GET /tds/ae HTTP/1.1
Host: findher2date.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
 3.125.187.5
HTTP/1.1 302 Found
Date: Mon, 28 Nov 2022 18:18:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: *
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Accept-CH: UA, Platform, Model, Mobile, Arch
Set-Cookie: dci=2987f244d39b4c9be546f7dd63394b1e50e60b22; Max-Age=31536000; Domain=.findher2date.com; Path=/; Expires=Tue, 28 Nov 2023 18:18:34 GMT; Secure; SameSite=None
dm=fe450dd0d1dadc615429144d33241f42; Max-Age=432000; Path=/; Expires=Sat, 03 Dec 2022 18:18:34 GMT
Location: https://findher2date.com/res_route/fback?s1=&s2=&s3=&s4=&s5=&s6=&s7=&s8=&tds_ac_id=&tds_cid=&tds_campaign=&utm_source=&utm_campaign=&utm_term=&tds_layer=ATE&tds_reason_code=TECH_UNKNOWN_CAMPAIGN
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2792
Expires: Mon, 28 Nov 2022 19:05:06 GMT
Date: Mon, 28 Nov 2022 18:18:34 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 2915
Cache-Control: max-age=147682
Date: Mon, 28 Nov 2022 18:18:34 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:19:56 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4923
Expires: Mon, 28 Nov 2022 19:40:37 GMT
Date: Mon, 28 Nov 2022 18:18:34 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
 34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 17:19:32 GMT
cache-control: public,max-age=3600
age: 3542
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: 4mVS3SN/SpYV8yH2lSqsWoTLaE1PkTEsQ8B6rmsVD0bbwdcZWBZHQUyiIEXVe7Acpoy1C3t0oq8=
x-amz-request-id: Q2Y27GVVTWG28KFH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 17:45:07 GMT
age: 2008
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Mon, 28 Nov 2022 18:18:35 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137902
Date: Mon, 28 Nov 2022 18:18:35 GMT
Etag: "63847329-1d7"
Expires: Wed, 30 Nov 2022 08:36:57 GMT
Last-Modified: Mon, 28 Nov 2022 08:36:57 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8gD8WQdCQlpzgWwC_c2lSRDU_H66iyfX6cKFK4F6_9d_w0tm8nAkuA==
|
GET /res_route/fback?s1=&s2=&s3=&s4=&s5=&s6=&s7=&s8=&tds_ac_id=&tds_cid=&tds_campaign=&utm_source=&utm_campaign=&utm_term=&tds_layer=ATE&tds_reason_code=TECH_UNKNOWN_CAMPAIGN HTTP/1.1
Host: findher2date.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
54.93.66.131
HTTP/2 302 Found
content-type: text/html; charset=utf-8
date: Mon, 28 Nov 2022 18:18:35 GMT
content-length: 350
location: https://www.dirtytinder.club/c/8d2358ea43d0439d?s1=36_all_ng&s2=TECH_UNKNOWN_CAMPAIGN&s3=&s4=&s5=&s6=&s7=&s8=&utm_source=
server: nginx
x-powered-by: Express
access-control-allow-origin: *
vary: Accept, Accept-Encoding
X-Firefox-Spdy: h2
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 18:08:55 GMT
cache-control: public,max-age=3600
age: 580
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 5091
Cache-Control: max-age=144791
Date: Mon, 28 Nov 2022 18:18:35 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:31:46 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=114866
Date: Mon, 28 Nov 2022 18:18:35 GMT
Etag: "6384192d-1d7"
Expires: Wed, 30 Nov 2022 02:13:01 GMT
Last-Modified: Mon, 28 Nov 2022 02:13:01 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4ocW9noWd3fZ4zsnyAgQ0XPw33JXzo78AOxZbMs-HH3fbGSZJ_eqTQ==
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yV7huMFNqJOQAxRgFk+Bbg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
35.162.142.194
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: j/UINRVZGV766Rjyi+j81WlxYEA=
|
GET /c/8d2358ea43d0439d?s1=36_all_ng&s2=TECH_UNKNOWN_CAMPAIGN&s3=&s4=&s5=&s6=&s7=&s8=&utm_source= HTTP/1.1
Host: www.dirtytinder.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
18.196.9.157
HTTP/2 302 Found
content-type: text/html; charset=utf-8
date: Mon, 28 Nov 2022 18:18:35 GMT
content-length: 316
location: https://www.redir2fuck.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UuaW1wcmVzc2x2ZWRhdGVzLmNvbS9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD1vdWprcTYzODRmYjdiMDAwMDBiNmUmajE9MSZqOT0x&action=action_tmp
server: nginx
set-cookie: unique_id=6384fb7b000433da; Path=/; Expires=Fri, 27 Jan 2023 18:18:35 GMT; Secure; SameSite=None
unique_id2=6384fb7b00043c80; Path=/; Expires=Sun, 26 Feb 2023 18:18:35 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Mon, 28 Nov 2022 18:18:35 GMT; Secure; SameSite=None
tid=oujkq6384fb7b00000b6e; Path=/; Expires=Tue, 02 Nov 2027 18:18:35 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:18:36 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 23:00:40 GMT
Expires: Sun, 04 Dec 2022 23:00:39 GMT
Etag: "64946db67a8e5ecda75c3916063392c31514ec0c"
Cache-Control: max-age=534722,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77151b672ac00b45-OSL
|
GET /redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UuaW1wcmVzc2x2ZWRhdGVzLmNvbS9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD1vdWprcTYzODRmYjdiMDAwMDBiNmUmajE9MSZqOT0x&action=action_tmp HTTP/1.1
Host: www.redir2fuck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
 52.19.101.114
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: nginx
date: Mon, 28 Nov 2022 18:18:36 GMT
content-length: 295
X-Firefox-Spdy: h2
|
GET /redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UuaW1wcmVzc2x2ZWRhdGVzLmNvbS9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD1vdWprcTYzODRmYjdiMDAwMDBiNmUmajE9MSZqOT0x&action=action_final HTTP/1.1
Host: www.redir2fuck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.redir2fuck.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UuaW1wcmVzc2x2ZWRhdGVzLmNvbS9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD1vdWprcTYzODRmYjdiMDAwMDBiNmUmajE9MSZqOT0x&action=action_tmp
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
|
search
52.19.101.114
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: nginx
date: Mon, 28 Nov 2022 18:18:36 GMT
content-length: 161
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "DC1DFDB0403B8045946EB18A899A224A703B4C7089C11ECED0725E1E0D404BBB"
Last-Modified: Sat, 26 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12973
Expires: Mon, 28 Nov 2022 21:54:49 GMT
Date: Mon, 28 Nov 2022 18:18:36 GMT
Connection: keep-alive
|
GET /landings/212225/1624025125/js/jquery.validate.min.js?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
 184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: x0n88vy6R42RaV/564yya+rciGgXVcQvshv7BBD+QqFLxydxKP4YN3T5glF0YCxYX1XDiujp19w=
x-amz-request-id: 76SPH51FAFYCDKPA
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "23d73c6bd6cbea8f06d0cc227896a827"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 18:18:36 GMT
Content-Length: 7815
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/212225/1624025125/js/trls.js?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: bEDMW+4uYXQPwp93E6hYipGoikvYukxCW1jf3CF2FDbC2bufMmZoIbFJeitROyv5M+AHZbFBmeE=
x-amz-request-id: 76SN3BPGWTYB3T7P
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "1f2a63d62e50fb3ea9b5bdfd69c66411"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 18:18:36 GMT
Content-Length: 12875
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/212225/1624025125/css/css2.css?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/css
x-amz-id-2: +P7HmwoyklT5lBsWZZv8dRfONDR5sFbboGSfNKeGGuNgxzrvRIj5nqW9OadQJ+qU+0ZavuZXcfU=
x-amz-request-id: 3SRH1EH4G0K4GEFB
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "71422cc0c98c0f0d038113e2c0f4fc74"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 478
Date: Mon, 28 Nov 2022 18:18:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/212225/1624025125/css/main.css?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/css
x-amz-id-2: dGUFAMVBkOQ2M09fPhZ1Ma8w2Xy1XvKCfgRZ8AuwChumab2SGLxJ/MaaDA5FdXypzEIBQ1OFg34=
x-amz-request-id: 3SRVVYPBVS1113MX
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "e8ad0d5112ebc38ccffa906a88480571"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 18:18:36 GMT
Content-Length: 1438
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/212225/1624025125/js/script.js?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: 9v4LI0Nf/QJJk1CdEv3RcXP+gaGX0x+GvEWprsUgwN9MHr/m5kCGlZEi1P6bQ42YQFXAMUEd4PA=
x-amz-request-id: 76SV05V07173EPSM
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "7088a812e48fb5ed8602225eddbac48f"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 145
Date: Mon, 28 Nov 2022 18:18:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/212225/1624025125/js/jquery-2.2.4.min.js?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: iGCeVFed+qRt5/WMxWkRwGf/gH1XJWT9G/wuX8FMV9kjQEmQ+TKNro5xNmWT1F7vjK1rbeV2n2g=
x-amz-request-id: 3SRP1WXFV252M78E
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "61a04f254179208c931ebf40f4cfddf5"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 18:18:36 GMT
Content-Length: 36023
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/212225/1624025125/images/filter.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: 6eh5do1b8hgTeOza38mZfW8wgPNOd77OHhj5QOvCkmuRXAHd3sggs6UfTfbV6M2Kt838nKJuYCM=
x-amz-request-id: G2Z4PE5JF8DVJFA5
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "9c15c9a0a02ff49660d3c31f5c190b99"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 621
Date: Mon, 28 Nov 2022 18:18:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/212225/1624025125/css/css2.css HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/212225/1624025125/css/main.css?1624025125
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/css
x-amz-id-2: +P7HmwoyklT5lBsWZZv8dRfONDR5sFbboGSfNKeGGuNgxzrvRIj5nqW9OadQJ+qU+0ZavuZXcfU=
x-amz-request-id: 3SRH1EH4G0K4GEFB
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "71422cc0c98c0f0d038113e2c0f4fc74"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 478
Date: Mon, 28 Nov 2022 18:18:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/212225/1624025125/images/btn.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: qS2r5FFQMtAGAH23af0BXqmzGu3JWD1tTH4mc4+4fujcUy6S3Dms9YqNpNpupX0Q58dps+7UyRQ=
x-amz-request-id: G2ZEVQSE2KW3W5TF
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "c90d93be7b9e2e55e87b9d58d3589721"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 876
Date: Mon, 28 Nov 2022 18:18:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/212225/1624025125/images/preview.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
x-amz-id-2: +nHh7RkH0nutv1CA35z5OcqzIEFGocwQgk9KVJyOUbAiSWuTg5EJP9olbg5ef7NM90ctAxxWtCM=
x-amz-request-id: VSQNNVA9AT56022K
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "f14e845449946d94336832c6a288b753"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 41399
Date: Mon, 28 Nov 2022 18:18:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
--- Additional Info ---
Magic: JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=257, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=257], progressive, precision 8, 257x257, components 3\012- data
Size: 41399
Md5: f14e845449946d94336832c6a288b753
Sha1: 16b73762fe2dd8ffccbf8da97504a3bd4c4c396f
Sha256: c7c713b35f729a8e3246f80f666d8ff01233745653afee65ff603ab2d86fe9b5
|
GET /landings/212225/1624025125/images/camera.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: +6sgPo4IwWDjLEpOourHrMnv1aGCfMHsbFzaIuTWVIa/h1JSb2utLt52SYBYiwI1colyaojeSqs=
x-amz-request-id: VSQJ2R9W0GQP46WC
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "e6fc25af3843556766acc03739200472"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 521
Date: Mon, 28 Nov 2022 18:18:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/212225/1624025125/images/KFOmCnqEu92Fr1Me5Q.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rgjgwe.impresslvedates.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: application/x-font-ttf
x-amz-id-2: ikXxGD3V55TtP6jGVtUGbyHqUiHUqCgb3+gelfaqLxGkMURzm5+ptdLgvufLXjgWPv6+1e11TDc=
x-amz-request-id: G2Z2ZQSPT2KV8EE2
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "0d984acaec916c225c012f27d0c56a91"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 131916
Date: Mon, 28 Nov 2022 18:18:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:18:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:18:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /landings/212225/1624025125/images/KFOmCnqEu92Fr1Me5Q.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rgjgwe.impresslvedates.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Range: bytes=50572-
If-Range: "0d984acaec916c225c012f27d0c56a91"
|
search
184.31.15.67
HTTP/1.1 206 Partial Content
Content-Type: application/x-font-ttf
x-amz-id-2: ikXxGD3V55TtP6jGVtUGbyHqUiHUqCgb3+gelfaqLxGkMURzm5+ptdLgvufLXjgWPv6+1e11TDc=
x-amz-request-id: G2Z2ZQSPT2KV8EE2
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "0d984acaec916c225c012f27d0c56a91"
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 28 Nov 2022 18:18:36 GMT
Content-Range: bytes 50572-131915/131916
Content-Length: 81344
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.163
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 18:29:53 GMT
expires: Tue, 21 Nov 2023 18:29:53 GMT
cache-control: public, max-age=31536000
age: 604124
last-modified: Thu, 10 May 2018 20:35:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:18:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8177
Expires: Mon, 28 Nov 2022 20:34:54 GMT
Date: Mon, 28 Nov 2022 18:18:37 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8177
Expires: Mon, 28 Nov 2022 20:34:54 GMT
Date: Mon, 28 Nov 2022 18:18:37 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8177
Expires: Mon, 28 Nov 2022 20:34:54 GMT
Date: Mon, 28 Nov 2022 18:18:37 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:25:51 GMT
age: 71566
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:43 GMT
age: 73614
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7556
x-amzn-requestid: 1cda5313-2256-4830-bf84-2e6e15949d3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78KFTmoAMF4yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-452e36d718a298d12a2374a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OWVkuAw6-nRNU_CVOgvsSSenSXnfSYSmJiKa60JvSaiJgPuXjJByZw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:46:41 GMT
age: 73916
etag: "1a542a53ba0b1cd0fb23257ebed8166555f16dfb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 08:11:39 GMT
age: 36418
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /c/e2905f55ec3a568b?s1=138089&s2=1310906&s3=&s5=&click_id=oujkq6384fb7b00000b6e&j1=1&j9=1 HTTP/1.1
Host: rgjgwe.impresslvedates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.redir2fuck.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
search
52.19.101.114
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: nginx
date: Mon, 28 Nov 2022 18:18:36 GMT
set-cookie: unique_id=6384fb7c00030ce8; Path=/; Expires=Fri, 27 Jan 2023 18:18:36 GMT; Secure; SameSite=None
unique_id2=638496ed00082b9d; Path=/; Expires=Sun, 26 Feb 2023 18:18:36 GMT; Secure; SameSite=None
638496ed00082b9d_c=1; Path=/; Expires=Sun, 26 Feb 2023 18:18:36 GMT; Secure; SameSite=None
ref_token=138089; Path=/; Expires=Wed, 28 Dec 2022 18:18:36 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Mon, 28 Nov 2022 18:18:36 GMT; Secure; SameSite=None
638496ed00082b9d_sl=[212225]; Path=/; Expires=Mon, 12 Dec 2022 18:18:36 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
|
GET /landings/212225/1624025125/images/KFOlCnqEu92Fr1MmWUlvAw.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rgjgwe.impresslvedates.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 200 OK
Content-Type: application/x-font-ttf
x-amz-id-2: JjY7K3ACjyfHw8f0c40KEvr8Bw+EmjghFjhoCYFuJQ6seGXl896FqCkW90D6EPjHiI4hbmKrOb8=
x-amz-request-id: G2Z6J4CSDXVWPY0W
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "74bc6165dc68714ccaa88f5c64656b1c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 131008
Date: Mon, 28 Nov 2022 18:18:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /js/service-worker.js HTTP/1.1
Host: rgjgwe.impresslvedates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: unique_id=6384fb7c00030ce8; unique_id2=638496ed00082b9d; 638496ed00082b9d_c=1; ref_token=138089; 638496ed00082b9d_sl=[212225]
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
|
search
52.19.101.114
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 28 Nov 2022 18:18:36 GMT
expires: Mon, 05 Dec 2022 18:18:36 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /landings/212225/1624025125/images/bg.mp4 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
184.31.15.67
HTTP/1.1 206 Partial Content
Content-Type: video/mp4
x-amz-id-2: PYCeh/fcpOLFMxwp+WjJrLuyZWn0W+QEBQxTdDCG8v368APnG/m0oked+OngdOIureCe7kW4K0g=
x-amz-request-id: YNQGNQF9RNKBV33G
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "cc4714e8b4e4c5fec9b05bafaeb508d5"
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 28 Nov 2022 18:18:36 GMT
Content-Range: bytes 0-3823843/3823844
Content-Length: 3823844
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
--- Additional Info ---
|
GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1
Host: rgjgwe.impresslvedates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.impresslvedates.com/c/e2905f55ec3a568b?s1=138089&s2=1310906&s3=&s5=backuser&click_id=oujkq6384fb7b00000b6e&iexpp=1&j1=1&j9=1
Cookie: unique_id=6384fb7c00030ce8; unique_id2=638496ed00082b9d; 638496ed00082b9d_c=1; ref_token=138089; 638496ed00082b9d_sl=[212225]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
52.19.101.114
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 28 Nov 2022 18:18:36 GMT
expires: Mon, 05 Dec 2022 18:18:36 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
|
54.151.146.41