Report - peachegirl.xyz/

Report Overview

Submitted URL
peachegirl.xyz/
IP
192.64.119.111
ASN
#22612 NAMECHEAP-NET
Submitted
2024-04-26 17:40:59
Access
public
Website Title
Bareflirt.com
Final URL
www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-26	877 B	168 kB	142.250.74.168
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-26	1.0 kB	33 kB	216.58.207.227
e1.o.lencr.org	6159	2020-06-29	2021-08-20	2024-04-24	652 B	1.5 kB	23.36.76.226
ruffledplumage.com	unknown	2021-06-01	2021-06-07	2024-04-09	872 B	2.3 kB	67.207.69.191
youcantrackthis.com	unknown	2020-12-02	2020-12-03	2024-04-18	1.0 kB	1.9 kB	52.2.48.141
www.bareflirt.com	unknown	2020-02-11	2020-02-20	2023-11-22	9.4 kB	996 kB	35.227.204.77
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-26	2.4 kB	648 kB	142.250.74.35
samlesamtykke.com	unknown	2018-05-22	2018-05-31	2024-04-25	955 B	19 kB	35.195.163.35
peachegirl.xyz	unknown	unknown	No data	No data	650 B	682 B	192.64.119.111
doninio.com	unknown	2022-07-19	2022-07-20	2024-03-19	916 B	996 B	128.199.56.44
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	2.9 kB	57 kB	142.250.74.164
api.samlesamtykke.com	unknown	2018-05-22	2018-05-31	2024-04-25	4.3 kB	8.4 kB	35.195.163.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	doninio.com	Sinkholed
2024-04-26	medium	doninio.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (23)

	URL	Size	First Seen	Last Seen
	www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn	2.4 kB	2023-11-20	2024-05-07
Pretty URL www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-20 11:53:32 Last Seen2024-05-07 10:52:02 Times Seen317 Hash 0f9eb049ae54f0f8e7a79457c1c68e55 a958b91729a9d44a23f3535d0687cae777ee8255 0d179d997f91d5c01f757891badcdc4cceeb7e5aad919e47b31df5ea21ba88cf Loading...

	www.bareflirt.com/landers/js/landing006.js	74 kB	2024-04-25	2024-05-05
Pretty URL www.bareflirt.com/landers/js/landing006.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 11:58:15 Last Seen2024-05-05 00:11:53 Times Seen11 Hash 1e199335475232fbaa04c0486f89101e daa0ec582b71f65938a97242fb4b4bf6350c99d7 375b568ac8d1ec4d49c6b36d9ce49397d840f70bfed3956a1f541fef08e76095 Loading...

	www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js	18 kB	2024-04-18	2024-04-27
Pretty URL www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 11:26:44 Last Seen2024-04-27 08:11:03 Times Seen846 Hash a881e4c268e13ad20405ae80fca4c36b dee477906e2c92b4c7747029a2409069b9b676ad 63d2e26aa68933bac804050c4e0f0293f1f97e927ad4a79ac9e6a0e8b310fb77 Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0	75 B	2023-03-07	2024-05-07
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:15:59 Last Seen2024-05-07 14:13:51 Times Seen10551 Hash dca9d53787fff314e5bd1a123b28906a 1350c858f60bbb03d1b53b05cbad6cea82ff29d1 2475d902b4182bac667d464a44c89ee405e5cfd64156b30f811557cf2b347e2f Loading...

	www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s	1.0 kB	2024-04-24	2024-05-07
Pretty URL www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 20:34:25 Last Seen2024-05-07 10:52:03 Times Seen57 Hash bd927622e1c40d420b32be0dc022e336 35f4a129b447f6d914420e59b3bbf5a7512f549f afb5abaa561bb823a0c386906899eddac8ce791e2bcb9056f57b0364d341a829 Loading...

	samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=bareflirt.com&languageCode=nb&languageTerritory=NO&sessionId=85727e13e1d9428f806fb1dd09238694	121 kB	2024-04-26	2024-04-26
Pretty URL samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=bareflirt.com&languageCode=nb&languageTerritory=NO&sessionId=85727e13e1d9428f806fb1dd09238694 IP 35.195.163.35 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 19:41:07 Last Seen2024-04-26 19:41:08 Times Seen2 Hash 06bb06aff5c30654587e77d703bee20f aa8df255041ec8ff522450a4f2cab482b6d06b11 f4b8eb63be1aab2566bb56e594afc03d176e6f9ac4f8b01ca6670db34c59c170 Loading...

	www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn	147 B	2023-03-07	2024-05-07
Pretty URL www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09:25 Last Seen2024-05-07 10:52:03 Times Seen922 Hash b85aa80cb826211a36318337793411db e34920a6965fb7b9102be2dcde8ae363e4355686 e4de3377c03566f32b347f14973f5e998466e585c9bbd27f7dc9099ecf77e7a2 Loading...

	www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js	518 kB	2024-04-24	2024-05-07
Pretty URL www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 09:18:30 Last Seen2024-05-07 14:29:20 Times Seen8291 Hash e2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0	36 kB	2024-04-26	2024-04-26
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 19:41:07 Last Seen2024-04-26 19:41:07 Times Seen1 Hash d8ccc1315208cf25906288594c115e52 d08950b66f8a74039b71c40c3907bc7f926fc46d 8e8579cac40e6bec75f9f87bc0e189efd2e7edf87957f0c619d73a3fb0636baa Loading...

	www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB	205 kB	2024-04-26	2024-04-26
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 19:41:07 Last Seen2024-04-26 19:41:08 Times Seen2 Hash 0631f7433265f005279953e44a6d01cf 77227ecc5d6addb90e3aa2fd2f464c7440c2881f fb003845fcd833e3301dabcae2f7531438c0b38832ba0e5ec5717a42068df740 Loading...

	www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c	275 kB	2024-04-26	2024-04-26
Pretty URL www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 16:30:44 Last Seen2024-04-26 19:41:08 Times Seen4 Hash 1051d6b076e4c60fad379ef75635598f e758df5813d8af8d096161b6971efda5f8a2f34d 019ca4d9f1aa0f27677889bfdb6dbe0c874e56813ab55377dd9ada1d45b952d7 Loading...

	www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn	5.9 kB	2023-10-03	2024-05-05
Pretty URL www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-03 10:41:47 Last Seen2024-05-05 00:11:53 Times Seen34 Hash a15d837e510b78d9914a10aac05c83aa a0a0c498686805fabf379e6291236d58a441763a 381a365a708100c30d19f206bc453401262eff3ee4339b0ce39a8f9d5bc15b44 Loading...

	www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn	103 B	2023-03-07	2024-05-07
Pretty URL www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09:25 Last Seen2024-05-07 10:52:03 Times Seen552 Hash b375c74456053411ec5414e21ecf870f 00a6b32dd64dbf1470f439ce9fa89c712500eebc a200a9bc6b415237c4571f14eb0eaa8f0f0fcfcd7eeafa8860441a805e4a144f Loading...

	www.bareflirt.com/landers/js/vendor.js	124 kB	2024-04-05	2024-05-07
Pretty URL www.bareflirt.com/landers/js/vendor.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-05 16:10:39 Last Seen2024-05-07 10:52:02 Times Seen58 Hash 39959a4eaa2299a3b0cf62f8b4560495 96d9ff427c2ae73112af44a976f27c5dc79f898c fb2aeda2c848164f2f2452c3d91d2b6b6e179924e3fa152cd7375bb50e94dd59 Loading...

	www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn	103 B	2023-03-07	2024-05-05
Pretty URL www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09:25 Last Seen2024-05-05 00:11:53 Times Seen439 Hash 7c30234b7bf626af1abf57d402628101 631dbf3c494a82cb7ce1c84de335ec50feff2f38 dc87051dc947ab8cdb9093cc5b02fa705d0ec2453052986be2beaa380a644f2c Loading...

	www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn	308 B	2023-03-07	2024-05-07
Pretty URL www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09:25 Last Seen2024-05-07 10:52:03 Times Seen860 Hash 8a81377a647bdea836809865c62d171b dd72dda89aacfe74746d2c73421ea55a23ab313d 9c7aa944eeb31b5765d0c1674cdc445dff6dd572a6fe897f6d5137ce181d44a9 Loading...

	www.bareflirt.com/landers/js/ad-provider.js	1.0 kB	2023-08-07	2024-05-07
Pretty URL www.bareflirt.com/landers/js/ad-provider.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-07 11:55:39 Last Seen2024-05-07 10:52:03 Times Seen1135 Hash acd920e8f5657057e8003b79905c5266 cd96548060dbbc3f715cb81c3810d893eedec260 38b34bce7e5ad8268f51a16a6633c17923130b2fac9eeb6ceaca6beb50990681 Loading...

	www.google.com/recaptcha/enterprise.js	940 B	2024-04-24	2024-05-07
Pretty URL www.google.com/recaptcha/enterprise.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 09:42:33 Last Seen2024-05-07 10:52:03 Times Seen62 Hash 796b5497d3c16bce195908f13b10fc72 381a26a96cea8cd5a03d2f70599a20b38ddf9d07 2f7e1ee849a9d78c4a8716630dc03be8afd7239c3575a836618487b10aa4dcd6 Loading...

	www.bareflirt.com/landers/media-registry.js	122 kB	2024-04-10	2024-05-01
Pretty URL www.bareflirt.com/landers/media-registry.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-10 20:01:22 Last Seen2024-05-01 00:44:50 Times Seen76 Hash 996d00ce3568daa889df786e8892e2f3 cee9721d9288c308d1fa237b9c3abe6f35312b69 0860495b30b1debdec029cf077e290876264883af129c82a872aad5abb94cef5 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 53c04c0ed819378671cf1ae1910e91c9	21 kB	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 19:41:08 Last Seen2024-04-26 19:41:08 Times Seen1 Hash 53c04c0ed819378671cf1ae1910e91c9 5306f5f869dfbcb812455d56be134589638ca3ec 032965cf510cae3345a7d6e1b7567c3d20783dc23fc8f2112b5625edd4d0b908 Loading...

	#2 Eval - dd95094459ff8bdae8e11f444811dcf7	22 B	2024-04-18	2024-04-27
Pretty Observations First Seen2024-04-18 11:26:46 Last Seen2024-04-27 08:11:02 Times Seen406 Hash dd95094459ff8bdae8e11f444811dcf7 a49187eb695d35e32a5833e3b59e83037340c33d a22b47367f53b722417f75024b83a0555347d438ae490a9ed572ed9e9594d706 Loading...

	#3 Eval - 690d5fccc0df707e9592226c90cd2e43	64 B	2024-04-18	2024-04-27
Pretty Observations First Seen2024-04-18 11:26:46 Last Seen2024-04-27 08:11:02 Times Seen408 Hash 690d5fccc0df707e9592226c90cd2e43 28cf77438278df313abfdead9e96fedb717326b2 e8a296e051765b406dda56024ee0ea00de306f3a5a41d372214ae18eedff2dce Loading...

	#4 Eval - 87ff6ea6ded216e0db7b5b2787a01101	22 B	2024-04-18	2024-04-27
Pretty Observations First Seen2024-04-18 11:26:46 Last Seen2024-04-27 08:11:02 Times Seen409 Hash 87ff6ea6ded216e0db7b5b2787a01101 b70a80d04d55507e62966a4db28171961d1e3fbd 27158427ea97ea33dddc4d03c32ba70abe0434692bbf7e8b8061c47dc519977c Loading...

HTTP Transactions (52)

URL IP Response Size

peachegirl.xyz/

192.64.119.111

302 Found

75 B

URL User Request GET HTTP/1.1
peachegirl.xyz/
IP
192.64.119.111:80
ASN
#22612 NAMECHEAP-NET

File type
HTML document, ASCII text
Size
75 B (75 bytes)
Hash
dba5f0765af9d38663e765990f2ea3b3
88ce013e58508c2ba86b2fb1f0314875ee69e9a1
8dd37246e78c5e8f169b9e61cec4c6c46a4bc49a34f282a6d09e97f2f45ec21c

HTTP Headers

GET / HTTP/1.1
Host: peachegirl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Fri, 26 Apr 2024 17:40:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 75
Connection: keep-alive
Location: https://ruffledplumage.com/?a=102241&c=130727&s1=038
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx

e1.o.lencr.org/

23.36.76.226

344 B

URL
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
a8a4c7b5da4423fa10991da4d64a0a4a
b34f3f81687e612ab5e6695bf5718587eb513a7d
12a8038d2e888ce1a5d1e1eef0620d825065268da19de0b5481652b389f333e9

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "12A8038D2E888CE1A5D1E1EEF0620D825065268DA19DE0B5481652B389F333E9"
Last-Modified: Fri, 26 Apr 2024 02:39:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21537
Expires: Fri, 26 Apr 2024 23:39:31 GMT
Date: Fri, 26 Apr 2024 17:40:34 GMT
Connection: keep-alive

ruffledplumage.com/?a=102241&c=130727&s1=038

67.207.69.191

302 Found

0 B

URL User Request GET HTTP/1.1
ruffledplumage.com/?a=102241&c=130727&s1=038
IP
67.207.69.191:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectruffledplumage.com
FingerprintAB:E7:3D:FB:A8:93:DE:14:7D:B2:C0:EF:40:CF:F1:34:60:F8:A4:6E
ValidityMon, 15 Apr 2024 23:06:47 GMT - Sun, 14 Jul 2024 23:06:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?a=102241&c=130727&s1=038 HTTP/1.1
Host: ruffledplumage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:34 GMT
content-length: 0
location: https://doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=038&s3=&s4=
set-cookie: sid=br0T81oCySaOsacGqKV9MTCsHX4xyXt7ApJU4N7P/Ip2W3FvanbN9A==; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
trk=NYoXDeHS3lWkPrrer2tLnzCsHX4xyXt7ApJU4N7P/Ip2W3FvanbN9A==; Max-Age=63071999; Expires=Sun, 26 Apr 2026 17:40:33 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
c108171=br0T81oCySaBkWySD1p4HvsP4BxNBxM4W/QMbVIfHnYlhvvSlPIr6Q==; Max-Age=2591999; Expires=Sun, 26 May 2024 17:40:33 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
pt30=5636a79f54db4e598a17cddd34ce9e85; Max-Age=2592000; Expires=Sun, 26 May 2024 17:40:34 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
ptc=5636a79f54db4e598a17cddd34ce9e85; Max-Age=157680000; Expires=Wed, 25 Apr 2029 17:40:34 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
ptbs=5636a79f54db4e598a17cddd34ce9e85; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None

doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=038&s3=&s4=

128.199.56.44

302 Found

0 B

URL User Request GET HTTP/2
doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=038&s3=&s4=
IP
128.199.56.44:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectdoninio.com
FingerprintD3:45:5F:F2:0D:1F:0D:89:EC:56:7F:C5:93:08:D6:4A:45:6E:A0:45
ValidityTue, 12 Mar 2024 03:30:24 GMT - Mon, 10 Jun 2024 03:30:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=038&s3=&s4= HTTP/1.1
Host: doninio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://youcantrackthis.com/?c=108589&s1=038&s5=ZEU-9a3fdc21-b838-459f-a181-d7a620301995&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn
referrer-policy: no-referrer
server: nginx/1.17.2
set-cookie: sess-e77b0662344488daba9af744856b7988=MTcxNDE1MzIzNXxzM1I1bHV6VXp1T1lkd2t6Sm5fQ1VsbGp3NDk3eUVDR0ZtOE05dDR0b2Jmei1SLU9UODJVN0s0PXxlFAaV2_qAdseOr2_wxtMqNOI_d7Cv0PFXnUYB8UnKYg==; Max-Age=31536000; HttpOnly
content-length: 0
date: Fri, 26 Apr 2024 17:40:35 GMT
X-Firefox-Spdy: h2

youcantrackthis.com/?c=108589&s1=038&s5=ZEU-9a3fdc21-b838-459f-a181-d7a620301995&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn

52.2.48.141

222 B

URL
youcantrackthis.com/?c=108589&s1=038&s5=ZEU-9a3fdc21-b838-459f-a181-d7a620301995&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn
IP
52.2.48.141:0
ASN
#14618 AMAZON-AES

File type
HTML document, ASCII text, with CRLF line terminators
Size
222 B (222 bytes)
Hash
9d09ebfcd9840a4b2441dfc9124fa3b0
293759ac9dbed544b11e8549934842a96403cb24
403fcf16a4ed4d748fcdd0af690068bf2213bbbc84e6f237fb6fac81fd286261

HTTP Headers

GET /?c=108589&s1=038&s5=ZEU-9a3fdc21-b838-459f-a181-d7a620301995&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn HTTP/1.1
Host: youcantrackthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 222
Content-Type: text/html; charset=utf-8
Date: Fri, 26 Apr 2024 17:40:35 GMT
Location: https://www.bareflirt.com/landing2?cat=milf&pi=102241&pt1=418824804&pe=038&zci=FNg32Z4Ubn
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=br0T81oCySakPrrer2tLnzCsHX4xyXt7YIwxLUnzcRm64bAl8t12pg==; domain=.youcantrackthis.com; path=/; HttpOnly
trk=NYoXDeHS3lVUEOCj5vNvoTCsHX4xyXt7YIwxLUnzcRm64bAl8t12pg==; domain=.youcantrackthis.com; expires=Sun, 26-Apr-2026 17:40:35 GMT; path=/; HttpOnly
c104671=br0T81oCySY6qze6R2poTJteAJjCHNUcXsCipbVZI9olhvvSlPIr6Q==; domain=.youcantrackthis.com; expires=Sun, 26-May-2024 17:40:35 GMT; path=/; HttpOnly
Connection: close

peachegirl.xyz/

192.64.119.111

302 Found

75 B

URL User Request GET HTTP/1.1
peachegirl.xyz/
IP
192.64.119.111:80
ASN
#22612 NAMECHEAP-NET

File type
HTML document, ASCII text
Size
75 B (75 bytes)
Hash
dba5f0765af9d38663e765990f2ea3b3
88ce013e58508c2ba86b2fb1f0314875ee69e9a1
8dd37246e78c5e8f169b9e61cec4c6c46a4bc49a34f282a6d09e97f2f45ec21c

HTTP Headers

GET / HTTP/1.1
Host: peachegirl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Fri, 26 Apr 2024 17:40:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 75
Connection: keep-alive
Location: https://ruffledplumage.com/?a=102241&c=130727&s1=038
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx

e1.o.lencr.org/

23.36.76.226

344 B

URL
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
a8a4c7b5da4423fa10991da4d64a0a4a
b34f3f81687e612ab5e6695bf5718587eb513a7d
12a8038d2e888ce1a5d1e1eef0620d825065268da19de0b5481652b389f333e9

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "12A8038D2E888CE1A5D1E1EEF0620D825065268DA19DE0B5481652B389F333E9"
Last-Modified: Fri, 26 Apr 2024 02:39:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21535
Expires: Fri, 26 Apr 2024 23:39:31 GMT
Date: Fri, 26 Apr 2024 17:40:36 GMT
Connection: keep-alive

ruffledplumage.com/?a=102241&c=130727&s1=038

67.207.69.191

302 Found

0 B

URL User Request GET HTTP/1.1
ruffledplumage.com/?a=102241&c=130727&s1=038
IP
67.207.69.191:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectruffledplumage.com
FingerprintAB:E7:3D:FB:A8:93:DE:14:7D:B2:C0:EF:40:CF:F1:34:60:F8:A4:6E
ValidityMon, 15 Apr 2024 23:06:47 GMT - Sun, 14 Jul 2024 23:06:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?a=102241&c=130727&s1=038 HTTP/1.1
Host: ruffledplumage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:36 GMT
content-length: 0
location: https://doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=038&s3=&s4=
set-cookie: sid=br0T81oCySa97FHkwo/bozCsHX4xyXt7hI1/A3fpdtD+JmW1uyJwYA==; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
trk=NYoXDeHS3lW9pkUfTk5VuTCsHX4xyXt7hI1/A3fpdtD+JmW1uyJwYA==; Max-Age=63071999; Expires=Sun, 26 Apr 2026 17:40:35 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
c108171=br0T81oCySa8MKgrOtIQptwwEL1h+Lfm+QqSlQriZUUlhvvSlPIr6Q==; Max-Age=2591999; Expires=Sun, 26 May 2024 17:40:35 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
pt30=3a5bd2337c9341be8a5ba2862044deb1; Max-Age=2592000; Expires=Sun, 26 May 2024 17:40:36 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
ptc=3a5bd2337c9341be8a5ba2862044deb1; Max-Age=157680000; Expires=Wed, 25 Apr 2029 17:40:36 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
ptbs=3a5bd2337c9341be8a5ba2862044deb1; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None

doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=038&s3=&s4=

128.199.56.44

302 Found

0 B

URL User Request GET HTTP/2
doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=038&s3=&s4=
IP
128.199.56.44:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectdoninio.com
FingerprintD3:45:5F:F2:0D:1F:0D:89:EC:56:7F:C5:93:08:D6:4A:45:6E:A0:45
ValidityTue, 12 Mar 2024 03:30:24 GMT - Mon, 10 Jun 2024 03:30:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=038&s3=&s4= HTTP/1.1
Host: doninio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://youcantrackthis.com/?c=108587&s1=038&s5=ZEU-5787c796-ad59-411a-9608-717140dd3b79&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn
referrer-policy: no-referrer
server: nginx/1.17.2
set-cookie: sess-e77b0662344488daba9af744856b7988=MTcxNDE1MzIzN3xqNkVUNHBZNUdQblQ3cXRRY01uRzQ0Yl9RbG9lbk5fcVR4SnRMOVJNWWxQQXlKNk94eWo1RkRJPXzFCRHiDBnhDWQkuhzgYA594MxcYyCFq9qmEi5N9QFpvw==; Max-Age=31536000; HttpOnly
content-length: 0
date: Fri, 26 Apr 2024 17:40:37 GMT
X-Firefox-Spdy: h2

youcantrackthis.com/?c=108587&s1=038&s5=ZEU-5787c796-ad59-411a-9608-717140dd3b79&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn

52.2.48.141

302 Found

209 B

URL User Request GET HTTP/1.1
youcantrackthis.com/?c=108587&s1=038&s5=ZEU-5787c796-ad59-411a-9608-717140dd3b79&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn
IP
52.2.48.141:443
ASN
#14618 AMAZON-AES

Certificate
IssuerGlobalSign nv-sa
Subject*.youcantrackthis.com
FingerprintCA:62:BB:43:52:C3:DE:F8:A9:95:61:79:8A:E4:D4:43:F9:C7:F3:BE
ValidityThu, 28 Dec 2023 01:37:27 GMT - Tue, 28 Jan 2025 01:37:26 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
209 B (209 bytes)
Hash
c014e65a1603bb2f880285140c81c2bc
0d18c97fc02a512f85611a6cd4a14594e9b4501e
66f2f7c09eeeefd691e49e6f9864dfe742db6eac14241ef308baa31814c10d58

HTTP Headers

GET /?c=108587&s1=038&s5=ZEU-5787c796-ad59-411a-9608-717140dd3b79&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn HTTP/1.1
Host: youcantrackthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 209
Content-Type: text/html; charset=utf-8
Date: Fri, 26 Apr 2024 17:40:37 GMT
Location: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=br0T81oCySaMDfzpLd8XazCsHX4xyXt7L38URWdnKpI4EqOYJXtemQ==; domain=.youcantrackthis.com; path=/; HttpOnly
trk=AaQsEqomhxWOsacGqKV9MTCsHX4xyXt7L38URWdnKpI4EqOYJXtemQ==; domain=.youcantrackthis.com; expires=Sun, 26-Apr-2026 17:40:37 GMT; path=/; HttpOnly
c104671=br0T81oCySaREIakwtvs0XE2kpGGe4I2WgijRpz33CAlhvvSlPIr6Q==; domain=.youcantrackthis.com; expires=Sun, 26-May-2024 17:40:37 GMT; path=/; HttpOnly
Connection: close

www.bareflirt.com/img/logo.png

35.227.204.77

200 OK

7.2 kB

URL GET HTTP/3
www.bareflirt.com/img/logo.png
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced
Size
7.2 kB (7189 bytes)
Hash
04d7a18a5b4e03f5aa869b2ddd17241b
d95593cbccaf5449e7348d64ee38956d1f89bef8
a436ac56e8450afc905e51d91caec2502787afa46050efb62ea081e6c5ef2313

HTTP Headers

GET /img/logo.png HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:37 GMT
server: Apache/2.4.58 (Ubuntu)
vary: X-Forwarded-Proto
last-modified: Fri, 26 Apr 2024 09:37:43 GMT
etag: "1c15-616fca7d0adba"
accept-ranges: bytes
content-length: 7189
x-ua-compatible: IE=edge,chrome=1
content-type: image/png
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.bareflirt.com/landers/js/ad-provider.js

35.227.204.77

200 OK

512 B

URL GET HTTP/3
www.bareflirt.com/landers/js/ad-provider.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
ASCII text, with very long lines (979)
Size
512 B (512 bytes)
Hash
acd920e8f5657057e8003b79905c5266
cd96548060dbbc3f715cb81c3810d893eedec260
38b34bce7e5ad8268f51a16a6633c17923130b2fac9eeb6ceaca6beb50990681

HTTP Headers

GET /landers/js/ad-provider.js HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:37 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 09:22:57 GMT
etag: "6620e671-3fb-gzip"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 2556874
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 512
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/images/general/google-logo.svg

35.227.204.77

200 OK

688 B

URL GET HTTP/3
www.bareflirt.com/landers/images/general/google-logo.svg
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
SVG Scalable Vector Graphics image
Size
688 B (688 bytes)
Hash
686f8efa6e3e28e96d1c08399e8d353d
4524589b0dceefb6ae6389f36634441df69152d5
0cf576a5dab9315daac7ffe29d29ed585e0ff9850e59408d0f25f38dc1da037b

HTTP Headers

GET /landers/images/general/google-logo.svg HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:37 GMT
server: nginx/1.14.2
content-type: image/svg+xml
content-length: 688
last-modified: Thu, 18 Apr 2024 09:22:44 GMT
etag: "6620e664-2b0"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 2328647
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/images/loader/loading.gif

35.227.204.77

200 OK

2.9 kB

URL GET HTTP/3
www.bareflirt.com/landers/images/loader/loading.gif
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
GIF image data, version 89a, 128 x 15
Size
2.9 kB (2892 bytes)
Hash
62b08454087f1ef8b27bd2bcda330537
cac1914632f4c859f6176a84078f1017bad069f8
06f91f1bc360e7c486515b416a564445652e40585f94f2d089239b981d6421f6

HTTP Headers

GET /landers/images/loader/loading.gif HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:37 GMT
server: nginx/1.14.2
content-type: image/gif
content-length: 2892
last-modified: Thu, 18 Apr 2024 09:22:46 GMT
etag: "6620e666-b4c"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 2168300
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/favicon/apple-touch-icon-180x180.png

35.227.204.77

404 Not Found

279 B

URL GET HTTP/3
www.bareflirt.com/favicon/apple-touch-icon-180x180.png
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
HTML document, ASCII text
Size
279 B (279 bytes)
Hash
269bd369969705241a74417e30472d20
ec5d3d3f8953b4a65c6dd100f6c89fbc7b29b02d
704517c687444a8a012e9ec63d7d30a1856f68745dcb32d707feb1b713043403

HTTP Headers

GET /favicon/apple-touch-icon-180x180.png HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 17:40:38 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 279
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.bareflirt.com/favicon/favicon.ico

35.227.204.77

404 Not Found

279 B

URL GET HTTP/3
www.bareflirt.com/favicon/favicon.ico
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
HTML document, ASCII text
Size
279 B (279 bytes)
Hash
269bd369969705241a74417e30472d20
ec5d3d3f8953b4a65c6dd100f6c89fbc7b29b02d
704517c687444a8a012e9ec63d7d30a1856f68745dcb32d707feb1b713043403

HTTP Headers

GET /favicon/favicon.ico HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 17:40:38 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 279
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 14:46:34 GMT
expires: Sat, 26 Apr 2025 14:46:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 10444
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.bareflirt.com/landers/js/vendor.js

35.227.204.77

200 OK

249 kB

URL GET HTTP/3
www.bareflirt.com/landers/js/vendor.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (60065)
Size
249 kB (249344 bytes)
Hash
e973dae6c9351b89a432541e0b7bafe7
4347c27a2be0db5bc76c4db9a3c2ed0d65481566
c2cf08ef78dc8bce4e25c606169c4dae275552a431c191e3c6210b32b055aec1

HTTP Headers

GET /landers/js/vendor.js HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:38 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 09:22:58 GMT
etag: W/"6620e672-1e2ae"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 2525134
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/media-registry.js

35.227.204.77

200 OK

8.6 kB

URL GET HTTP/3
www.bareflirt.com/landers/media-registry.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
8.6 kB (8593 bytes)
Hash
996d00ce3568daa889df786e8892e2f3
cee9721d9288c308d1fa237b9c3abe6f35312b69
0860495b30b1debdec029cf077e290876264883af129c82a872aad5abb94cef5

HTTP Headers

GET /landers/media-registry.js HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 16:30:29 GMT
server: nginx/1.14.2
x-guploader-uploadid: ABPtcPohVBx5r6fZlFH-PU_mU9j4XZvg_kF0mLeK5P_BNWo3ijKPi3RJxP-bbPC_9750ioerDihHVwrCEQ
x-goog-generation: 1713440482901169
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 122245
x-goog-hash: crc32c=wF2vjw==, md5=mW0AzjVo2qiJ33huiJLi8w==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
age: 4209
last-modified: Thu, 18 Apr 2024 11:41:22 GMT
etag: "996d00ce3568daa889df786e8892e2f3-gzip"
content-type: application/javascript
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 8593
via: 1.1 google, 1.1 google

samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=bareflirt.com&languageCode=nb&languageTerritory=NO&sessionId=85727e13e1d9428f806fb1dd09238694

35.195.163.35

200 OK

14 kB

URL GET HTTP/2
samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=bareflirt.com&languageCode=nb&languageTerritory=NO&sessionId=85727e13e1d9428f806fb1dd09238694
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type
JavaScript source, ASCII text
Size
14 kB (14215 bytes)
Hash
06bb06aff5c30654587e77d703bee20f
aa8df255041ec8ff522450a4f2cab482b6d06b11
f4b8eb63be1aab2566bb56e594afc03d176e6f9ac4f8b01ca6670db34c59c170

HTTP Headers

GET /cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=bareflirt.com&languageCode=nb&languageTerritory=NO&sessionId=85727e13e1d9428f806fb1dd09238694 HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:38 GMT
content-type: application/javascript
content-length: 14215
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.bareflirt.com/landers/translations/nb-no2.json

35.227.204.77

200 OK

218 kB

URL GET HTTP/3
www.bareflirt.com/landers/translations/nb-no2.json
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JSON text data
Size
218 kB (218064 bytes)
Hash
03b5a86609e5b54a54f2d4aa9c4de6be
2b28f57afd7505c6b4daa22867970c84396dd642
459139ce69de1a12b7372c8ca54b3f68a0d6b3a24c499849f3daa892fdc25183

HTTP Headers

GET /landers/translations/nb-no2.json HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 16:18:44 GMT
server: nginx/1.14.2
content-length: 218064
x-guploader-uploadid: ABPtcPrn9fpR4kQodLCwOTQi5t3i_wjZ4Ct_PXKbIn8qMXismTCq_5-zUkMl3iPVVhY1HkeNk1jFrWjwWw
x-goog-generation: 1712825875375555
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 218064
x-goog-hash: crc32c=ezkWSA==, md5=A7WoZgnltUpU8tSqnE3mvg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
age: 4914
last-modified: Thu, 11 Apr 2024 08:57:55 GMT
etag: "03b5a86609e5b54a54f2d4aa9c4de6be"
content-type: application/json
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 google, 1.1 google

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
ASCII text, with very long lines (56412), with no line terminators
Size
25 kB (24617 bytes)
Hash
2c00b9f417b688224937053cd0c284a5
17b4c18ebc129055dd25f214c3f11e03e9df2d82
1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 14:30:13 GMT
expires: Sat, 26 Apr 2025 14:30:13 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/css
vary: Accept-Encoding
age: 11425
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 14:46:34 GMT
expires: Sat, 26 Apr 2025 14:46:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 10444
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.bareflirt.com/landers/images/landing006/default/default/slide04.jpg?geo=no

35.227.204.77

200 OK

98 kB

URL GET HTTP/3
www.bareflirt.com/landers/images/landing006/default/default/slide04.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2004x1000, components 3
Size
98 kB (97892 bytes)
Hash
7e17427b95d9c8af56d2b8f43e6a6108
db73071e5c7000b873b2cf13d7b5e112c6765a07
6477548b85b85c155e6ffd048e06d88e9d4596d9e9ad491ff19471a2dc53ba8e

HTTP Headers

GET /landers/images/landing006/default/default/slide04.jpg?geo=no HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:39 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 97892
last-modified: Thu, 18 Apr 2024 09:22:45 GMT
etag: "6620e665-17e64"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 2168308
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB

142.250.74.168

200 OK

72 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (3484)
Size
72 kB (72140 bytes)
Hash
0631f7433265f005279953e44a6d01cf
77227ecc5d6addb90e3aa2fd2f464c7440c2881f
fb003845fcd833e3301dabcae2f7531438c0b38832ba0e5ec5717a42068df740

HTTP Headers

GET /gtm.js?id=GTM-KBRH6NB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 17:40:39 GMT
expires: Fri, 26 Apr 2024 17:40:39 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 Apr 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72140
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:01:56 GMT
expires: Sat, 26 Apr 2025 06:01:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 41923
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c

142.250.74.168

200 OK

94 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
94 kB (94387 bytes)
Hash
1051d6b076e4c60fad379ef75635598f
e758df5813d8af8d096161b6971efda5f8a2f34d
019ca4d9f1aa0f27677889bfdb6dbe0c874e56813ab55377dd9ada1d45b952d7

HTTP Headers

GET /gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 17:40:39 GMT
expires: Fri, 26 Apr 2024 17:40:39 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94387
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:25:07 GMT
expires: Fri, 25 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 87332
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 14:46:34 GMT
expires: Sat, 26 Apr 2025 14:46:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 10445
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:54:07 GMT
expires: Thu, 02 May 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 139592
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js

142.250.74.164

200 OK

7.4 kB

URL GET HTTP/3
www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1
ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT

File type
JavaScript source, ASCII text, with very long lines (17602)
Size
7.4 kB (7447 bytes)
Hash
a881e4c268e13ad20405ae80fca4c36b
dee477906e2c92b4c7747029a2409069b9b676ad
63d2e26aa68933bac804050c4e0f0293f1f97e927ad4a79ac9e6a0e8b310fb77

HTTP Headers

GET /js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7447
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 05:05:57 GMT
expires: Thu, 24 Apr 2025 05:05:57 GMT
cache-control: public, max-age=31536000
age: 218082
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

samlesamtykke.com/cc.css

35.195.163.35

200 OK

3.9 kB

URL GET HTTP/2
samlesamtykke.com/cc.css
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type
assembler source, ASCII text
Size
3.9 kB (3892 bytes)
Hash
ddb6776d9e0b9844c9f57355d7492805
da918eb4fefa9d625e5858496c2c4a20ad893619
9ec88cf72960048a40791a943e5dee85f910c00e9a3732339888b075de11bc34

HTTP Headers

GET /cc.css HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:39 GMT
content-type: text/css
content-length: 3892
last-modified: Thu, 15 Oct 2020 08:07:25 GMT
etag: "6073-5b1b123761e40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/collector

35.195.163.35

200 OK

0 B

URL POST HTTP/2
api.samlesamtykke.com/consent/collector
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/collector HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.bareflirt.com/
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:39 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/collector

35.195.163.35

200 OK

4.7 kB

URL POST HTTP/2
api.samlesamtykke.com/consent/collector
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type
JSON text data
Size
4.7 kB (4661 bytes)
Hash
13bbcc190c7fe76c7489b08aad14656a
dd5575dcc8445b489de95101d875e78fd08352d7
5847944aba0d237b9d758ec732dccbcba519a27441fc11418c0f610f7b4298a4

HTTP Headers

POST /consent/collector HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 169
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:39 GMT
content-type: application/vnd.api+json
content-length: 4661
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

0 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.bareflirt.com/
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:39 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

371 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type
JSON text data
Size
371 B (371 bytes)
Hash
aad76f926b6c219e918916e6f25e4129
4823643373db875486f8ac895ea532106e6798d4
0b9d369937e417796e17001b773fd61884a8993ea967ad4841a472e83f83292d

HTTP Headers

POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 224
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:39 GMT
content-type: application/vnd.api+json
content-length: 371
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

0 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.bareflirt.com/
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:39 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

354 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type
JSON text data
Size
354 B (354 bytes)
Hash
f3306f051731bcce1d98a030b8a2d9cf
ada4a5bb07ee1872a579a651298774329b036f43
cbbae4d9daeed7c435cb09233298534b86c9c159ff6960ace74e223e460a75c5

HTTP Headers

POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 225
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:40 GMT
content-type: application/vnd.api+json
content-length: 354
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/confirmExplicit

35.195.163.35

200 OK

0 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/confirmExplicit
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.bareflirt.com/
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:40 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/confirmExplicit

35.195.163.35

200 OK

0 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/confirmExplicit
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 514
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 26 Apr 2024 17:40:40 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.bareflirt.com/landers/images/landing006/default/default/slide06.jpg?geo=no

35.227.204.77

200 OK

123 kB

URL GET HTTP/3
www.bareflirt.com/landers/images/landing006/default/default/slide06.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2004x1252, components 3
Size
123 kB (122688 bytes)
Hash
6c14bd2627b18c52370ca1d1f25e394b
ed0dd124cbbfa1910c63cbf5e879d8cc62ed9955
3ef80b4201c22da3181814858bd10676404f61173d20717b42f9faccc9a1a236

HTTP Headers

GET /landers/images/landing006/default/default/slide06.jpg?geo=no HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Cookie: _ga_QXFHHE16V3=GS1.1.1714153239.1.0.1714153239.0.0.0; _ga=GA1.1.1630260617.1714153239
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:44 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 122688
last-modified: Thu, 18 Apr 2024 09:22:45 GMT
etag: "6620e665-1df40"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 1565680
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/images/landing006/default/default/slide05.jpg?geo=no

35.227.204.77

200 OK

83 kB

URL GET HTTP/3
www.bareflirt.com/landers/images/landing006/default/default/slide05.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2004x1252, components 3
Size
83 kB (83091 bytes)
Hash
a03da38f72078cba872bdcd2ff26d472
9d3229bf85acb3f55fb08a3f9eae5443ee8a131e
58e81dabdb6580eb989a433f2c64ef6600cace66fefb68b054be5eff737b9986

HTTP Headers

GET /landers/images/landing006/default/default/slide05.jpg?geo=no HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Cookie: _ga_QXFHHE16V3=GS1.1.1714153239.1.0.1714153239.0.0.0; _ga=GA1.1.1630260617.1714153239
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:49 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 83091
last-modified: Thu, 18 Apr 2024 09:22:45 GMT
etag: "6620e665-14493"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 1375557
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m

142.250.74.164

200 OK

102 B

URL GET HTTP/3
www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1
ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT

File type
ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
284b36421a1cf446f32cb8f7987b1091
eb14d6298c9da3fb26d75b54c087ea2df9f3f05f
94ab2be973685680d0be9c08d4e1a7465f3c09053cf631126bd33f49cc2f939b

HTTP Headers

GET /recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 26 Apr 2024 17:40:39 GMT
date: Fri, 26 Apr 2024 17:40:39 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.bareflirt.com/landers/css/fontawesome-all.min.css

35.227.204.77

200 OK

52 kB

URL GET HTTP/3
www.bareflirt.com/landers/css/fontawesome-all.min.css
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
ASCII text, with very long lines (51425)
Size
52 kB (51568 bytes)
Hash
a954e78371616c5b3b924fc9e83aa9b4
14912f17e86aa3d4d12c94b91646ddaac2ae0862
5986f251d278ae72106ef1d7302798a2e14f69a4d35b80087b9e61905a15e75e

HTTP Headers

GET /landers/css/fontawesome-all.min.css HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:37 GMT
server: nginx/1.14.2
content-type: text/css
last-modified: Thu, 18 Apr 2024 09:22:44 GMT
etag: W/"6620e664-c970"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 1880431
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/css/vegas.min.css

35.227.204.77

200 OK

12 kB

URL GET HTTP/3
www.bareflirt.com/landers/css/vegas.min.css
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
ASCII text
Size
12 kB (11808 bytes)
Hash
b8abc72c16479198c206a456a02f1dca
d704f7acb4b8daf00787d4ba4f6e33b26be2a28c
a8d530eff57d706b6469ac6bdc3ce13cbfaecc832792ad7a102b19e156632fe1

HTTP Headers

GET /landers/css/vegas.min.css HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:37 GMT
server: nginx/1.14.2
content-type: text/css
last-modified: Thu, 18 Apr 2024 09:22:44 GMT
etag: W/"6620e664-2e20"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 1858342
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn

35.227.204.77

200 OK

22 kB

URL User Request GET HTTP/2
www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
HTML document, ASCII text, with very long lines (2091)
Size
22 kB (22450 bytes)
Hash
9f75a13d8bb416985349185c176cd180
2466832633d004264115a81a19ab42c182d834c0
b035a6e46fddb7987d3e2e18c5f64e610c3c81ed7cd4ad609ba549937542dedd

HTTP Headers

GET /landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 17:40:37 GMT
server: nginx/1.14.2
content-type: text/html;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: bareflirt.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 2467608
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2

www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s

142.250.74.164

200 OK

1.0 kB

URL GET HTTP/2
www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintF3:75:C9:48:E6:A5:11:C7:87:C8:8D:9A:C4:16:F8:09:4E:88:7C:5A
ValidityMon, 08 Apr 2024 07:33:48 GMT - Mon, 01 Jul 2024 07:33:47 GMT

File type
JavaScript source, ASCII text, with very long lines (1033), with no line terminators
Size
1.0 kB (1033 bytes)
Hash
bd927622e1c40d420b32be0dc022e336
35f4a129b447f6d914420e59b3bbf5a7512f549f
afb5abaa561bb823a0c386906899eddac8ce791e2bcb9056f57b0364d341a829

HTTP Headers

GET /recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 26 Apr 2024 17:40:37 GMT
date: Fri, 26 Apr 2024 17:40:37 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.bareflirt.com/landers/css/landing006.css

35.227.204.77

200 OK

20 kB

URL GET HTTP/3
www.bareflirt.com/landers/css/landing006.css
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
ASCII text
Size
20 kB (20266 bytes)
Hash
ee02da0bb787ebf02910f33d9df558ce
82c5357fe22a58260cb1a3096b55e90aa611d0d3
f4528bdb363a046d403fee27156e7b43171bd87b9de55433f2f16b730f55fd8e

HTTP Headers

GET /landers/css/landing006.css HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:38 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: bareflirt.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 1593788
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0

142.250.74.164

200 OK

45 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1
ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT

File type
HTML document, ASCII text, with very long lines (36035)
Size
45 kB (44767 bytes)
Hash
797516ab728a6d17038330548dae356c
a0f4969f2ad7a4417c79c3b208d4fa9f860bb640
0dba185780adab832b607b9e1e19488dd97d56e73afd0b4a981c0bc2e59cab2b

HTTP Headers

GET /recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=tncqt1oydcj0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 Apr 2024 17:40:38 GMT
content-security-policy: script-src 'nonce-h3s3yS1nm155_8Tu5wsu7A' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.bareflirt.com/landers/css/theme/pornhub.css

35.227.204.77

200 OK

16 kB

URL GET HTTP/3
www.bareflirt.com/landers/css/theme/pornhub.css
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
ASCII text
Size
16 kB (15541 bytes)
Hash
ef94e758d8e5cf5f39dea8566241e6f1
1fbbfd93cc5c8db172980540db0e777ee5553d94
ad05b1b370b466dc95222817e453b0f0efcfb9a9762d1b71d987d1a4a8c8356e

HTTP Headers

GET /landers/css/theme/pornhub.css HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:38 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: bareflirt.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 1751038
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.google.com/recaptcha/enterprise.js

142.250.74.164

200 OK

940 B

URL GET HTTP/2
www.google.com/recaptcha/enterprise.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintF3:75:C9:48:E6:A5:11:C7:87:C8:8D:9A:C4:16:F8:09:4E:88:7C:5A
ValidityMon, 08 Apr 2024 07:33:48 GMT - Mon, 01 Jul 2024 07:33:47 GMT

File type
JavaScript source, ASCII text, with very long lines (940), with no line terminators
Size
940 B (940 bytes)
Hash
796b5497d3c16bce195908f13b10fc72
381a26a96cea8cd5a03d2f70599a20b38ddf9d07
2f7e1ee849a9d78c4a8716630dc03be8afd7239c3575a836618487b10aa4dcd6

HTTP Headers

GET /recaptcha/enterprise.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 26 Apr 2024 17:40:37 GMT
date: Fri, 26 Apr 2024 17:40:37 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.bareflirt.com/landers/js/landing006.js

35.227.204.77

200 OK

74 kB

URL GET HTTP/3
www.bareflirt.com/landers/js/landing006.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type

Size
74 kB (73687 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /landers/js/landing006.js HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing6?pi=102241&pt1=418824808&pe=038&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:40:38 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 09:22:57 GMT
etag: W/"6620e671-11fd7"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 2168305
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML