Report - it.gratissesso.net/click?a=1439&o=362&sub

Report Overview

Submitted URL
it.gratissesso.net/click?a=1439&o=362&sub_id2=hot
IP
3.72.178.250
ASN
#16509 AMAZON-02
Submitted
2022-10-02 16:27:48
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	108.156.28.51
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	736 B	93.184.220.29
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	20 kB	142.250.74.174
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	787 B	558 B	216.239.32.36
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	367 B	72 kB	142.250.74.168
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	54 kB	34.120.237.76
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.8 kB	18.165.196.143
it.gratissesso.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	1.3 kB	18.185.231.124
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.148.77.40
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	31 kB	104.17.25.14
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.3
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
keycdn.datingcdn.com	466044	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	178 kB	82.102.27.18
snapdate.no	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.6 kB	787 kB	185.68.182.235
securecd-smrtnd.com	441842	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	511 B	36 kB	34.254.216.42
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	18.165.201.80
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439	264 B	2023-03-08	2023-08-05
Pretty URL snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 IP 185.68.182.235 ASN #205644 Switch Datacenters Amsterdam 4 B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:40:14 Last Seen2023-08-05 23:50:28 Times Seen8 Hash 24e0384e917e1133594dcd6757b175be 16b0b87d2062bdb39fed4819fac478cba9aa422b 485cdff35273c5ef40f2e027c8f01ea20e2ae385203648ca6900662f29175bff Loading...

	snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439	150 B	2023-03-08	2023-08-05
Pretty URL snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 IP 185.68.182.235 ASN #205644 Switch Datacenters Amsterdam 4 B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:40:14 Last Seen2023-08-05 23:50:29 Times Seen9 Hash 952941ba0f48f4833170630ae105baa5 233c19afcacd02a5ff9473fd620d067765d28366 00f9498b3a44d818560e942806c7fd3de356251641a6bd8e5714bd23652a054c Loading...

	keycdn.datingcdn.com/js/landing/cookie-consent.js?v=2.1	3.9 kB	2023-03-07	2023-08-05
Pretty URL keycdn.datingcdn.com/js/landing/cookie-consent.js?v=2.1 IP 82.102.27.18 ASN #9009 M247 Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:18 Last Seen2023-08-05 23:50:28 Times Seen13 Hash c56b7ac35da54cfd5a41a816d29d10bf 6a4c41de909c0e11f922f22dfa7ef936acd91e3c 6586c0bcac66dda6fe1931daf6f205abec3c76664f1eb1c6643d4a280bee68f0 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-01-06
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:05:31 Last Seen2024-01-06 17:39:53 Times Seen66 Hash 99ba52a15d2da967b023016d1af58cbd 5c2246049c43834d17113877b4731bd4f9803d55 9e25469f734732205f33dd80ff8ca12080406c18d2fa99a1f368103e51f7999f Loading...

	cdnjs.cloudflare.com/ajax/libs/typeahead.js/0.11.1/typeahead.jquery.js	63 kB	2023-03-07	2023-11-24
Pretty URL cdnjs.cloudflare.com/ajax/libs/typeahead.js/0.11.1/typeahead.jquery.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:07 Last Seen2023-11-24 11:18:37 Times Seen33 Hash 39472cb4b9f49ad69beab1ca71801c90 3791261f711195cb3716327f2729038eedff63a6 a5e4ca545fa9ede7b4e08b01c63acef4f2cbe31951a78109501479ec3dd23120 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js	87 kB	2023-03-07	2024-04-18
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-18 22:21:35 Times Seen105187 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	it.gratissesso.net/click?a=1439&o=329&sub_id2=hot	162 B	2023-03-08	2023-03-08
Pretty URL it.gratissesso.net/click?a=1439&o=329&sub_id2=hot IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:40:14 Last Seen2023-03-08 04:40:14 Times Seen1 Hash 72abbea64fd0f0d9a5775b7cf27b9e81 542ace5f7c4adf81952b5c583c2b6db02085f860 dafc0d6502d0e2c9cf210a24330044f7e35ced4607c852cb8c3eb6aaf8396c22 Loading...

	cdnjs.cloudflare.com/ajax/libs/mailcheck/1.1.2/mailcheck.min.js	3.7 kB	2023-03-07	2024-04-07
Pretty URL cdnjs.cloudflare.com/ajax/libs/mailcheck/1.1.2/mailcheck.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:07 Last Seen2024-04-07 22:48:49 Times Seen65 Hash 8b17fc8279eb4de4ec79c8429107d579 913bb5673a18eab118f4d417a1e99082e75e07b5 d18ac5282d49df88ec383df2ada07181527dd732e9e116fc373b52e9035957d0 Loading...

	snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439	6.9 kB	2023-03-07	2023-11-09
Pretty URL snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 IP 185.68.182.235 ASN #205644 Switch Datacenters Amsterdam 4 B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:20 Last Seen2023-11-09 03:44:49 Times Seen23 Hash ec4171fcbbb45063721e84412ff1be53 53e302fa237f01aec366eb02b3bc89cd026568d6 ee6ace4592d1e1985e8591751506e0ec43b6ef5f065eae634e1a542802683344 Loading...

	keycdn.datingcdn.com/js/landing/255/register.js	2.7 kB	2023-03-08	2023-08-05
Pretty URL keycdn.datingcdn.com/js/landing/255/register.js IP 82.102.27.18 ASN #9009 M247 Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:40:14 Last Seen2023-08-05 23:50:28 Times Seen7 Hash 93df304f42299cae3e3fcd7b0f61b296 12deb6b4e2702fc61bfec394dfdea5deaf4a6eb3 b641da4b47c4a637f4311477c0590a9334d05e85ad11c0046a7eab0903e75cfc Loading...

	snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439	2.1 kB	2023-03-07	2023-08-05
Pretty URL snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 IP 185.68.182.235 ASN #205644 Switch Datacenters Amsterdam 4 B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:07 Last Seen2023-08-05 23:50:29 Times Seen8 Hash dc280831fd5cddf8975c364d6159980b 51fd7f5776870b7453351992fbb5a118a4d3f507 b4261fde2e91d75179228aa81e019d38c51ea372de297e0f4c99307c6a50d327 Loading...

	www.googletagmanager.com/gtag/js?id=G-XCD7WMS7ML	194 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-XCD7WMS7ML IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:40:14 Last Seen2023-03-08 04:40:14 Times Seen1 Hash 973b09799019f4372dd7a69a485cd8ad e2dfbabc6708d7a0e45ddcf9a5ba1a7a789084b7 5611bc8961e20e7d7f3d7b146f8fc4400eaf0bc22c75b444885b36bde63e822b Loading...

	www.googletagmanager.com/gtag/js?id=UA-144996233-12&l=dataLayer&cx=c	109 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-144996233-12&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:40:14 Last Seen2023-03-08 04:40:14 Times Seen1 Hash 5a93ee9d6fdb2df93f05762afae6cc37 4e36a55ad819dbbe4510a812e60c22844b50b806 26aca5784814c9d3ee02cb6f56fe6a9075ee08164f0f5b3903a00bb1ab2f672f Loading...

	keycdn.datingcdn.com/js/landing/255/js.js	5.4 kB	2023-03-08	2023-08-05
Pretty URL keycdn.datingcdn.com/js/landing/255/js.js IP 82.102.27.18 ASN #9009 M247 Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:40:14 Last Seen2023-08-05 23:50:28 Times Seen7 Hash f0fe1a0d77392c25e6929440a9d39c51 fb6bf262fbb1360605f5f28935cb11f8f5dc9ed7 1022203ec47455484c90f10d5d06f9be19e017016164b421fd6531dadbae11d6 Loading...

HTTP Transactions (48)

	URL	IP	Response	Size
	firefox.settings.services.mozilla.com/v1/	18.165.201.80	200 OK	939 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/ IP 18.165.201.80:0 ASN #0 File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 2d12f67fe57a87e7366b662d153a5582 d7b02d81cc74f24a251d9363e0f4b0a149264ec1 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert Cache-Control: max-age=3600 Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Sun, 02 Oct 2022 16:03:11 GMT X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 ed5bf73eea0876436de4cbcd6f6945e4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: LHR50-P3 X-Amz-Cf-Id: 389wBxzqnI2C_OKQLZOl21HH1BiEyWgqR0rZ6QBxgsdVmDo857jD-Q== Age: 1465

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 60e4edea7b5f4d19f3547a3bb2d5df57 3ee076bab4da3416c2c5808f730cb316c28baef7 763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200" Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5965 Expires: Sun, 02 Oct 2022 18:07:01 GMT Date: Sun, 02 Oct 2022 16:27:36 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain	108.156.28.51	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP 108.156.28.51:0 ASN #16509 AMAZON-02 File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sat, 10 Sep 2022 18:47:45 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Sun, 02 Oct 2022 03:33:17 GMT etag: "6113f8408c59aebe188d6af273b90743" x-cache: Hit from cloudfront via: 1.1 59970c86d3717db509a968eaad0da4de.cloudfront.net (CloudFront) x-amz-cf-pop: LHR50-P1 x-amz-cf-id: tn0ziFo7JHlELpWHyaDJUHw7d-3a-BeG9iXe9vY8kFG8RAhRknwvtw== age: 46461 X-Firefox-Spdy: h2`

	ocsp.sca1b.amazontrust.com/	18.165.196.143	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 18.165.196.143:0 ASN #0 File type data Size 471 B (471 bytes) Hash 9e3b704e2da145d9a25657b3bc6b29f2 2d9ef6ea31c1475bf7ca2dae7399d9f349047c9e 30ea6996219dcdedd101aaabc6ffcf0e5e258f2511c1a311e132462bc16cac91 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: 'max-age=158059' Date: Sun, 02 Oct 2022 16:27:37 GMT Server: ECS (dcb/7EA6) X-Cache: Miss from cloudfront Via: 1.1 1a6cd18714da9809fa8cb07ad66fd4f6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: LHR50-P3 X-Amz-Cf-Id: W5vy-aKw9Ou3bhdcXnGKenzrCleNBnH4ctf8Cj7F04uVMmBjCTReIA==`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sun, 02 Oct 2022 16:27:37 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	18.165.201.80	200 OK	329 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 18.165.201.80:0 ASN #0 File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Cache-Control, Alert, Last-Modified, Backoff, Retry-After, Expires, Content-Length, Pragma, ETag Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT X-Content-Type-Options: nosniff Cache-Control: max-age=3600, max-age=3600 Date: Sun, 02 Oct 2022 15:32:53 GMT Expires: Sun, 02 Oct 2022 15:32:59 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 f5db034a9eef3b097715a6b5d2c824a8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: LHR50-P3 X-Amz-Cf-Id: rnEUk64VSDXKdcwAPSf1JyZHCVtsuIeY3H0epu3XrlzG5dnX3zht5g== Age: 3284

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 4eb30b4a4234809cf7d5f89fa1f6ceeb 797242aab2f13c820050aa9accd11b7b950cd177 ce9d833a0ac321a908184b655d6632c481f758a04a9c936a7c303bb253444146 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 894 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 02 Oct 2022 16:27:37 GMT Last-Modified: Sun, 02 Oct 2022 16:12:43 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 471`

	it.gratissesso.net/favicon.ico	18.185.231.124	200 OK	318 B
URL HTTP/2 it.gratissesso.net/favicon.ico IP 18.185.231.124:0 ASN #16509 AMAZON-02 File type MS Windows icon resource - 1 icon, 16x16, 16 colors, 4 bits/pixel\012- data Size 318 B (318 bytes) Hash a976d227e5d1dcf62f5f7e623211dd1b a2a9dc1abdd3d888484678663928cb024c359ee6 66332859bd8e3441a019e073a318b62a47014ba244121301034b510dc7532271 HTTP Headers GET /favicon.ico HTTP/1.1 Host: it.gratissesso.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: U-c3e878e27f52e2a57ace4d9a76fd9acf=unique; U-f9b902fc3289af4dd08de5d1de54f68f=unique; U-6faa8040da20ef399b63a72d0e4ab575=unique; o_6faa8040da20ef399b63a72d0e4ab575=591eed6f-50fe-4cd4-b0a8-38fce751b1b7; advanced-core=tr8amq8t52m6dn7dna6hc0ic13 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Sun, 02 Oct 2022 16:27:37 GMT content-type: image/x-icon content-length: 318 server: nginx/1.20.0 last-modified: Tue, 04 May 2021 06:35:26 GMT etag: "6090eb2e-13e" accept-ranges: bytes X-Firefox-Spdy: h2`

	ocsp.sca1b.amazontrust.com/	18.165.196.143	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 18.165.196.143:0 ASN #0 File type data Size 471 B (471 bytes) Hash 94ca300a5167afa6b88756abdfbccac7 ee7ee8f8b996dd7e1074794a79fcef4b8f62436c 42ef47af657427b7a0bd43b54f06c83d16bbb66bb1304bb2892c62800a06f9e9 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Sun, 02 Oct 2022 16:27:37 GMT Last-Modified: Sun, 02 Oct 2022 16:15:15 GMT Server: ECS (dcb/7F3A) X-Cache: Miss from cloudfront Via: 1.1 1a6cd18714da9809fa8cb07ad66fd4f6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: LHR50-P3 X-Amz-Cf-Id: CUo0fWwtgEKDSmUA72kMeByGJ8bANIqQdl9NIZ7K6dRKRlIaIGyjBA== Age: 742`

	push.services.mozilla.com/	54.148.77.40	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.148.77.40:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: I7HSdMRXQiEeVruYgc6A4A== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: tbM7ZM49lji80h7KNuMSKQmb5y0=`

	cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.3.7/css/bootstrap.min.css	104.17.25.14	200 OK	16 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.3.7/css/bootstrap.min.css IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65371) Size 16 kB (16149 bytes) Hash 875b3995d53e3efea3a5ed7361c379b7 f26a84d323fd0360bb187f14060dd63428001ae6 016fe2dcd08d54bdeacf2ad22011d1be4ff4af36b10d09877493b54bd96924ff HTTP Headers `GET /ajax/libs/twitter-bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 02 Oct 2022 16:27:38 GMT content-type: text/css; charset=utf-8 content-length: 16149 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb04010-1d970" last-modified: Mon, 04 May 2020 16:17:20 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" vary: Accept-Encoding cf-cache-status: HIT age: 3955692 expires: Fri, 22 Sep 2023 16:27:38 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NuuogMvpmC1sKR3aWlsRxnHA02hFDJU50ICOOgsv7vAJexPwfQFGKcOP1u4dDr7BItaduuQA6RE45kEVF2cUmwEfJengRksLGPe9xtRhpHqzqKIQNJF5UFaq%2FGv2BuWRmCi3t3tZ"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 753ece7d3b84fac0-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/mailcheck/1.1.2/mailcheck.min.js	104.17.25.14	200 OK	1.3 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/mailcheck/1.1.2/mailcheck.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type C source, ASCII text, with very long lines (3651), with no line terminators Size 1.3 kB (1324 bytes) Hash dd60b44f31935cfe0652ba035e303282 fb46a23a493112a755c10f8c482c9a497a0d6c92 7d02c16f9944bb128e01cf6e26b8b9f5db21bb0b8a7c29619c5f1fe24a66abc0 HTTP Headers `GET /ajax/libs/mailcheck/1.1.2/mailcheck.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 02 Oct 2022 16:27:38 GMT content-type: application/javascript; charset=utf-8 content-length: 1324 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ed4-e43" last-modified: Mon, 04 May 2020 16:12:04 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" vary: Accept-Encoding cf-cache-status: HIT age: 5606604 expires: Fri, 22 Sep 2023 16:27:38 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tsSJ%2FaBO84kA%2F1W8oSi66hxjB40lVFJUy4toSPWl2s3lsv6P12ClPrMqeSnsZ0iqtceTq4KuEuL8nHKi8LsRgMGnCMAvuPxnKiRkFPiXJpGuuh%2FlSgcGxPpgTtIC979GWHu1Ja2s"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 753ece7d5b9dfac0-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/typeahead.js/0.11.1/typeahead.jquery.js	104.17.25.14	200 OK	10 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/typeahead.js/0.11.1/typeahead.jquery.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (524) Size 10 kB (10218 bytes) Hash ed6b984087e702b64862a2c33597979a b20cdc864f44d68e08b13fd1b5b25960d1731752 867170d9ede7b1b0d700d7f90cccf86a4193ef6fd0cd3483e77d924b033755b1 HTTP Headers `GET /ajax/libs/typeahead.js/0.11.1/typeahead.jquery.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 02 Oct 2022 16:27:38 GMT content-type: application/javascript; charset=utf-8 content-length: 10218 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb04010-f6a0" last-modified: Mon, 04 May 2020 16:17:20 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 1534034 expires: Fri, 22 Sep 2023 16:27:38 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KbaQPzjKLwiL2G%2FiTzZ%2BMVzwwPcVICMW0AdwL3o4hKi3Wd%2BJszO%2BRCMjMaqu1f8oGIBB%2Fd8OSAukfHjX4S6q2TymYbfja%2FqJCf2IMbvfkmEUnciEyAEaAYxvs4bp93sQiHwu8BU6"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 753ece7d6ba1fac0-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 83f9407574c75ca600c57af0637cb200 4ebabbc1900b8f575e90186e2024e48097b0c8d2 1e166ac737e5c3c015e0dc0c68115ebc5eeb53958682a9b77928ddb647137ac1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 02 Oct 2022 16:27:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	keycdn.datingcdn.com/img/landing/114/bg.jpg	82.102.27.18	200 OK	158 kB
URL HTTP/2 keycdn.datingcdn.com/img/landing/114/bg.jpg IP 82.102.27.18:0 ASN #9009 M247 Ltd File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=21, height=1130, bps=0, PhotometricIntepretation=RGB, description=Beautiful sexy brunette girl posing topless outdoors, manufacturer=NIKON CORPORATION, model=NIKON D700, orientation=upper-left, width=1699], baseline, precision 8, 1200x798, components 3\012- data Size 158 kB (158524 bytes) Hash c2b952e58eb759e69a756536edbd2301 1217b9cc5b74d33af84ba14a969034487431b29e 80f316e54b0a300cb064a8504b537bd811fff1d9b40411519de3f90d4dbe56ed HTTP Headers `GET /img/landing/114/bg.jpg HTTP/1.1 Host: keycdn.datingcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://keycdn.datingcdn.com/css/landing/255.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: keycdn-engine date: Sun, 02 Oct 2022 16:27:38 GMT content-type: image/jpeg content-length: 158524 last-modified: Wed, 18 Nov 2020 10:11:47 GMT etag: "5fb4f363-26b3c" expires: Sun, 09 Oct 2022 16:27:38 GMT cache-control: max-age=604800 link: <https://eu.datingcdn.com/img/landing/114/bg.jpg>; rel="canonical" x-cache: HIT x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	snapdate.no/img/landing/114/man.gif	185.68.182.235	200 OK	191 kB
URL HTTP/2 snapdate.no/img/landing/114/man.gif IP 185.68.182.235:0 ASN #205644 Switch Datacenters Amsterdam 4 B.V. File type GIF image data, version 89a, 250 x 250\012- data Size 191 kB (190719 bytes) Hash 519be404be90e259a9af7fa55bb37ad5 61d1d1ca99b8261b932ba287bfae70de8828f4d8 878cf28a587268831f225371cc58e3a0656fd82500ae49c0269784f8b4fb0d93 HTTP Headers GET /img/landing/114/man.gif HTTP/1.1 Host: snapdate.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 Cookie: _ga_XCD7WMS7ML=GS1.1.1654519192.1.0.1654519198.0; _ga=GA1.2.1357965362.1654519193; datingcookie-eu-snapdate-no=96861709f79ef617df40098a9eaf920310f7bd6f%2BsblEO5g9fcHaAAugzSPdruC3WblLkXDzZCusRAJw Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 02 Oct 2022 16:27:38 GMT content-type: image/gif content-length: 190719 last-modified: Wed, 18 Nov 2020 10:11:47 GMT etag: "5fb4f363-2e8ff" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash a2d3925dad8ae1248c7b5d96220bd00a 8b6326da45860d5f480504e23864de0c28523b61 421d30a538dc347afc7fc8eee0fa6502aa65d789eb2353eb9c9f8bd0c5f3b3d5 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 02 Oct 2022 16:27:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	securecd-smrtnd.com/smartlink/?a=142254&sm=15594&co=189779&mt=13&s1=1439&s2=86aee11966001fab414025cd2f8e2c34	34.254.216.42	302 Found	31 kB
URL HTTP/2 securecd-smrtnd.com/smartlink/?a=142254&sm=15594&co=189779&mt=13&s1=1439&s2=86aee11966001fab414025cd2f8e2c34 IP 34.254.216.42:0 ASN #16509 AMAZON-02 File type data Size 31 kB (30676 bytes) Hash 9b01fcea4a0295d227e7b9907588aa12 fe91ee75aee649942c6466acca61be071eccc1ca ec7fc74183f72cbed23b472b9170264391f75dc8f2b2fe6c00a875e616faef16 HTTP Headers `GET /smartlink/?a=142254&sm=15594&co=189779&mt=13&s1=1439&s2=86aee11966001fab414025cd2f8e2c34 HTTP/1.1 Host: securecd-smrtnd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site` HTTP/2 302 Found date: Sun, 02 Oct 2022 16:27:38 GMT content-type: text/html;charset=ISO-8859-1 location: https://snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 server: nginx set-cookie: sm_click_freq_v2_1_001=1HbV63HcXV/HrMT+SNyPPBE17JhaMtcJ6aEOye2sGfucoCnesRpuiNags04M/ocY; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/; Secure; SameSite=None gdm_visit_freq_v2_1_001=1HbV63HcXV/HrMT+SNyPPBE17JhaMtcJ6aEOye2sGfucoCnesRpuiNags04M/ocY; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/; Secure; SameSite=None v_seg_freq_v2_1_001=t3kkzNmi6pkqTtfGV/6jJCoaA9mRFJkX4CVVCp8Gs8M=; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/; Secure; SameSite=None gdm_click_adv_freq_v1_1_001=nhfULA8/KbtAK41pWezXraZAyXlo2ha9FrwgFtoWCTdx5Trg/pE3+HQOJCE3+Sn1; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/ gdm_uid_v2_1_001=0Zk6bD0HIdi1eWiVQp49IfBtjPIda1ORMZZOHsTbDFcMka9qn2KIATsKvnhGTfcL; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/; Secure; SameSite=None sm_click_freq_v1_1_001=1HbV63HcXV/HrMT+SNyPPBE17JhaMtcJ6aEOye2sGfucoCnesRpuiNags04M/ocY; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/ gdm_suid_v1_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/ gdm_visit_freq_v1_1_001=1HbV63HcXV/HrMT+SNyPPBE17JhaMtcJ6aEOye2sGfucoCnesRpuiNags04M/ocY; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/ gdm_click_adv_freq_v2_1_001=nhfULA8/KbtAK41pWezXraZAyXlo2ha9FrwgFtoWCTdx5Trg/pE3+HQOJCE3+Sn1; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/; Secure; SameSite=None gdm_sid_v1_3_001=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; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/ gdm_uid_v1_1_001=0Zk6bD0HIdi1eWiVQp49IfBtjPIda1ORMZZOHsTbDFcMka9qn2KIATsKvnhGTfcL; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/ v_seg_freq_v1_1_001=t3kkzNmi6pkqTtfGV/6jJCoaA9mRFJkX4CVVCp8Gs8M=; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/ gdm_sid_v2_3_001=glTadrsvOvjsLYyFb5N/yd6Vrlek7K4Ozh7A8dMcjC5UB03B+3AWTu3Jn3SKrGrdPwESdWHAdOYoeL04/mQ5UH9/t/ukl3evkXlDyqOmpCfVNN324AFUSB9Mw71n/5+Jq2YfHYdQjRaVJJFqWwFiFi2wQ83FeTVEaDsTooG+rZDeDjobmR+KChscmSjNa2/ql2C1QTWTec/lCabqOuNItxk82V4/NwPFsKzjcrz9haJsVqiMvOGjoCVz+mUMAycTzfzr6Za0mYt7GFPcqQ07orjHhzs1mF6odNbgIrwEyvUkMNNi2oTJlW6rtQZSH3x1NQsup7Da0DJURIUsDMyiwgEjujjVOyM+x5suU8LQwnxjfwo7ceKXSOZ4+6420XcLYY9P283YaCtV1zb6TsWAF8C4R0MSFunO1PS6mcLdMt6Wpn4C4TeReVtJbq1AgEo5vux6qbz03Dfahkk8Tr+g6ynBl0kfcrkaj+bljzz488jko3p71GNncfdCI3teBQdCaU5pRZA3PeI2XEXjVRLnMDhcETNvq5kchqXM6lYx1JVc9AWpkgExh0YYDV8Z1bvCvJI3aChEqCvzgbcfZ/Ab8kG9hdReM84xeyayl5HWnpnYghePQMdiIPR4kU0RVYHNMNuhiT349//57Aw6WjbFV1VSx1P/zG3n9VPyIb8GGLosAUXocNOy+Qm5Y+Vry7UptxqDeLsxY6kk64mplJ8OUyBMNlX/Gu+65Q7yGMAahKDxpUM2i94tVlkFwfAb0Xdz+ZYVHXTYlJ6P4DsQS8GX5wMDvZnqHQnIMjGLv6S1+wkspKV+RJoSo/e0Wg/Bh1Y0aVSrhpykCkGJOtEXv926FlAWsnY6z51tx8/ucoQPkfqwthXfH1BHvwlhyqMtW47w3/IgSxYf4rtPH3mXAQbWzaUkPKCgvhtFcU1Q4yNp4vCs1ZV1Bk1xagFAmtapt/9Gqo2K0ySaBXl1KTV9RyLf1/DSBqLlrH2SKneCDsgX0Iq1MiyRdtafjgAEpyd/gZtSmN1Arq4GbMg9U8stNLWXokrLdKrpMombORwru+Yoa9z9hzR0q/jU6dyhxSNnVli2; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/; Secure; SameSite=None gdm_suid_v2_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.securecd-smrtnd.com; Expires=Sat, 31-Dec-2022 16:27:38 GMT; Path=/; Secure; SameSite=None content-language: en-US access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,X-Auth,Pasha-Jlob X-Firefox-Spdy: h2

	snapdate.no/img/landing/114/oral_yes.gif	185.68.182.235	200 OK	198 kB
URL HTTP/2 snapdate.no/img/landing/114/oral_yes.gif IP 185.68.182.235:0 ASN #205644 Switch Datacenters Amsterdam 4 B.V. File type GIF image data, version 89a, 250 x 250\012- data Size 198 kB (198360 bytes) Hash 8749f354acfceb4f6ba0fdce6b55a524 fef78988ba9ec3b94338234154517c0288e91f55 de011426080cec6d5f89d31cee922fa70de01843af93c8fb8dc7a4b52dc1d88b HTTP Headers GET /img/landing/114/oral_yes.gif HTTP/1.1 Host: snapdate.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 Cookie: _ga_XCD7WMS7ML=GS1.1.1654519192.1.0.1654519198.0; _ga=GA1.2.1357965362.1654519193; datingcookie-eu-snapdate-no=96861709f79ef617df40098a9eaf920310f7bd6f%2BsblEO5g9fcHaAAugzSPdruC3WblLkXDzZCusRAJw Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 02 Oct 2022 16:27:38 GMT content-type: image/gif content-length: 198360 last-modified: Wed, 18 Nov 2020 10:11:47 GMT etag: "5fb4f363-306d8" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	snapdate.no/img/landing/114/oral_no.gif	185.68.182.235	200 OK	156 kB
URL HTTP/2 snapdate.no/img/landing/114/oral_no.gif IP 185.68.182.235:0 ASN #205644 Switch Datacenters Amsterdam 4 B.V. File type GIF image data, version 89a, 250 x 250\012- data Size 156 kB (156008 bytes) Hash b6dde70d7b43a4f66e56a78a02143645 a150b88c55d952c82951bbdcb6441c67c1aa3200 599bf6dda38b76b840afdf34e2e433e31826db576082234ae538c32b149182a9 HTTP Headers GET /img/landing/114/oral_no.gif HTTP/1.1 Host: snapdate.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 Cookie: _ga_XCD7WMS7ML=GS1.1.1654519192.1.0.1654519198.0; _ga=GA1.2.1357965362.1654519193; datingcookie-eu-snapdate-no=96861709f79ef617df40098a9eaf920310f7bd6f%2BsblEO5g9fcHaAAugzSPdruC3WblLkXDzZCusRAJw Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 02 Oct 2022 16:27:38 GMT content-type: image/gif content-length: 156008 last-modified: Wed, 18 Nov 2020 10:11:47 GMT etag: "5fb4f363-26168" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	snapdate.no/img/landing/114/vrouw.gif	185.68.182.235	200 OK	237 kB
URL HTTP/2 snapdate.no/img/landing/114/vrouw.gif IP 185.68.182.235:0 ASN #205644 Switch Datacenters Amsterdam 4 B.V. File type GIF image data, version 89a, 250 x 250\012- data Size 237 kB (236877 bytes) Hash 5084b593f2658001339feb225ea1095f 33e5b70c11dcd1af9fef946e9e64536876222a9c 32cd01667c071094cf9a574fcf50284fa47dccde01f4211140218c4fa65bc823 HTTP Headers GET /img/landing/114/vrouw.gif HTTP/1.1 Host: snapdate.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 Cookie: _ga_XCD7WMS7ML=GS1.1.1654519192.1.0.1654519198.0; _ga=GA1.2.1357965362.1654519193; datingcookie-eu-snapdate-no=96861709f79ef617df40098a9eaf920310f7bd6f%2BsblEO5g9fcHaAAugzSPdruC3WblLkXDzZCusRAJw Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 02 Oct 2022 16:27:38 GMT content-type: image/gif content-length: 236877 last-modified: Wed, 18 Nov 2020 10:11:47 GMT etag: "5fb4f363-39d4d" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	www.googletagmanager.com/gtag/js?id=G-XCD7WMS7ML	142.250.74.168	200 OK	72 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-XCD7WMS7ML IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (3066) Size 72 kB (71491 bytes) Hash 340f94c293a4013f0c708131db10e3e8 617e1a5c8a477bdad37396bd2057cebcc680b978 06df7ba30ffeb1c526107997b7a6eaee91fb26dd3c4ff93b429a7684c99c63eb HTTP Headers `GET /gtag/js?id=G-XCD7WMS7ML HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sun, 02 Oct 2022 16:27:38 GMT expires: Sun, 02 Oct 2022 16:27:38 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 71491 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 83f9407574c75ca600c57af0637cb200 4ebabbc1900b8f575e90186e2024e48097b0c8d2 1e166ac737e5c3c015e0dc0c68115ebc5eeb53958682a9b77928ddb647137ac1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 02 Oct 2022 16:27:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash a2d3925dad8ae1248c7b5d96220bd00a 8b6326da45860d5f480504e23864de0c28523b61 421d30a538dc347afc7fc8eee0fa6502aa65d789eb2353eb9c9f8bd0c5f3b3d5 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 02 Oct 2022 16:27:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	keycdn.datingcdn.com/img/site_specific/pwa_icons/snapdate.no.180x180.png	82.102.27.18	200 OK	16 kB
URL HTTP/2 keycdn.datingcdn.com/img/site_specific/pwa_icons/snapdate.no.180x180.png IP 82.102.27.18:0 ASN #9009 M247 Ltd File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size 16 kB (15530 bytes) Hash c5191968bc14f9833808edf33c11a417 2d7bc6ec08046a44228434894ce4865f6a5506a3 d2c2205f49896f7fdef888924ad9430c3cf27d6141246a033f7cbfe62bf15004 HTTP Headers `GET /img/site_specific/pwa_icons/snapdate.no.180x180.png HTTP/1.1 Host: keycdn.datingcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: keycdn-engine date: Sun, 02 Oct 2022 16:27:38 GMT content-type: image/png content-length: 15530 last-modified: Tue, 07 Jan 2020 15:57:10 GMT etag: "5e14aa56-3caa" expires: Sun, 09 Oct 2022 16:27:38 GMT cache-control: max-age=604800 link: <https://eu.datingcdn.com/img/site_specific/pwa_icons/snapdate.no.180x180.png>; rel="canonical" x-cache: HIT x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	keycdn.datingcdn.com/img/site_specific/favicons/snapdate.no.16x16.png	82.102.27.18	200 OK	405 B
URL HTTP/2 keycdn.datingcdn.com/img/site_specific/favicons/snapdate.no.16x16.png IP 82.102.27.18:0 ASN #9009 M247 Ltd File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Size 405 B (405 bytes) Hash e7f7c540230af080d8a1bf79b9c6a8d8 63955aec0c9bb673948d5acbb63bea62c41723da de9f6375abaeaefa0a6447e92814f1942973eb6af1aa3661ba08edc0716abf60 HTTP Headers `GET /img/site_specific/favicons/snapdate.no.16x16.png HTTP/1.1 Host: keycdn.datingcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: keycdn-engine date: Sun, 02 Oct 2022 16:27:38 GMT content-type: image/png content-length: 405 last-modified: Tue, 26 May 2020 14:30:16 GMT etag: "5ecd27f8-195" expires: Sun, 09 Oct 2022 16:27:38 GMT cache-control: max-age=604800 link: <https://eu.datingcdn.com/img/site_specific/favicons/snapdate.no.16x16.png>; rel="canonical" x-cache: HIT x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	www.google-analytics.com/analytics.js	142.250.74.174	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.174:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1325) Size 20 kB (19826 bytes) Hash cae538dcce82598fbe43c0bf443e62dd cc68ac6be9c5e0087a0000e5735b83270ace30f5 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 19826 date: Sun, 02 Oct 2022 14:41:09 GMT expires: Sun, 02 Oct 2022 16:41:09 GMT cache-control: public, max-age=7200 age: 6389 last-modified: Sun, 11 Sep 2022 13:50:09 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	snapdate.no/service-worker.js?v=3	185.68.182.235	200 OK	1.7 kB
URL HTTP/2 snapdate.no/service-worker.js?v=3 IP 185.68.182.235:0 ASN #205644 Switch Datacenters Amsterdam 4 B.V. File type ASCII text Size 1.7 kB (1659 bytes) Hash 23d1eafbaee63348601e172ae2fb2488 4eff804e410f706ddcf0c9444ce577df05770e82 0e82f49d77e005909c6d5e75f0d6c39f4b5f6cfc16b2db970508775bd245da37 HTTP Headers GET /service-worker.js?v=3 HTTP/1.1 Host: snapdate.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Service-Worker: script Connection: keep-alive Cookie: _ga_XCD7WMS7ML=GS1.1.1664728058.2.0.1664728058.0.0.0; _ga=GA1.2.1357965362.1654519193; datingcookie-eu-snapdate-no=96861709f79ef617df40098a9eaf920310f7bd6f%2BsblEO5g9fcHaAAugzSPdruC3WblLkXDzZCusRAJw; _gid=GA1.2.1911949782.1664728059; _gat_gtag_UA_144996233_12=1 Sec-Fetch-Dest: serviceworker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 02 Oct 2022 16:27:39 GMT content-type: application/javascript content-length: 1659 last-modified: Mon, 13 Dec 2021 10:28:12 GMT etag: "61b7203c-67b" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f5e503471cc78b95c0a3e75785615e5f 145b1e4d850c145a78577b5d7d4fadae9658d7a4 61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4" Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5106 Expires: Sun, 02 Oct 2022 17:52:45 GMT Date: Sun, 02 Oct 2022 16:27:39 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f5e503471cc78b95c0a3e75785615e5f 145b1e4d850c145a78577b5d7d4fadae9658d7a4 61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4" Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5106 Expires: Sun, 02 Oct 2022 17:52:45 GMT Date: Sun, 02 Oct 2022 16:27:39 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f5e503471cc78b95c0a3e75785615e5f 145b1e4d850c145a78577b5d7d4fadae9658d7a4 61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4" Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5106 Expires: Sun, 02 Oct 2022 17:52:45 GMT Date: Sun, 02 Oct 2022 16:27:39 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f5e503471cc78b95c0a3e75785615e5f 145b1e4d850c145a78577b5d7d4fadae9658d7a4 61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4" Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5106 Expires: Sun, 02 Oct 2022 17:52:45 GMT Date: Sun, 02 Oct 2022 16:27:39 GMT Connection: keep-alive`

	region1.google-analytics.com/g/collect?v=2&tid=G-XCD7WMS7ML&gtm=2oe9s0&_p=1230579250&cid=1357965362.1654519193&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664728058&sct=2&seg=0&dl=https%3A%2F%2Fsnapdate.no%2Frefcd%2F58%2F255%3Fpublisher_id%3Drot_142254%26request_id%3D71e93529551a472e96d86f2cad0150e7187ff%26sub_id_2%3D1439&dt=snapdate.no%20%7C%20Fl%C3%B8rt%20med%20deilige%20damer&en=scroll&_ss=1&epn.percent_scrolled=90	216.239.32.36	204 No Content	0 B
URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-XCD7WMS7ML&gtm=2oe9s0&_p=1230579250&cid=1357965362.1654519193&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664728058&sct=2&seg=0&dl=https%3A%2F%2Fsnapdate.no%2Frefcd%2F58%2F255%3Fpublisher_id%3Drot_142254%26request_id%3D71e93529551a472e96d86f2cad0150e7187ff%26sub_id_2%3D1439&dt=snapdate.no%20%7C%20Fl%C3%B8rt%20med%20deilige%20damer&en=scroll&_ss=1&epn.percent_scrolled=90 IP 216.239.32.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-XCD7WMS7ML&gtm=2oe9s0&_p=1230579250&cid=1357965362.1654519193&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664728058&sct=2&seg=0&dl=https%3A%2F%2Fsnapdate.no%2Frefcd%2F58%2F255%3Fpublisher_id%3Drot_142254%26request_id%3D71e93529551a472e96d86f2cad0150e7187ff%26sub_id_2%3D1439&dt=snapdate.no%20%7C%20Fl%C3%B8rt%20med%20deilige%20damer&en=scroll&_ss=1&epn.percent_scrolled=90 HTTP/1.1 Host: region1.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://snapdate.no Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 HTTP/2 204 No Content access-control-allow-origin: https://snapdate.no date: Sun, 02 Oct 2022 16:27:39 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fcf832b-84d6-4938-a540-280bf3205df1.jpeg	34.120.237.76	200 OK	9.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fcf832b-84d6-4938-a540-280bf3205df1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.0 kB (9012 bytes) Hash b11c8ecfed53e302ab48fa5f757513a4 b3cb36455b3cb0a160c705958add6c422a0a48a2 fb66239038dddd134d3c5c7a656c91c57737bc784fabefe15a5ef2981e68e2b0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fcf832b-84d6-4938-a540-280bf3205df1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9012 x-amzn-requestid: 4ea2bfb1-fc99-4777-aa98-0605d4a704ee x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZWDpmEBlIAMFj2Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6338b30a-039358f5691f895941f485fd;Sampled=0 x-amzn-remapped-date: Sat, 01 Oct 2022 21:37:14 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: l0e62S36B9SFUKCi0WA22gXNhfdCLjqD7c3cg_I_Y8-OVKkfwiJFgQ== via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google date: Sat, 01 Oct 2022 22:25:06 GMT etag: "b3cb36455b3cb0a160c705958add6c422a0a48a2" content-type: image/jpeg age: 64953 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91d14136-4e81-4e18-80ca-f688f18110b7.png	34.120.237.76	200 OK	9.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91d14136-4e81-4e18-80ca-f688f18110b7.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.1 kB (9073 bytes) Hash 91c43e8f8caa27091b10fc006c309e96 377251ce16059a304e1ada7e7bdade2eee86bfdb 81d98f635686a13e149a86149db28f794097b35fc0b7af82beb0199edfc82a38 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91d14136-4e81-4e18-80ca-f688f18110b7.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9073 x-amzn-requestid: 6337e85e-904c-4346-b11d-1cf213eba1a8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZWDf8EyIIAMF_Vw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6338b2cc-05c231ba25850508201eda0d;Sampled=0 x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: 2WCasBR9fFvqGZ61uURK1W4vhzCBO81FTvpSCs6eKH8HBClVUFybpQ== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google date: Sat, 01 Oct 2022 21:48:26 GMT etag: "377251ce16059a304e1ada7e7bdade2eee86bfdb" content-type: image/jpeg age: 67153 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg	34.120.237.76	200 OK	5.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.0 kB (4987 bytes) Hash 463bdcfbec5426e18ecef83b1c373b71 2e533332ee5c49143e58dad32ee3717a39179532 2c40befd28781482b9be249a792571612d68d7045324083d2c832fa5ec42f04b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4987 x-amzn-requestid: 763edd04-7f8d-42ae-8864-482be3549958 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZWEHpFs4oAMFbqg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6338b3ca-2f7b67e85aa83b69183e62b5;Sampled=0 x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:26 GMT x-amz-cf-pop: SFO5-P2, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: 2Zoggf30lA-Kvt5QYa-IdhGePHCNiphR7pfFiOaFvL8ZkWZIaiK4pA== via: 1.1 f4367b41311e3e9a490d7461b7b85490.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google date: Sat, 01 Oct 2022 21:48:37 GMT etag: "2e533332ee5c49143e58dad32ee3717a39179532" content-type: image/jpeg age: 67142 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg	34.120.237.76	200 OK	6.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.3 kB (6315 bytes) Hash 206fb65e75dbadf119512f71e0b78402 58ff0bf8ce7528b303d28bab01a80ad721705569 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6315 x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZWSdsHUnIAMFXtw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0 x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ== via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google date: Sun, 02 Oct 2022 04:41:00 GMT age: 42399 etag: "58ff0bf8ce7528b303d28bab01a80ad721705569" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (11083 bytes) Hash edded48f558f739287a040151349ef67 d63b6ba630736d32c364b0e6a369274b2389b7ff 33b4a459df0ba7b36b907ba96d74e08660cc75640c42a5748b97d18ec2e9d533 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11083 x-amzn-requestid: 53e2c961-bcc0-4977-8648-ee3c1aed9cde x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZWEHRFWfIAMFhlA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6338b3c7-070212d7386d5efa1b4aa8d3;Sampled=0 x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:23 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: Z1KmxHJh9QNfg5x0enkqOjbmiqHvg7nlQiMnuDuCRNWQUBFEiKELbw== via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google date: Sat, 01 Oct 2022 21:48:36 GMT etag: "d63b6ba630736d32c364b0e6a369274b2389b7ff" content-type: image/jpeg age: 67143 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg	34.120.237.76	200 OK	6.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.9 kB (6871 bytes) Hash 9dddb9d84a16a3004821d89836b83dc3 087521979efd5936416fd7f030779fa5725f0a8f a6251ac43958031d765b5743d43e14bc04b1e465bed81f757c3609ee6f2bea66 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6871 x-amzn-requestid: e1fdb2ee-c0e7-4a0c-ae26-d968aef00503 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZWEIOGp2IAMFxSQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6338b3ce-24b26a8048ffd84071a2ad57;Sampled=0 x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:30 GMT x-amz-cf-pop: SFO5-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: -svKnYBuiMSdWObzJyNah9TDIi6IuPP6VMzEJWmn0zxoZbFmwpzkJw== via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google date: Sat, 01 Oct 2022 21:48:33 GMT age: 67146 etag: "087521979efd5936416fd7f030779fa5725f0a8f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	snapdate.no/html/offline.html	185.68.182.235	200 OK	0 B
URL HTTP/2 snapdate.no/html/offline.html IP 185.68.182.235:0 ASN #205644 Switch Datacenters Amsterdam 4 B.V. File type Size 0 B (0 bytes) Hash HTTP Headers GET /html/offline.html HTTP/1.1 Host: snapdate.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://snapdate.no/service-worker.js?v=3 Connection: keep-alive Cookie: _ga_XCD7WMS7ML=GS1.1.1664728058.2.0.1664728058.0.0.0; _ga=GA1.2.1357965362.1654519193; datingcookie-eu-snapdate-no=96861709f79ef617df40098a9eaf920310f7bd6f%2BsblEO5g9fcHaAAugzSPdruC3WblLkXDzZCusRAJw; _gid=GA1.2.1911949782.1664728059; _gat_gtag_UA_144996233_12=1 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 02 Oct 2022 16:27:39 GMT content-type: text/html last-modified: Thu, 01 Apr 2021 13:03:12 GMT vary: Accept-Encoding etag: W/"6065c490-11a" strict-transport-security: max-age=31536000; includeSubDomains; x-frame-options: SAMEORIGIN content-encoding: gzip X-Firefox-Spdy: h2`

	snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439	185.68.182.235	200 OK	0 B
URL HTTP/2 snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 IP 185.68.182.235:0 ASN #205644 Switch Datacenters Amsterdam 4 B.V. File type Size 0 B (0 bytes) Hash HTTP Headers GET /refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 HTTP/1.1 Host: snapdate.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Connection: keep-alive Cookie: _ga_XCD7WMS7ML=GS1.1.1654519192.1.0.1654519198.0; _ga=GA1.2.1357965362.1654519193 HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) content-type: text/html; charset=UTF-8 vary: Accept-Encoding cache-control: no-cache date: Sun, 02 Oct 2022 16:27:38 GMT set-cookie: datingcookie-eu-snapdate-no=96861709f79ef617df40098a9eaf920310f7bd6f%2BsblEO5g9fcHaAAugzSPdruC3WblLkXDzZCusRAJw; expires=Mon, 03-Oct-2022 16:27:38 GMT; Max-Age=86400; path=/; domain=snapdate.no; HttpOnly strict-transport-security: max-age=31536000; includeSubDomains; x-frame-options: SAMEORIGIN content-encoding: gzip X-Firefox-Spdy: h2

	keycdn.datingcdn.com/css/landing/cookie-consent.css?v=2	82.102.27.18	200 OK	0 B
URL HTTP/2 keycdn.datingcdn.com/css/landing/cookie-consent.css?v=2 IP 82.102.27.18:0 ASN #9009 M247 Ltd File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css/landing/cookie-consent.css?v=2 HTTP/1.1 Host: keycdn.datingcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: keycdn-engine date: Sun, 02 Oct 2022 16:27:38 GMT content-type: text/css last-modified: Thu, 01 Sep 2022 11:43:03 GMT vary: Accept-Encoding etag: W/"63109ac7-e8d" expires: Sun, 09 Oct 2022 16:27:38 GMT cache-control: max-age=604800 content-encoding: gzip link: <https://eu.datingcdn.com/css/landing/cookie-consent.css?v=2>; rel="canonical" x-cache: HIT x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	keycdn.datingcdn.com/js/landing/255/js.js	82.102.27.18	200 OK	0 B
URL HTTP/2 keycdn.datingcdn.com/js/landing/255/js.js IP 82.102.27.18:0 ASN #9009 M247 Ltd File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/landing/255/js.js HTTP/1.1 Host: keycdn.datingcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: keycdn-engine date: Sun, 02 Oct 2022 16:27:38 GMT content-type: application/javascript last-modified: Fri, 22 Apr 2022 07:07:02 GMT vary: Accept-Encoding etag: W/"62625416-1543" expires: Sun, 09 Oct 2022 16:27:38 GMT cache-control: max-age=604800 content-encoding: gzip link: <https://eu.datingcdn.com/js/landing/255/js.js>; rel="canonical" x-cache: HIT x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	snapdate.no/location/cities/	185.68.182.235	200 OK	0 B
URL HTTP/2 snapdate.no/location/cities/ IP 185.68.182.235:0 ASN #205644 Switch Datacenters Amsterdam 4 B.V. File type Size 0 B (0 bytes) Hash HTTP Headers POST /location/cities/ HTTP/1.1 Host: snapdate.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 16 Origin: https://snapdate.no Connection: keep-alive Referer: https://snapdate.no/refcd/58/255?publisher_id=rot_142254&request_id=71e93529551a472e96d86f2cad0150e7187ff&sub_id_2=1439 Cookie: _ga_XCD7WMS7ML=GS1.1.1654519192.1.0.1654519198.0; _ga=GA1.2.1357965362.1654519193; datingcookie-eu-snapdate-no=96861709f79ef617df40098a9eaf920310f7bd6f%2BsblEO5g9fcHaAAugzSPdruC3WblLkXDzZCusRAJw Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) content-type: application/json; charset=utf-8 vary: Accept-Encoding cache-control: no-cache date: Sun, 02 Oct 2022 16:27:38 GMT set-cookie: datingcookie-eu-snapdate-no=96861709f79ef617df40098a9eaf920310f7bd6f%2BsblEO5g9fcHaAAugzSPdruC3WblLkXDzZCusRAJw; expires=Mon, 03-Oct-2022 16:27:38 GMT; Max-Age=86400; path=/; domain=snapdate.no; HttpOnly strict-transport-security: max-age=31536000; includeSubDomains; x-frame-options: SAMEORIGIN content-encoding: gzip X-Firefox-Spdy: h2

	it.gratissesso.net/click?a=1439&o=362&sub_id2=hot	18.185.231.124	302 Found	0 B
URL HTTP/2 it.gratissesso.net/click?a=1439&o=362&sub_id2=hot IP 18.185.231.124:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /click?a=1439&o=362&sub_id2=hot HTTP/1.1 Host: it.gratissesso.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/2 302 Found date: Sun, 02 Oct 2022 16:27:37 GMT content-type: text/html; charset=UTF-8 location: https://it.gratissesso.net/click?a=1439&o=335&sub_id2=hot server: nginx/1.20.0 x-powered-by: PHP/7.4.21 set-cookie: U-c3e878e27f52e2a57ace4d9a76fd9acf=unique; expires=Tue, 01-Nov-2022 16:27:37 GMT; Max-Age=2592000; path=/; secure; SameSite=None X-Firefox-Spdy: h2`

	it.gratissesso.net/click?a=1439&o=335&sub_id2=hot	18.185.231.124	302 Found	0 B
URL HTTP/2 it.gratissesso.net/click?a=1439&o=335&sub_id2=hot IP 18.185.231.124:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers GET /click?a=1439&o=335&sub_id2=hot HTTP/1.1 Host: it.gratissesso.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: U-c3e878e27f52e2a57ace4d9a76fd9acf=unique Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 TE: trailers `HTTP/2 302 Found date: Sun, 02 Oct 2022 16:27:37 GMT content-type: text/html; charset=UTF-8 location: https://it.gratissesso.net/click?a=1439&o=329&sub_id2=hot server: nginx/1.20.0 x-powered-by: PHP/7.4.21 set-cookie: U-f9b902fc3289af4dd08de5d1de54f68f=unique; expires=Tue, 01-Nov-2022 16:27:37 GMT; Max-Age=2592000; path=/; secure; SameSite=None X-Firefox-Spdy: h2`

	keycdn.datingcdn.com/js/landing/cookie-consent.js?v=2.1	82.102.27.18	200 OK	0 B
URL HTTP/2 keycdn.datingcdn.com/js/landing/cookie-consent.js?v=2.1 IP 82.102.27.18:0 ASN #9009 M247 Ltd File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/landing/cookie-consent.js?v=2.1 HTTP/1.1 Host: keycdn.datingcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: keycdn-engine date: Sun, 02 Oct 2022 16:27:38 GMT content-type: application/javascript last-modified: Thu, 01 Sep 2022 11:43:03 GMT vary: Accept-Encoding etag: W/"63109ac7-f3f" expires: Sun, 09 Oct 2022 16:27:38 GMT cache-control: max-age=604800 content-encoding: gzip link: <https://eu.datingcdn.com/js/landing/cookie-consent.js?v=2.1>; rel="canonical" x-cache: HIT x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	keycdn.datingcdn.com/js/landing/255/register.js	82.102.27.18	200 OK	0 B
URL HTTP/2 keycdn.datingcdn.com/js/landing/255/register.js IP 82.102.27.18:0 ASN #9009 M247 Ltd File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/landing/255/register.js HTTP/1.1 Host: keycdn.datingcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://snapdate.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: keycdn-engine date: Sun, 02 Oct 2022 16:27:38 GMT content-type: application/javascript last-modified: Fri, 22 Apr 2022 07:07:02 GMT vary: Accept-Encoding etag: W/"62625416-aa8" expires: Sun, 09 Oct 2022 16:27:38 GMT cache-control: max-age=604800 content-encoding: gzip link: <https://eu.datingcdn.com/js/landing/255/register.js>; rel="canonical" x-cache: HIT x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations