ef25302f21db8f6a3b64c804
e8ad9cd38afcd2da6765cb7e2c2c0e6c5523dc6bdc62eefe2d24cc6d7768d217
Analyzer Verdict Alert fortinet Phishing
GET /8365/css/cssd4a6.css?family=Raleway:300,400,500,600,700,800 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 226
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "4a4-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/css4d29.css?family=Bevan
200 OK 186 B URL HTTP/2 www.seniorflirting.com/8365/css/css4d29.css?family=Bevan
IP
Hash bb44b0412c2360c659712bd23873fbea
c80b1cb5b1d1279ec28f3b4ceb6bc45503fc223f
b3dea3e23e19bd0829b19d60658d65013c061ae4287e42425482472fe43ba0b8
Analyzer Verdict Alert fortinet Phishing
GET /8365/css/css4d29.css?family=Bevan HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 186
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "de-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/css29bd.css?family=Oleo+Script:400,700
200 OK 232 B URL HTTP/2 www.seniorflirting.com/8365/css/css29bd.css?family=Oleo+Script:400,700
IP
Hash f59aaa1652a17f4a2a9cbfb893f74a34
ac2035c743ade270b6894181692b3494ede35bbd
20b78a5fa4da2252324b9cee7fc7aff8bf886062fb3c071a8f0dbcca1b7a6e3f
Analyzer Verdict Alert fortinet Phishing
GET /8365/css/css29bd.css?family=Oleo+Script:400,700 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 232
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "1ec-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/carousel-type015146.css?1552897995
200 OK 140 B URL HTTP/2 www.seniorflirting.com/8365/css/carousel-type015146.css?1552897995
IP
Hash 9e44aa06256b0151e604971c2add024d
b9352d226598aa1ec456ee0866e8cc78bb3fe73f
e84a5f0f0b8b1b37be6a5732d61b7ed0bc9b0b580b8b281cd98e5585a16778b1
Analyzer Verdict Alert fortinet Phishing
GET /8365/css/carousel-type015146.css?1552897995 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 140
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "d7-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/bg-overlay-type025146.css?1552897995
200 OK 227 B URL HTTP/2 www.seniorflirting.com/8365/css/bg-overlay-type025146.css?1552897995
IP
Hash 773d7a60a3ea8b8fb44783c224dd0819
2108720dd00e416238d5c942412d1a1b24c17dc5
4af747abecd428780989d63ebe95a248bcb3660fce29d84498d260036a030e8a
Analyzer Verdict Alert fortinet Phishing
GET /8365/css/bg-overlay-type025146.css?1552897995 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 227
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "1de-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/mdb.minc11e.css?1552897996
200 OK 60 kB URL HTTP/2 www.seniorflirting.com/8365/css/mdb.minc11e.css?1552897996
IP
File type ASCII text, with very long lines (38486)
Hash 539f0a939fac888612159ab7fb6420d8
8bb471e03c0302095904253e333ca87eb04b8a30
ec32fbfee0e53ef3e96e42f65611358ed41ea1bf4506fdabf0ceb08b8317fb83
GET /8365/css/mdb.minc11e.css?1552897996 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 59754
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "7e452-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/multistep-type074a33.css?1575984656
200 OK 1.2 kB URL HTTP/2 www.seniorflirting.com/8365/css/multistep-type074a33.css?1575984656
IP
File type ASCII text, with very long lines (673)
Hash c48ba9926fabbb458b4c262ef52c7b46
0d05157cc3eba2c45e19c33c7f126105d0ad0e7b
0974a71786a8842526d78aec65fb18bb0a9676542c4a766ce6c7fd20e8e603bd
GET /8365/css/multistep-type074a33.css?1575984656 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 1202
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "d53-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/intro-type035146.css?1552897995
200 OK 335 B URL HTTP/2 www.seniorflirting.com/8365/css/intro-type035146.css?1552897995
IP
Hash 1e4cb7ea92df4f2430ba2baad33a4a5b
7a81b87d2d715e9d23e12bfdeaaa1b8905ac9091
840cebcef01ff7963aff07d07ebbe8d406413a67371b57825bee3f399508113f
Analyzer Verdict Alert fortinet Phishing
GET /8365/css/intro-type035146.css?1552897995 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 335
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "37c-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/form-elements-type01b2b7.css?1568802110
200 OK 1.3 kB URL HTTP/2 www.seniorflirting.com/8365/css/form-elements-type01b2b7.css?1568802110
IP
Hash 6de57be4de345de0ef397faf2b83c3ca
414ae309fd43e65aa999c352c21ae4b0b2f3c3ab
d9452f514be5bfae1979220749ea586810e9b64b8cbbcdb36bb818211469ac9e
Analyzer Verdict Alert fortinet Phishing
GET /8365/css/form-elements-type01b2b7.css?1568802110 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 1278
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "111d-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/stepper-type035146.css?1552897995
200 OK 327 B URL HTTP/2 www.seniorflirting.com/8365/css/stepper-type035146.css?1552897995
IP
Hash 3cba407c50f9cb555518820fb259be11
eeb11795fece07f228595ebee195a0c940d0118d
5e622ed27ac60452dbd5cba0209369e79cab7b00024a94c040163fb435d0f771
Analyzer Verdict Alert fortinet Phishing
GET /8365/css/stepper-type035146.css?1552897995 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 327
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "262-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/general5146.css?1552897995
200 OK 925 B URL HTTP/2 www.seniorflirting.com/8365/css/general5146.css?1552897995
IP
File type ASCII text, with very long lines (614)
Hash c5ff36e73e405f3e6667338f03fd412d
5b721e559c8bc30d192a99ea629ed071af2fc7c0
9f059784cba05862335685405be3b6a324749eae1f7f0a0440fb1e9e358e3007
GET /8365/css/general5146.css?1552897995 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 925
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "cb7-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/validationmodal-type015146.css?1552897995
200 OK 270 B URL HTTP/2 www.seniorflirting.com/8365/css/validationmodal-type015146.css?1552897995
IP
Hash a93577fcc74ee7a34129fed04ee395d1
18c1576f2a12f07b7c68666218d35b7c623e145c
2fedeb15f6899d6aa7a94ea1e286047e1c9a223df2c4d15425a3e3ee10772822
GET /8365/css/validationmodal-type015146.css?1552897995 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 270
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "27e-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/stylec11e.css?1552897996
200 OK 249 B URL HTTP/2 www.seniorflirting.com/8365/css/stylec11e.css?1552897996
IP
Hash 0429f6bbb648eb8dce5d0787f69bafcf
1622c57197d4610a04cff39872f38074455819b8
8a48c217eab0fb3908fed484559ff31aea6658bb4200a61dfeee07a9de38f368
Analyzer Verdict Alert fortinet Phishing
GET /8365/css/stylec11e.css?1552897996 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 249
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "1e7-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/styling92b1.css?1579682355
200 OK 247 B URL HTTP/2 www.seniorflirting.com/8365/css/styling92b1.css?1579682355
IP
Hash ec3888642bd2af0e1bb333f8fa03b1d2
abf57e8fdd00152fa0ba69f3f1758a4104c94781
96a3e08c8cb47673ce5ba7e491e24c61482570f75f63395d911c74af22f237df
GET /8365/css/styling92b1.css?1579682355 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 247
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "263-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/css/sexy01.css
200 OK 177 B URL HTTP/2 www.seniorflirting.com/8365/css/sexy01.css
IP
Hash 9f91e66771a38562e2f0b533aa6e9ca8
9752b4685a5f96e332062b2ec13655a64439e4da
efdd49c87d9339e9cc51ba25e8dd7d94421283686dc1967fa01ada70cd1f6f13
GET /8365/css/sexy01.css HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/css
content-length: 177
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "3fd-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/js/jquery.min.js
200 OK 30 kB URL HTTP/2 www.seniorflirting.com/8365/js/jquery.min.js
IP
File type ASCII text, with very long lines (32058)
Hash 3430607b4301113ad9394c9260eef3f0
8c4db68b161b17e31be300e968a30ab0116b3193
31e4d11375322cd6f94dba7338570426f2412d6c5fa670427966d45c3648098c
Analyzer Verdict Alert fortinet Phishing
GET /8365/js/jquery.min.js HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: application/javascript
content-length: 30138
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "15283-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/js/jquery-migrate-3.0.1.min.js
200 OK 3.5 kB URL HTTP/2 www.seniorflirting.com/8365/js/jquery-migrate-3.0.1.min.js
IP
Hash 77805915cd6097a4ffda2303afb8c371
8e69abe20647ec0350055f65a2fd780eba5fa0d1
e85b9032ebca10bfa70a4a2ce6a92461aa2d31d7200cc9b2427b565c1cd51194
Analyzer Verdict Alert fortinet Phishing
GET /8365/js/jquery-migrate-3.0.1.min.js HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: application/javascript
content-length: 3474
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "2c9d-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/js/popper.min.js
200 OK 7.3 kB URL HTTP/2 www.seniorflirting.com/8365/js/popper.min.js
IP
File type ASCII text, with very long lines (20363)
Hash a58f37d3887c59d958259f93a27e51c8
73cd6474966c3337eb4d5d48ccaac3e832a94940
d17499eb5d36405eada4f31a9354a5998a221c6873e26c29c52bedc09d635a16
Analyzer Verdict Alert fortinet Phishing
GET /8365/js/popper.min.js HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: application/javascript
content-length: 7301
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "5039-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/js/bootstrap.min.js
200 OK 14 kB URL HTTP/2 www.seniorflirting.com/8365/js/bootstrap.min.js
IP
File type ASCII text, with very long lines (50758)
Hash 2cb8caa8c251fe1763b6b2f447a6b169
0f9316b868e48b83ca40c4709c13cd6fff5c2eb5
c7904677b8b2f52c1e0d24522cea665310a3afc75f371fd3d226afd79110f332
Analyzer Verdict Alert fortinet Phishing
GET /8365/js/bootstrap.min.js HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: application/javascript
content-length: 14085
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "c75f-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/js/magnific-popup.js
200 OK 12 kB URL HTTP/2 www.seniorflirting.com/8365/js/magnific-popup.js
IP
Hash a37c2f881af845832c079445350ccbd5
b56cb163d6cd21b085b3ff999c767c41251d901b
a1ac9ef12d519d4ea7a8c64b32a1d6830e03876179fc7f2420e4bee2212b2ead
Analyzer Verdict Alert fortinet Phishing
GET /8365/js/magnific-popup.js HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: application/javascript
content-length: 12489
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "a302-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/js/popupregister.js
200 OK 1.4 kB URL HTTP/2 www.seniorflirting.com/8365/js/popupregister.js
IP
Hash 8a4cb4e1d417ced9a128a62bdfebb31c
b36bc5736d80f105fa0c3f4fc3ee48acde936dae
949c10461b14a53bd61d83f9fd8983b28770d188ce9cdc19750ffbf630295820
Analyzer Verdict Alert fortinet Phishing
GET /8365/js/popupregister.js HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: application/javascript
content-length: 1400
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "14f5-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/js/multistep.js
200 OK 1.8 kB URL HTTP/2 www.seniorflirting.com/8365/js/multistep.js
IP
Hash b63c4f1aaef1528ff8397e7e709069a1
30e004c8f55af4f59c8a1df2920ed2e89acdc9cd
a9e61e8884ead1951df41040a5b33e14897edabc61ed70e36080ad36af780976
Analyzer Verdict Alert fortinet Phishing
GET /8365/js/multistep.js HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: application/javascript
content-length: 1847
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "1743-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/js/main.js
200 OK 917 B URL HTTP/2 www.seniorflirting.com/8365/js/main.js
IP
Hash d0714f85e07e266d5aedb365a16dab2a
445a74e992569083e1665e86c6dd38f775d6fa5e
f51d7e225bed358cfecfc48c0652f043981ae10e79953226e6fcb84d0cdca9bf
Analyzer Verdict Alert fortinet Phishing
GET /8365/js/main.js HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: application/javascript
content-length: 917
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "a6c-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 2bd6cbf2e388072f13c392b43ecb00c3
c67239ef2554f47e9b78967e4f596d95b190e18f
2bb5505a94ea8c6552c0dd8ceee09058fc2ed14831acabac5fb3c2689a304cc6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4044
Cache-Control: max-age=93085
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:11:15 GMT
Etag: "63c98404-1d7"
Expires: Sat, 21 Jan 2023 19:02:40 GMT
Last-Modified: Thu, 19 Jan 2023 17:55:16 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bd9ed9c3f88cda5456e13a134e27b268
aaa82eb935ce140174b2392ac7f7d80e2ddff1c5
a5621fa38dc23d545f834fc7331e59fc61825004b2c599c11c89628175333ca6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:11:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.onesignal.com/sdks/OneSignalSDK.js
200 OK 3.3 kB URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP
File type ASCII text, with very long lines (9097)
Hash 4b29df1f66f3b27452910795798b3e6c
2d5bab388cbb8a0ccbff29d661315793ecdccb8f
793be7ce62960130e11368af467486fffd04dc321b04e1db7962e3961249c1a2
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 3456
expires: Mon, 23 Jan 2023 17:11:15 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 78c96da1bf140b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/jpg/01.jpg
302 Found 331 B URL HTTP/2 www.seniorflirting.com/8365/jpg/01.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0ae32d75c01e6f7c4cbbc01aef7dd8cd
6b343376e6fe7011f83bc189839024b3f3e840cf
b1295b1988bc61a7f5ab748e038b9b33612f250e662bafac98eb1d07226408cb
GET /8365/jpg/01.jpg HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/css/sexy01.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/html; charset=iso-8859-1
content-length: 331
location: https://d1zp0skjzco26d.cloudfront.net/media/8365/jpg/01.jpg
server: Apache/2.4.38 (Debian)
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 20 Jan 2023 16:17:28 GMT
age: 3227
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/woff2/fa-solid-900.woff2
200 OK 50 kB URL HTTP/2 www.seniorflirting.com/8365/woff2/fa-solid-900.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 50372, version 1.0\012- data
Hash 8a8c0474283e0d9ef41743e5e486bf05
1ba4dd60af529d1a72d0e57467c3bc0bbb728a4d
cbbca7d9888b4a9eab7d479756d2924f9b067fd38dab376797029df741f96ee4
Analyzer Verdict Alert fortinet Phishing
GET /8365/woff2/fa-solid-900.woff2 HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/css/all.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: font/woff2
content-length: 50372
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "c4c4-5f1fbafdaf140"
accept-ranges: bytes
X-Firefox-Spdy: h2
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
200 OK 8 B URL HTTP/1.1 shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
IP
Hash 29fc57841962e407cb50c1be60284bf7
ce968a77e2996da5eee8925182318f171ccdce47
ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1
Host: shavar.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Date: Fri, 20 Jan 2023 17:11:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close
www.seniorflirting.com/users/places/countries.json?data%5BProfile%5D%5Bprofile_country_id%5D=US
302 Found 0 B URL HTTP/2 www.seniorflirting.com/users/places/countries.json?data%5BProfile%5D%5Bprofile_country_id%5D=US
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /users/places/countries.json?data%5BProfile%5D%5Bprofile_country_id%5D=US HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.38 (Debian)
x-powered-by: PHP/7.1.33
location: /newlanders/index.php/users/places/countries.json?data%5BProfile%5D%5Bprofile_country_id%5D=US
X-Firefox-Spdy: h2
www.seniorflirting.com/newlanders/index.php/users/places/countries.json?data%5BProfile%5D%5Bprofile_country_id%5D=US
404 Not Found 1.1 kB URL HTTP/2 www.seniorflirting.com/newlanders/index.php/users/places/countries.json?data%5BProfile%5D%5Bprofile_country_id%5D=US
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2
GET /newlanders/index.php/users/places/countries.json?data%5BProfile%5D%5Bprofile_country_id%5D=US HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Fri, 20 Jan 2023 17:11:16 GMT
content-type: text/html; charset=UTF-8
content-length: 1130
server: Apache/2.4.38 (Debian)
x-powered-by: PHP/7.1.33
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash bdb8a13dfce39d6e151a9ef185a772a1
037a680510f9dbce3c7cc3c0f9115fd587dbcd1d
98c8b7f269b9aad73b73fd946788ebfd7a4d7afbdd5347b56c67f73b947f5ff6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3994
Cache-Control: max-age=147733
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:11:16 GMT
Etag: "63ca59af-1d7"
Expires: Sun, 22 Jan 2023 10:13:29 GMT
Last-Modified: Fri, 20 Jan 2023 09:06:55 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 90b33044fe7cb1d9e8ce61aa1629bdfc
f3aa4e679c35b1cb1daf5f7a466fe286f3879a1a
77b64773836a25ac31a1e691e4cd190220ce231c5b9205feb43d57346f872f66
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109902
Date: Fri, 20 Jan 2023 17:11:15 GMT
Etag: "63c9d581-1d7"
Expires: Sat, 21 Jan 2023 23:42:57 GMT
Last-Modified: Thu, 19 Jan 2023 23:42:57 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _V7u6ktvjOtD-fb6jruvl3N-7wu_X2pyvZzdUdf-_2wQXVntCABigQ==
live.connect2api.com/langlog?country=US&lang=en&en=1&nl=0&de=0&es=0&fr=0&it=0&langs=en-US,en
200 OK 99 B URL HTTP/2 live.connect2api.com/langlog?country=US&lang=en&en=1&nl=0&de=0&es=0&fr=0&it=0&langs=en-US,en
IP
File type JSON data\012- , ASCII text
Hash aef377e477b35e8352ffb4dfadccf881
3dc7cf829839b732cd764e1a36905f47e83d43ff
06a81b1f0fda6bc4c6cd8a0a0321b3ed9e944ebdf2c40433b4dad32c0aa371f7
GET /langlog?country=US&lang=en&en=1&nl=0&de=0&es=0&fr=0&it=0&langs=en-US,en HTTP/1.1
Host: live.connect2api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seniorflirting.com
Connection: keep-alive
Referer: https://www.seniorflirting.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:16 GMT
content-type: application/json
content-length: 99
server: Apache/2.4.54 () PHP/7.4.32
x-powered-by: PHP/7.4.32
access-control-allow-origin: *
access-control-allow-headers: X-API-KEY, Origin, X-Requested-With, Content-Type, Accept, Access-Control-Request-Method
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE
allow: GET, POST, OPTIONS, PUT, DELETE
app: MadOffersAPI
cache-control: no-cache, private
set-cookie: laravel_session=eyJpdiI6IkRwL1hOU1AwSS9hMXh6T3UxWlEvMHc9PSIsInZhbHVlIjoiK3BNZFNIL0FDT0FPM050d0dFMWNTMmhZZTRTUTNaamt5SW9HdVJkNFE5VWpsTXVCMDRpRzJtMUpxVWR5aFMwYjAzV2dvRlMvZzlESktpNmtLQ1hsWG9aOXF2LzNnaVFmaWtLUjY4V0FPMkpScm9JRW01ME1pT0VLaUUyYWQyRnciLCJtYWMiOiJiYjdiOWZmNTAyN2Q1NTQxN2E3NjQ4YThmZTc2NzBjYzViYzE5MjZkMDA2NGU5NzFmMDc4YTU1YTk2ZmUyYWQ3In0%3D; expires=Fri, 20-Jan-2023 19:11:16 GMT; Max-Age=7200; path=/; httponly; samesite=lax
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/apple-touch-iconddb4.html?v=9By5Al4mbO
200 OK 113 B URL HTTP/2 www.seniorflirting.com/8365/apple-touch-iconddb4.html?v=9By5Al4mbO
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 6c5b2506fbc238513557991cdbbacbad
242cf192558ef2ddd6632fe991d073484ef60a43
9c09b7c8795f96108cf7bb83f091b0b45fbebf55832dbd167e31567664e32d2e
GET /8365/apple-touch-iconddb4.html?v=9By5Al4mbO HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:16 GMT
content-type: text/html
content-length: 113
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "99-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/png/favicon-16x16ddb4.png?v=9By5Al4mbO
302 Found 359 B URL HTTP/2 www.seniorflirting.com/8365/png/favicon-16x16ddb4.png?v=9By5Al4mbO
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e7b42bc9e341cf649d316a53201bfaf1
c1a7c7efac0f7980760ab32066fe9b3c3a5a57fb
d537f64d06f82d20ecd7db87b4e6dd18e14c21e6c62568ba32b1d0c952292bfc
GET /8365/png/favicon-16x16ddb4.png?v=9By5Al4mbO HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
date: Fri, 20 Jan 2023 17:11:16 GMT
content-type: text/html; charset=iso-8859-1
content-length: 359
location: https://d1zp0skjzco26d.cloudfront.net/media/8365/png/favicon-16x16ddb4.png?v=9By5Al4mbO
server: Apache/2.4.38 (Debian)
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kLt0KcgNqSijFP6owhNxgA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BcHztCKcNW9vd/ewkSS18EXKnVM=
d1zp0skjzco26d.cloudfront.net/media/8365/png/favicon-16x16ddb4.png?v=9By5Al4mbO
200 OK 1.3 kB URL HTTP/2 d1zp0skjzco26d.cloudfront.net/media/8365/png/favicon-16x16ddb4.png?v=9By5Al4mbO
IP
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash b8be4c55f444e9ce21873703c20a36a6
6c0b08d3ee1b8d8d5f22954bd6e7cb04d6990c53
ddd1d4d315cae5c0a7c93cf642aac0532d4476e9c146e5ba3e1a44fa438f0faf
GET /media/8365/png/favicon-16x16ddb4.png?v=9By5Al4mbO HTTP/1.1
Host: d1zp0skjzco26d.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.seniorflirting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1327
date: Fri, 20 Jan 2023 17:11:17 GMT
last-modified: Tue, 20 Dec 2022 09:46:43 GMT
etag: "b8be4c55f444e9ce21873703c20a36a6"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eNt0rh8jvlaD-NYhxUrdVSVxm9WdrK_rfXLdlpFI_WUxjeB73gTMOg==
X-Firefox-Spdy: h2
d1zp0skjzco26d.cloudfront.net/media/8365/jpg/01.jpg
200 OK 319 kB URL HTTP/2 d1zp0skjzco26d.cloudfront.net/media/8365/jpg/01.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=19, height=3331, bps=242, compression=none, PhotometricIntepretation=RGB, description=Shot of a sexy young woman lying on a bed in her underwear, manufacturer=NIKON CORPORATION, model=NIKON D800E, orientation=upper-left, width=4879], baseline, precision 8, 1920x1311, components 3\012- data
Size 319 kB (319050 bytes)
Hash a8f5da5ec1df5db534b44b036c7965b0
82442b958b8718f0f3a37d565a1ab35af20ebb6c
0af14c2c165490aae26d0ecd81a69f11a5d21e2ba0b719e833997381e9cbe630
GET /media/8365/jpg/01.jpg HTTP/1.1
Host: d1zp0skjzco26d.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.seniorflirting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 319050
date: Fri, 20 Jan 2023 17:11:17 GMT
last-modified: Tue, 20 Dec 2022 09:46:45 GMT
etag: "a8f5da5ec1df5db534b44b036c7965b0"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2QQ9FJnxYu_dq-NMUnpqTYt6saiTQvag4L56NimpD9bllxJvuxYwtg==
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221674230235600%22
200 OK 21 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221674230235600%22
IP
File type JSON data\012- , ASCII text, with very long lines (20973), with no line terminators
Hash f98a5eae3e300b783b190b0fc805bbfb
d6554e191c3b0644739ea9b6e55bb617f88ed845
4ee6ef0e1fae0d88cb473c568ce2b22dc82b9558810d40d2557776de8749e63e
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221674230235600%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 20973
via: 1.1 google
date: Fri, 20 Jan 2023 17:01:57 GMT
age: 559
last-modified: Fri, 20 Jan 2023 15:57:15 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1674218239148&_since=%221666204638208%22
200 OK 14 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1674218239148&_since=%221666204638208%22
IP
File type JSON data\012- , ASCII text, with very long lines (14118), with no line terminators
Hash 7132a59042b9d26d7737d436d0833c58
c5ff8dea3d0720c7e3eec6f127a309cc4839d536
1dc9b3a020ed5af74d832ed475076176932c0c206bd6d311f79e2e3d771d667c
GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1674218239148&_since=%221666204638208%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 14118
via: 1.1 google
date: Fri, 20 Jan 2023 16:54:55 GMT
age: 981
last-modified: Fri, 20 Jan 2023 12:37:19 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: cnkE2//BF6RJ9GvqrLhUDushiUP8stvvXTH84tYDzql2TDoH72zl9VO+LX8+Dwoq0Ss5aEfoGI8=
x-amz-request-id: YBDFBRQH3T7PTBXT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 20 Jan 2023 16:46:26 GMT
age: 1490
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 20 Jan 2023 16:49:34 GMT
content-type: application/json
age: 1302
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8c9984d5c620e41ba04fb1532f748fb9
e0023265f90e595dfcfc67504fc47501b3fc026a
ed120934226911bd964e091ccb429df35520b93af4c5639d34838fa2a4006b33
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ED120934226911BD964E091CCB429DF35520B93AF4C5639D34838FA2A4006B33"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11718
Expires: Fri, 20 Jan 2023 20:26:34 GMT
Date: Fri, 20 Jan 2023 17:11:16 GMT
Connection: keep-alive
firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
200 OK 807 kB URL HTTP/2 firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
IP
Size 807 kB (807180 bytes)
Hash 914be443bdfbe8a1c3ded61e1c114bd6
4fe7c5ff83f6a29e6699f4cebc17550891504661
41b036d0c889509d547296b238027a063c313261ad52d5f7bb81922011791857
GET /staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin HTTP/1.1
Host: firefox-settings-attachments.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IHrBFAcqOzrZBc0XSyAZmRSCjs5ZzB/IQCWyrpihN9xvs5fQOE0nMhnzNX8vsP+wG9mFjsUj1Ps=
x-amz-request-id: NKRTYG83CQM92SHM
x-amz-version-id: K1ODzappZsD35qeu0OM5zvs_BP1eybj7
accept-ranges: bytes
server: AmazonS3
content-length: 807180
via: 1.1 google
date: Tue, 17 Jan 2023 12:42:00 GMT
age: 275356
last-modified: Tue, 10 Jan 2023 12:38:46 GMT
etag: "914be443bdfbe8a1c3ded61e1c114bd6"
content-type: application/octet-stream
cache-control: public,max-age=604800
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1674192522768&_since=%221666279968541%22
200 OK 88 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1674192522768&_since=%221666279968541%22
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash e6c4fd25ad64e2f08f2b55fb84462da9
36047bc5b7c3a56b20424868bc7fb6e3b6833511
ebb8d34419fca6a8794b5133ed4c4f66910d54481025dc29c6d3daa32a334bf8
GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1674192522768&_since=%221666279968541%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 88028
via: 1.1 google
date: Fri, 20 Jan 2023 17:08:35 GMT
age: 161
last-modified: Fri, 20 Jan 2023 05:28:42 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1674147734521&_since=%221661199949574%22
200 OK 17 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1674147734521&_since=%221661199949574%22
IP
File type JSON data\012- , ASCII text, with very long lines (17319), with no line terminators
Hash d98a8694f5319841aca0ce5665cb70bd
0343776c07afb11211f5e6b9f5f54156190d37e3
317c9f3e63a171b7fb793250a9720ef5150cb4f795c2f6aa7808a7e589e6318e
GET /v1/buckets/main/collections/search-config/changeset?_expected=1674147734521&_since=%221661199949574%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 17319
via: 1.1 google
date: Fri, 20 Jan 2023 17:08:07 GMT
age: 189
last-modified: Thu, 19 Jan 2023 17:02:14 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
200 OK 1.5 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
IP
File type JSON data\012- , ASCII text, with very long lines (1505), with no line terminators
Hash d77c6f3eed3ee3299df7f69d5daa9a96
7089332f1140ccb768a7d778eca42b1f393d68cf
dd907320f63ca60a13d87eea545d3d918e002d23a042f2c31161c9fa5734c3fc
GET /v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1505
via: 1.1 google
date: Fri, 20 Jan 2023 17:10:27 GMT
age: 50
last-modified: Thu, 19 Jan 2023 16:36:46 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22
200 OK 2.1 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22
IP
File type JSON data\012- , ASCII text, with very long lines (2143), with no line terminators
Hash adc8f38454b04c324a51f1b3663f110a
12e1d854cc80650b9e00a27eb4ebdc93101e6a51
6bfe98ae6ffe807dc29b973716fdbf44b730fd23ff7941106e9da9d5a366b9f5
GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 2143
via: 1.1 google
date: Fri, 20 Jan 2023 16:13:47 GMT
age: 3450
last-modified: Thu, 19 Jan 2023 12:49:37 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1674073315973&_since=%221666483264567%22
200 OK 54 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1674073315973&_since=%221666483264567%22
IP
File type JSON data\012- , ASCII text, with very long lines (53706), with no line terminators
Hash a81163f84d5323ac2c0f2e9186cb849d
123b9f65d4c66b2bf660d2b091abbcf719180538
cf7c529c0bfe41c88763a85c284bcee25ddc27f68858d1030b4b04434d1839fa
GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1674073315973&_since=%221666483264567%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 53706
via: 1.1 google
date: Fri, 20 Jan 2023 16:41:30 GMT
age: 1787
last-modified: Wed, 18 Jan 2023 20:21:56 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
IP
File type JSON data\012- , ASCII text, with very long lines (1718), with no line terminators
Hash 3292ba62caa5fec67ea0d90d1e97e8da
b61394006887664253e50ea6f021c6254ae16b9b
a3dfe94751c3f663fd11c09cc52e9d61ee8713906a7d657305b40b33078fe30e
GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1718
via: 1.1 google
date: Fri, 20 Jan 2023 16:26:18 GMT
age: 2699
last-modified: Mon, 16 Jan 2023 16:36:45 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
detectportal.firefox.com/success.txt?ipv4
200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Fri, 20 Jan 2023 10:40:21 GMT
Age: 23456
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
200 OK 1.3 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
IP
File type JSON data\012- , ASCII text, with very long lines (1251), with no line terminators
Hash a15652d2ad5a61b333b603a147df4087
f737222311cbc30f90aeacadea9f48e460710e74
c49c6ab42f400eab679ca2a696f76e8083c9ac8fa81f45716ec027a12d29fab9
GET /v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1251
via: 1.1 google
date: Fri, 20 Jan 2023 16:25:08 GMT
age: 2769
last-modified: Mon, 16 Jan 2023 16:36:42 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
200 OK 682 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
IP
File type JSON data\012- , ASCII text, with very long lines (682), with no line terminators
Hash 668f51f448163fe951f3449c028bfd40
8d624c9419b30c8be7f62724ccd6095f7c4794ef
f3feec2c60186018c18cfcd262d851e35223e8285139c96a89335bb473972395
GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 682
via: 1.1 google
date: Fri, 20 Jan 2023 16:24:36 GMT
age: 2801
last-modified: Fri, 13 Jan 2023 16:36:53 GMT
etag: "1673627813356"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
200 OK 934 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
IP
File type JSON data\012- , ASCII text, with very long lines (934), with no line terminators
Hash 20b9199d0871aa8d1f02e09fc0de6a48
874015ed48e4ccc4d1d3dc4a979d50eaeb059d8c
07214176412ea5e83b5be84ca1d401061fac8b20275e2ee7da3189de2fdba7ed
GET /v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 934
via: 1.1 google
date: Fri, 20 Jan 2023 16:32:23 GMT
age: 2334
last-modified: Fri, 13 Jan 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15360
Expires: Fri, 20 Jan 2023 21:27:17 GMT
Date: Fri, 20 Jan 2023 17:11:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15360
Expires: Fri, 20 Jan 2023 21:27:17 GMT
Date: Fri, 20 Jan 2023 17:11:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15360
Expires: Fri, 20 Jan 2023 21:27:17 GMT
Date: Fri, 20 Jan 2023 17:11:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15360
Expires: Fri, 20 Jan 2023 21:27:17 GMT
Date: Fri, 20 Jan 2023 17:11:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0c09209-bc9e-43f8-ace4-c90a39c75c63.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0c09209-bc9e-43f8-ace4-c90a39c75c63.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5553b06c7dde4dc377f9f4e65bc8ace7
9dca5486485416d1aef199be08a50abd717addc7
33a5d1a21738218e0a6fe16d79045bd390af2e84073330a0a94c03812e1ba3ba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0c09209-bc9e-43f8-ace4-c90a39c75c63.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 70710215-b8fd-44eb-8b50-f0948f98366c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmQWFNvoAMF3ZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b735-19e7e3865ce991cb5447f0f2;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Fc9dIiT5QQaTowAA6lp8ffJl4Niq3i_iVe54lYhAV52kJ8Q98EMJqQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:04:44 GMT
age: 68793
etag: "9dca5486485416d1aef199be08a50abd717addc7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F035e7b24-d861-44e8-ac81-1dcc5e3a0e2a.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F035e7b24-d861-44e8-ac81-1dcc5e3a0e2a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6889019ec9c1155e9e4b4eeb6a86760d
59c6f3a313efba4a67a63c9ae725db8d17c08c03
378510ecdbbb2b6248391195eace1dc3120d18b6f13e52033a3e88024592cac4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F035e7b24-d861-44e8-ac81-1dcc5e3a0e2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5588
x-amzn-requestid: c9d6f09b-2cd9-4137-9369-0295836e06e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAnT0FkNIAMF7Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b8e5-5c6360c025826ed06525c67e;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:40:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ruj2jeo2zhuDhIPufqckFmqP0Cx7ECNYRyxBYgQbHhkWH4o3m1L-OQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:12:29 GMT
age: 68328
etag: "59c6f3a313efba4a67a63c9ae725db8d17c08c03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto
200 OK 11 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto
IP
Hash e1b8cd1cef8ec2243e74306176bf4f8d
f12403ed87de79d8ab7cd630e68776d8f9485422
8767720b78360a5dc26f7477bac99c9d32f91176605b8385fb5b303a009ebcc5
GET /css?family=Roboto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 20 Jan 2023 17:11:15 GMT
date: Fri, 20 Jan 2023 17:11:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3af2d51fb89ef0261ba025d76169261
9b3f4e3f63b64030624e02ad6ab8ef43a676dd66
c3d5a6f829dc59db8ed27a92fcfc6d387633bb43388e2c19d68b89356a13b1cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13812
x-amzn-requestid: c80287a0-4ce9-47bf-9658-693431f30a49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmQWFEvIAMF1lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b735-6d73a53e2ffc2ec505dff89b;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: y8DaJvgqntmOKzXMdwFwsibvll4D9YUqDz0XsbbhcKKiYEazXiag7A==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:12:36 GMT
age: 68321
etag: "9b3f4e3f63b64030624e02ad6ab8ef43a676dd66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1122c75-908d-4e51-8a61-b64f7ab77c76.jpeg
200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1122c75-908d-4e51-8a61-b64f7ab77c76.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5195ac5d83278bed049661c0d1aaa4a
74b3e81e1dfc9f0a50aa936ba02b357c0df3aa9e
30af8f591b2d4f7c8de7d52ea53bb170ca426ef0550001c7802a7f993a6344df
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1122c75-908d-4e51-8a61-b64f7ab77c76.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7111
x-amzn-requestid: d9b5e6b0-3995-4c70-be84-0b1b457b7143
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmRlHtkIAMFiGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b73d-37d253ee68fe1b7e483097dd;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 86-hgCgiYN-PYLZgXJO79kM9Vm6DIiRixaz-kQZFaY0m5481x8GWlw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:12:54 GMT
etag: "74b3e81e1dfc9f0a50aa936ba02b357c0df3aa9e"
content-type: image/jpeg
age: 68303
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8656702f08344d3a4658bc43a9074a1f
fba424e1d09cbdc839ca320458b51715dafbbccc
0b0ac963c377b07f843637348f3d7c41d2aca89540ab8c2b80ef5fbbf466fee8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13848
x-amzn-requestid: 93bbdd19-aa04-49ec-858f-9fa1d6b736d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6BKCGEtoAMFgsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c71573-008911af44c3998d7b27b837;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:38:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: adtKl3gOcesaXNHcRbi71-1Wz6caEgtXrAvbhB9qhId7eJEkd7d7pQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:43:43 GMT
age: 66454
etag: "fba424e1d09cbdc839ca320458b51715dafbbccc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/jpg/02.jpg
302 Found 331 B URL HTTP/2 www.seniorflirting.com/8365/jpg/02.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ee0ab4601c9ed2f456e3a674e7002b41
7519efbcc438aa10055bf265c81f03354fd2789f
950d062814d05ef290af68c7f82230c9608435d7b5cf5a6eb021e8b97be693d7
GET /8365/jpg/02.jpg HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/css/sexy01.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
date: Fri, 20 Jan 2023 17:11:21 GMT
content-type: text/html; charset=iso-8859-1
content-length: 331
location: https://d1zp0skjzco26d.cloudfront.net/media/8365/jpg/02.jpg
server: Apache/2.4.38 (Debian)
X-Firefox-Spdy: h2
d1zp0skjzco26d.cloudfront.net/media/8365/jpg/02.jpg
200 OK 211 kB URL HTTP/2 d1zp0skjzco26d.cloudfront.net/media/8365/jpg/02.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1403, components 3\012- data
Size 211 kB (211150 bytes)
Hash c05ba08d5920283a9406326e4b746403
72907f01dfd875ac91a3b4c39290340a001e5729
4ea8b15b0e28bb505acf8e33f69cd99d54f461434335bb806b6e89b3fb2d2d7e
GET /media/8365/jpg/02.jpg HTTP/1.1
Host: d1zp0skjzco26d.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.seniorflirting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 211150
date: Fri, 20 Jan 2023 17:11:22 GMT
last-modified: Tue, 20 Dec 2022 09:46:47 GMT
etag: "c05ba08d5920283a9406326e4b746403"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rHD9h5rtpAfgtSKdJb0cg7NyxZuP_q7y3TxIUdWDapsbnaXdspqcpw==
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/js/mdb.min.js
200 OK 0 B URL HTTP/2 www.seniorflirting.com/8365/js/mdb.min.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /8365/js/mdb.min.js HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: application/javascript
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "6624d-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.seniorflirting.com/8365/js/jquery-ui.min.js
200 OK 0 B URL HTTP/2 www.seniorflirting.com/8365/js/jquery-ui.min.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /8365/js/jquery-ui.min.js HTTP/1.1
Host: www.seniorflirting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seniorflirting.com/8365/?country=US®ion=New%20York&city=Bronx&brands=seniorflirting.com&clickid=f7a844bd18304875bd07e9fb50106478&pi=103&campaignId=7277&var1=KwAEEBstDktLUBE2ARQIVggKVgEeMg8S&var2=&var3=5te9jd63d71k3g3ua5b8k4s8o,15960614,5,7277
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 20 Jan 2023 17:11:15 GMT
content-type: application/javascript
server: Apache/2.4.38 (Debian)
last-modified: Wed, 11 Jan 2023 11:56:13 GMT
etag: "3ab2b-5f1fbafdaf140-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
3.67.229.193
54.230.80.227
104.18.226.52
93.184.220.29
95.101.11.115