findukrainiangirl.quest/
162.255.119.54302 Found 140 B IP 162.255.119.54:0
File type HTML document, ASCII text
Hash 92d76bfdfddde598e754600adc582e34
dcb5cc9e4f7278e032b19f98d1119d926a519da1
de9738106d0a2d49588a41d409ce83ed455b1b0be9714359f738e0689604e125
GET / HTTP/1.1
Host: findukrainiangirl.quest
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sun, 22 Jan 2023 11:04:05 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 140
Connection: keep-alive
Location: https://ml-trk.com/aff_c?offer_id=8823&aff_id=37119&url_id=0_15414_15415_15416_15417_15418&aff_sub5=email&source=s002
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 20d267853e48ef7d476459ed67da5d97
06d1bd08efd69c0e93486d3c423fa2640f372d29
24323cd45ca2ed01c63f908233d9b2ad5bb6f63394884c45bf6abb0221d0edd6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24323CD45CA2ED01C63F908233D9B2AD5BB6F63394884C45BF6ABB0221D0EDD6"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20087
Expires: Sun, 22 Jan 2023 16:38:52 GMT
Date: Sun, 22 Jan 2023 11:04:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15496
Expires: Sun, 22 Jan 2023 15:22:21 GMT
Date: Sun, 22 Jan 2023 11:04:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 38c102db4bcfb9c4fb19174986950fd3
51c2cc8a3aca4da5c9ab3438467c29203fc0b0c3
dad6b64bc9f4dd827471ccc2e5273fceee574685376083aaa80f9d2f918037f2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAD6B64BC9F4DD827471CCC2E5273FCEEE574685376083AAA80F9D2F918037F2"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10209
Expires: Sun, 22 Jan 2023 13:54:14 GMT
Date: Sun, 22 Jan 2023 11:04:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 22 Jan 2023 10:34:51 GMT
content-type: application/json
age: 1754
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IP2Ewivvl2mA8gLG3aTVk2Tx9eS9zkKjVdka59fa5MBMsmHxI3HU7GiLYxaNTwwZmdaqkq3SHWQ=
x-amz-request-id: J0STTA2KRM3ZMSQ0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 22 Jan 2023 10:47:15 GMT
age: 1010
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:05 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 622f9e39015154885f8441ecedd3c98b
437448373257ebfe2578611fa8471828211b54bb
de6d581f3b79765ad1012c9557ebab37e4df9d805459cb4324d11041b08fc4e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=128351
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 11:04:05 GMT
Etag: "63cc6a84-118"
Expires: Mon, 23 Jan 2023 22:43:16 GMT
Last-Modified: Sat, 21 Jan 2023 22:43:16 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 622f9e39015154885f8441ecedd3c98b
437448373257ebfe2578611fa8471828211b54bb
de6d581f3b79765ad1012c9557ebab37e4df9d805459cb4324d11041b08fc4e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=128351
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 11:04:05 GMT
Etag: "63cc6a84-118"
Expires: Mon, 23 Jan 2023 22:43:16 GMT
Last-Modified: Sat, 21 Jan 2023 22:43:16 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 22 Jan 2023 10:17:30 GMT
age: 2796
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 580 B IP 93.184.220.29:0
Hash e15de3f37bf8cb4880c64e7076ed89ad
27c546d6e6e3d7429fee93fe351c9bb1abbc42bf
cb8106cb53191882b8f4f4c80900b8f8de44e66b0e2eb75aabb863a410549169
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2960
Cache-Control: max-age=168721
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 11:04:06 GMT
Etag: "63ccfca7-1d7"
Expires: Tue, 24 Jan 2023 09:56:07 GMT
Last-Modified: Sun, 22 Jan 2023 09:06:47 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.83.112.49101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.83.112.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nrT+GVdb9mTBvN+RbRKOyA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3Q+1WYe44x+ro9FINrefaHXWJLM=
www.findukrainiangirl.com/index.php/promote/click?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
54.208.222.244302 Found 20 B URL HTTP/2 www.findukrainiangirl.com/index.php/promote/click?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
IP 54.208.222.244:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /index.php/promote/click?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ml-trk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sun, 22 Jan 2023 11:04:06 GMT
content-type: text/html; charset=UTF-8
content-length: 20
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
p3p: CP=CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR
set-cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; path=/
owner_id=CP231375; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
adv_id=2360; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
adv_type=1; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
subaffid=37119; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
source_id=s002; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
adv_ldp_id=CD3005004; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
qpid_offer_id=FUG_235084TSAEM; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
website_id=207; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
referer=https%3A%2F%2Fml-trk.com%2F; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
adv_click_history_id=677387242; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
location: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
54.208.222.244200 OK 28 kB URL HTTP/2 www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
IP 54.208.222.244:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (22671), with CRLF line terminators
Hash 0a71d92b1a63c9a039a87aa4e68b0e6b
a5240b331119d07c3b2f2e16701ab1b859b44859
cf60c8651ff7b2cd6ba638463b2f90de6da015befc96cf93b5c93ee0f251a823
GET /qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ml-trk.com/
Connection: keep-alive
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:07 GMT
content-type: text/html; charset=UTF-8
content-length: 27852
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash de7a63d2ad6aa24d59f3bc8f1ad1506d
4d482f361dd60cda2c6e98daf09e22f867cc29db
3d4a5f556dfeb8b4279179ff9bbe5d3d2560da10fb0b37b1c0c4c396667ca496
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3D4A5F556DFEB8B4279179FF9BBE5D3D2560DA10FB0B37B1C0C4C396667CA496"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14622
Expires: Sun, 22 Jan 2023 15:07:49 GMT
Date: Sun, 22 Jan 2023 11:04:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10525
Expires: Sun, 22 Jan 2023 13:59:32 GMT
Date: Sun, 22 Jan 2023 11:04:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10525
Expires: Sun, 22 Jan 2023 13:59:32 GMT
Date: Sun, 22 Jan 2023 11:04:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10525
Expires: Sun, 22 Jan 2023 13:59:32 GMT
Date: Sun, 22 Jan 2023 11:04:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3e5cb3e8d03fffcd307c5ebaef08167
1a813821d15afd416b82c3343a7920a0ffc909cb
84a81b6f63faa3f17a20222b8fa389761a0fb0512a1549b4848849c0425539c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7656
x-amzn-requestid: 6e1ebd9d-6ef0-48d0-a891-51bbf914ed42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNlYHaUoAMFr-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c88-479e8fb72b0b248d020d9e77;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DaWs0RT0IupgLoLeQZYbdYdvYFd02bXrdQBFYpqLxwmKf1bKhh_wgQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:06 GMT
etag: "1a813821d15afd416b82c3343a7920a0ffc909cb"
content-type: image/jpeg
age: 47761
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4936bb42-8976-4efc-8b26-9a2f517edf25.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4936bb42-8976-4efc-8b26-9a2f517edf25.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6a1b3929a583677ce66741ead75e9e65
84ed47576e82c02590bc86f3e6eef9167b65f12c
625f164a7fcb02056fae9afab968c313f6c53f460a0e7b2229966b52049a3d7a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4936bb42-8976-4efc-8b26-9a2f517edf25.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8534
x-amzn-requestid: c3a41a38-9910-4907-b82f-0d56efef6f6b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fDzbLGI2IAMFXQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63caff7a-2e1152ba048d504246f4b2f5;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 20:54:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EFM-Qc7doROkqk2x8aNEIkmsnmBlsLl3ParlGoWIKRJUumIQBv9hpw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 02:02:52 GMT
age: 32475
etag: "84ed47576e82c02590bc86f3e6eef9167b65f12c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RlbJymJhU6Ti5RZCSIvPzloackAiBEBGapKI440u4ZIfB5FYBNugLw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 03:24:49 GMT
age: 27558
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78e98c30-5996-4c9f-8207-16807fdf9242.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78e98c30-5996-4c9f-8207-16807fdf9242.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 278120411564827c9e80134f4f0e2291
bf87f6e184830ee496e8d1aa5ccd9f2b273e7a64
51de0be8e47289d12f8a7fe670afcffe36597846dd3674f87e465d9489c984ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78e98c30-5996-4c9f-8207-16807fdf9242.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5822
x-amzn-requestid: 71e2ad62-a46a-46a7-b00d-d9b67c891b71
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHN6fGg3oAMFQSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5d0f-2b990007732b97603562fcfe;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:45:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v4OpB32at9tB1ICHeHQ4MjkubhGY4ZTZpwCEH2wQ1IgUqlFpQXvjlg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 22:48:17 GMT
age: 44150
etag: "bf87f6e184830ee496e8d1aa5ccd9f2b273e7a64"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdc45398-1d4d-45ac-94a6-2cc6d910d8b8.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdc45398-1d4d-45ac-94a6-2cc6d910d8b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 375f2cf298e45122ca727fb63f0e5ea7
eb746e6842127741552c7dcc48e8a92193ca3075
8b5e5432f69dad1428c3a735f7a0d07823658e03befc7b6e15f6f5c3306fbaa8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdc45398-1d4d-45ac-94a6-2cc6d910d8b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5196
x-amzn-requestid: 24221211-6673-4d7b-88de-2ef8c9a62f1b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNWRFPUIAMFf-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c27-286d3bb84ad3362d615479ed;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uSVzx-rzZIDLp55bKb-12pKjPUzRGih9sIupyPYRuDQasYa7JRnWoA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:52:07 GMT
etag: "eb746e6842127741552c7dcc48e8a92193ca3075"
content-type: image/jpeg
age: 47520
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c0f67edfa92ff11474d17ad3160ed43e
a43cc627d3c9258bdbe14ff3ceeed1c98496ff50
309dea4b94ceda4ec43c2f944cdfad61434c96eaafd172bc55c39545f3bf5a1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 11:04:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd68d33e7-2d1d-4f9d-9544-28746d9156e6.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd68d33e7-2d1d-4f9d-9544-28746d9156e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e71636bb9a13ad7d52d253e16cd6a3f
401dd58e34982d3434739b9a2f7182487ea1cac5
1ac336df72b6eb569983e197f094378a26a175113249bedca0610cabd57e2e54
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd68d33e7-2d1d-4f9d-9544-28746d9156e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8057
x-amzn-requestid: 5469b005-6740-4f3d-80ca-a45fd39cae68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNkCFiZoAMF8oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c80-210da08f113a3273257b7d61;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: j3SoP46ER0JjOaLh363bQ9QW4ZIW19_rbgeQ7Ey8W-zgyGMMLSLccA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:17 GMT
etag: "401dd58e34982d3434739b9a2f7182487ea1cac5"
content-type: image/jpeg
age: 47750
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fqtag.com/js/implement-r.js?org=B30kwnm0BOePk19pEhOI&s=936e527f4ee104fbcfc5c47eef47e162&rt=click&p=CP231375&a=37119&cmp=FUG_235084TSAEM&rf=https%3A%2F%2Fml-trk.com%2F
35.190.72.161200 OK 2.7 kB URL HTTP/2 fqtag.com/js/implement-r.js?org=B30kwnm0BOePk19pEhOI&s=936e527f4ee104fbcfc5c47eef47e162&rt=click&p=CP231375&a=37119&cmp=FUG_235084TSAEM&rf=https%3A%2F%2Fml-trk.com%2F
IP 35.190.72.161:0
File type ASCII text, with very long lines (2713), with no line terminators
Hash 254b51574d20b50599f5dfab5bdf333a
e70a84603f114c094b245737ad0a3134ebd21517
82219331215c44a8eb882082a22cebf4d24c2a0a862b57e950a7c0991b94514e
GET /js/implement-r.js?org=B30kwnm0BOePk19pEhOI&s=936e527f4ee104fbcfc5c47eef47e162&rt=click&p=CP231375&a=37119&cmp=FUG_235084TSAEM&rf=https%3A%2F%2Fml-trk.com%2F HTTP/1.1
Host: fqtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: 0
cache-control: no-cache, no-store, must-revalidate
x-xss-protection: 0
pragma: no-cache
date: Sun, 22 Jan 2023 11:04:07 GMT
access-control-allow-origin: *
content-type: application/javascript
content-length: 2713
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash de7a63d2ad6aa24d59f3bc8f1ad1506d
4d482f361dd60cda2c6e98daf09e22f867cc29db
3d4a5f556dfeb8b4279179ff9bbe5d3d2560da10fb0b37b1c0c4c396667ca496
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3D4A5F556DFEB8B4279179FF9BBE5D3D2560DA10FB0B37B1C0C4C396667CA496"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14622
Expires: Sun, 22 Jan 2023 15:07:49 GMT
Date: Sun, 22 Jan 2023 11:04:07 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=UA-133277878-94
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-133277878-94
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash cfa371fafe834b4aced967e3227bca97
2b7500cac91d916174f322e898fd5127602e927b
568ebca373edc1d62574f1777b8a25d51222b7a370b235fe7a7b304c9ccb4b6d
GET /gtag/js?id=UA-133277878-94 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 22 Jan 2023 11:04:07 GMT
expires: Sun, 22 Jan 2023 11:04:07 GMT
cache-control: private, max-age=900
last-modified: Sun, 22 Jan 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43993
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c0f67edfa92ff11474d17ad3160ed43e
a43cc627d3c9258bdbe14ff3ceeed1c98496ff50
309dea4b94ceda4ec43c2f944cdfad61434c96eaafd172bc55c39545f3bf5a1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 11:04:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.findukrainiangirl.com/qa/register04/images/logo.png
54.208.222.244200 OK 10 kB URL HTTP/2 www.findukrainiangirl.com/qa/register04/images/logo.png
IP 54.208.222.244:0
File type PNG image data, 709 x 94, 8-bit/color RGBA, non-interlaced\012- data
Hash 7c735a804c4074c7fe9cf08bf21d355d
85e5e1399fbe02c5bd6bd5a09c75a545a96f0e54
e9800397c43b32d23e06fff09830bc189147d301ff32669310ae58b74bcfa355
GET /qa/register04/images/logo.png HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:07 GMT
content-type: image/png
content-length: 10344
last-modified: Tue, 13 Dec 2022 08:07:10 GMT
etag: "2868-5efb11b5896b9"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
www.findukrainiangirl.com/qa/register04/images/girl.gif
54.208.222.244200 OK 747 kB URL HTTP/2 www.findukrainiangirl.com/qa/register04/images/girl.gif
IP 54.208.222.244:0
File type GIF image data, version 89a, 353 x 268\012- data
Size 747 kB (747407 bytes)
Hash dad89eddd27385a34ec6f3b1323affd8
64518a2f795747a3a3d2253dea5e3120e2250b41
c6f8e67de576d5ffd5a62607143736c08e64899c9cc76c0e2253e3a1d8a3b0aa
GET /qa/register04/images/girl.gif HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:07 GMT
content-type: image/gif
content-length: 747407
last-modified: Tue, 13 Dec 2022 08:07:10 GMT
etag: "b678f-5efb11b53dbc9"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
www.findukrainiangirl.com/common/js/auto_email/jquery.autoComplete.js
54.208.222.244200 OK 1.0 kB URL HTTP/2 www.findukrainiangirl.com/common/js/auto_email/jquery.autoComplete.js
IP 54.208.222.244:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash d4b600f68461a491b71e88dc6f0173e1
7e20eb3d42dfec881deb87d3c2d6aad1c40aca0f
c5dc9fb6467bc20ff42141ea247397131baf1e1d6240d0dd66eb62f2cf87c74a
GET /common/js/auto_email/jquery.autoComplete.js HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 1046
last-modified: Fri, 09 Oct 2020 08:24:18 GMT
etag: "c56-5b138acbfdc33"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.findukrainiangirl.com/qa/register04/css/layout.css?02
54.208.222.244200 OK 4.0 kB URL HTTP/2 www.findukrainiangirl.com/qa/register04/css/layout.css?02
IP 54.208.222.244:0
File type Unicode text, UTF-8 text, with very long lines (371), with CRLF line terminators
Hash 4352afc792cadaa450f099655a61d868
a12396b4737839bdea73c66cd59209a80126dd5d
64c56e163ca1e172cdf801cfedcbdb1c6dd0ce9c91c1b51c68c13c1cfc603778
GET /qa/register04/css/layout.css?02 HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: text/css
content-length: 3989
last-modified: Tue, 13 Dec 2022 08:07:07 GMT
etag: "3cc5-5efb11b285ef9"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.findukrainiangirl.com/common/js/jquery.cookie.js
54.208.222.244200 OK 1.4 kB URL HTTP/2 www.findukrainiangirl.com/common/js/jquery.cookie.js
IP 54.208.222.244:0
Hash 00cfb5c8c7ec0b51b1dfb190279d570f
468f6fe01079afbcf53594f1065847f04165e249
0585e143aba785df6fb525229dd5e3466227cecc87e913459f0444e732fbf15c
GET /common/js/jquery.cookie.js HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 1378
last-modified: Fri, 09 Oct 2020 08:24:18 GMT
etag: "c31-5b138acc863cb"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.findukrainiangirl.com/common/js/my_validate_index2.js
54.208.222.244200 OK 2.9 kB URL HTTP/2 www.findukrainiangirl.com/common/js/my_validate_index2.js
IP 54.208.222.244:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash f1e757f7e2374c7b7162906a20688af2
ca928406b98b3611e9f23ac3157c8a116eb332a6
4cc7f63506663396d396c9e81fdda9310abfe101cfa63e57411b1263c0d1f803
GET /common/js/my_validate_index2.js HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 2851
last-modified: Fri, 09 Oct 2020 08:24:18 GMT
etag: "2560-5b138acc60a3b"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.findukrainiangirl.com/common/js/auto_email/autoComplete.css
54.208.222.244200 OK 376 B URL HTTP/2 www.findukrainiangirl.com/common/js/auto_email/autoComplete.css
IP 54.208.222.244:0
File type ASCII text, with CRLF line terminators
Hash fa161ac586a052c4476ed190ac1571e0
95bf7bc6541743739aa6d9f185d398e36dc9ce6c
f514e2d195768146c7b6453b788d6fdeb1df19ee6e5b017e0e9a1003a8e5c662
GET /common/js/auto_email/autoComplete.css HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: text/css
content-length: 376
last-modified: Fri, 09 Oct 2020 08:24:17 GMT
etag: "27d-5b138acba794b"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.findukrainiangirl.com/common/js/jquery.min.js
54.208.222.244200 OK 35 kB URL HTTP/2 www.findukrainiangirl.com/common/js/jquery.min.js
IP 54.208.222.244:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash 28ca33b476a0e86fa59725bdb38c7f2f
120531fc57923e78104a0aacee05c53cecbfd61f
ffbc181a3d82af401ee3645d08b10d739c12222da179cd5ec2dc67016d7c93a3
GET /common/js/jquery.min.js HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 34763
last-modified: Fri, 09 Oct 2020 08:24:18 GMT
etag: "17278-5b138accbfdab"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.findukrainiangirl.com/qa/register04/images/bbg.jpg
54.208.222.244200 OK 296 kB URL HTTP/2 www.findukrainiangirl.com/qa/register04/images/bbg.jpg
IP 54.208.222.244:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1680x799, components 3\012- data
Size 296 kB (296354 bytes)
Hash cb877395ddc4391097b45b492b713531
38af363e1daf3ff6b04c81e28a8e1cdd35e851e0
743b9b8087f2f57084ad010c555038be9bd8037cbe097f2b9073d6715561dcc9
GET /qa/register04/images/bbg.jpg HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: image/jpeg
content-length: 296354
last-modified: Tue, 13 Dec 2022 08:07:08 GMT
etag: "485a2-5efb11b372821"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 52969e58671f1de216d4362479149b5d
4089e3e025db1d669ae4e848c6e223ca857647d3
6e8a3c7ab411ba07993036a6ddc6f53be1ec32496cdbe2049feab0c7bb240887
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 22 Jan 2023 11:04:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 22 Jan 2023 02:45:20 GMT
Expires: Mon, 23 Jan 2023 02:45:20 GMT
ETag: "4089e3e025db1d669ae4e848c6e223ca857647d3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cdn.fqtag.com/1.27.339-ccfb11a/pixel.js
35.190.36.172200 OK 90 kB URL HTTP/2 cdn.fqtag.com/1.27.339-ccfb11a/pixel.js
IP 35.190.36.172:0
File type ASCII text, with very long lines (31986)
Hash e0eff30579598f76147c9ea12f490d21
f0bf2ef576db440b275bdae3d6abac35e59a33b2
e70a34c5f232fa80328a361630a994cf847c54deb926f13d40be4807291b657b
GET /1.27.339-ccfb11a/pixel.js HTTP/1.1
Host: cdn.fqtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdup0pYNmqUNpS7Fiv5j13Tq0HA-Z6rFRcg6BX156d_SCyhryEFvXeoc8hqqlbaKxFshwKaiXx1gQSVqjbfJ1cC2Bp5UemVv
x-goog-generation: 1611776924905378
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 89647
content-language: en
x-goog-hash: crc32c=YwE4YA==, md5=4O/zBXlZj3YUfJ6hL0kNIQ==
x-goog-expiration: Sun, 11 Nov 2294 19:48:44 GMT
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 89647
server: UploadServer
date: Sun, 22 Jan 2023 11:02:39 GMT
expires: Sun, 22 Jan 2023 12:02:39 GMT
cache-control: public, max-age=3600
age: 89
last-modified: Wed, 27 Jan 2021 19:48:44 GMT
etag: "e0eff30579598f76147c9ea12f490d21"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
flx808.lporirxe.com/flp/ncvp.js?c=808&i=1674385447
104.18.155.225200 OK 11 kB URL HTTP/2 flx808.lporirxe.com/flp/ncvp.js?c=808&i=1674385447
IP 104.18.155.225:0
Hash e6a30d4ef5eaccb5d35d0eb5dc740052
42740eec442f77afdb474126b88300330ef2473a
b962548be39783badbf3c462775ada9eddb95b9bc6e4e5c0c313c54fb6e524aa
GET /flp/ncvp.js?c=808&i=1674385447 HTTP/1.1
Host: flx808.lporirxe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: application/javascript
content-length: 11218
last-modified: Wed, 30 Nov 2022 23:31:48 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 6290
expires: Mon, 23 Jan 2023 11:04:08 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
server: cloudflare
cf-ray: 78d7ce9dbb66b511-OSL
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 22 Jan 2023 10:41:07 GMT
expires: Sun, 22 Jan 2023 12:41:07 GMT
cache-control: public, max-age=7200
age: 1381
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.findukrainiangirl.com/qa/register04/images/favicon.png
54.208.222.244200 OK 1.3 kB URL HTTP/2 www.findukrainiangirl.com/qa/register04/images/favicon.png
IP 54.208.222.244:0
File type PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Hash e34cc2b5b85f3dbe87036fdc98da89ac
39d0dafc953aa1ec37cf4ad03e43525967d540ee
f0fc2184499433d70b42770da3fd175ff3fb8a10c67d32a5c0e26aa28ead4227
GET /qa/register04/images/favicon.png HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D; flv=zOeczHykEphmXHAo5lo3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: image/png
content-length: 1252
last-modified: Tue, 13 Dec 2022 08:07:08 GMT
etag: "4e4-5efb11b38e959"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
aux.fqtag.com/aux/d
35.190.13.203204 No Content 0 B IP 35.190.13.203:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /aux/d HTTP/1.1
Host: aux.fqtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 232
Origin: https://www.findukrainiangirl.com
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sun, 22 Jan 2023 11:04:08 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
aux.fqtag.com/aux/p
35.190.13.203204 No Content 0 B IP 35.190.13.203:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /aux/p HTTP/1.1
Host: aux.fqtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 271
Origin: https://www.findukrainiangirl.com
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sun, 22 Jan 2023 11:04:09 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ml-trk.com/aff_c?offer_id=8823&aff_id=37119&url_id=0_15414_15415_15416_15417_15418&aff_sub5=email&source=s002
188.114.97.1302 Found 0 B URL HTTP/2 ml-trk.com/aff_c?offer_id=8823&aff_id=37119&url_id=0_15414_15415_15416_15417_15418&aff_sub5=email&source=s002
IP 188.114.97.1:0
GET /aff_c?offer_id=8823&aff_id=37119&url_id=0_15414_15415_15416_15417_15418&aff_sub5=email&source=s002 HTTP/1.1
Host: ml-trk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 22 Jan 2023 11:04:05 GMT
content-type: text/html; charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: undefined
access-control-allow-credentials: true
access-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS
access-control-expose-headers: x-total-count
access-control-allow-headers: Content-Type,authorization
cache-control: private, no-store, no-cache
set-cookie: language=en; Domain=ml-trk.com; Path=/; Expires=Tue, 21 Feb 2023 11:04:05 GMT
test=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
8823=45_37119_8823_04199a38e9bdc827520bb5004217de2f; Domain=ml-trk.com; Path=/; Expires=Tue, 21 Feb 2023 11:04:05 GMT
op_8823=15416; Domain=ml-trk.com; Path=/; Expires=Tue, 21 Feb 2023 11:04:05 GMT
user_id=fe89c109-180e-4f1d-9b3f-f7f72e73750a_57692d9aeddef815936e6c2e0999b9f3; Domain=ml-trk.com; Path=/; Expires=Fri, 21 Jan 2028 11:04:05 GMT; Secure; SameSite=None
location: /rd.html?go=https%3A%2F%2Fwww.FindUkrainianGirl.com%2Findex.php%2Fpromote%2Fclick%3Faid%3D2360%26oid%3DCP231375%26qpid_offer_id%3DFUG_235084TSAEM%26qpid_subid%3D37119%26qpid_clickid%3D45_37119_8823_04199a38e9bdc827520bb5004217de2f%26source_tag%3Ds002
vary: Accept
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KLKPjWI7SBfxnpCF3khLMaohTDH7R1%2BThLzCId0XSuUCuQKNVb3iR7UXXf64fZxQCn7e4Y79OpwwWSRhmQgkXcrttxdjR5r202f8xSuD%2FgeZLte73vIVM9Bs5X7H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78d7ce8c5df8b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ml-trk.com/rd.html?go=https%3A%2F%2Fwww.FindUkrainianGirl.com%2Findex.php%2Fpromote%2Fclick%3Faid%3D2360%26oid%3DCP231375%26qpid_offer_id%3DFUG_235084TSAEM%26qpid_subid%3D37119%26qpid_clickid%3D45_37119_8823_04199a38e9bdc827520bb5004217de2f%26source_tag%3Ds002
188.114.97.1200 OK 0 B URL HTTP/2 ml-trk.com/rd.html?go=https%3A%2F%2Fwww.FindUkrainianGirl.com%2Findex.php%2Fpromote%2Fclick%3Faid%3D2360%26oid%3DCP231375%26qpid_offer_id%3DFUG_235084TSAEM%26qpid_subid%3D37119%26qpid_clickid%3D45_37119_8823_04199a38e9bdc827520bb5004217de2f%26source_tag%3Ds002
IP 188.114.97.1:0
Analyzer Verdict Alert fortinet Phishing
GET /rd.html?go=https%3A%2F%2Fwww.FindUkrainianGirl.com%2Findex.php%2Fpromote%2Fclick%3Faid%3D2360%26oid%3DCP231375%26qpid_offer_id%3DFUG_235084TSAEM%26qpid_subid%3D37119%26qpid_clickid%3D45_37119_8823_04199a38e9bdc827520bb5004217de2f%26source_tag%3Ds002 HTTP/1.1
Host: ml-trk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: language=en; 8823=45_37119_8823_04199a38e9bdc827520bb5004217de2f; op_8823=15416; user_id=fe89c109-180e-4f1d-9b3f-f7f72e73750a_57692d9aeddef815936e6c2e0999b9f3
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Sun, 22 Jan 2023 11:04:05 GMT
content-type: text/html
last-modified: Fri, 13 Aug 2021 14:56:49 GMT
vary: Accept-Encoding
cache-control: no-store, no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kreH%2FClpaIwq6NAB6v%2BQPyW2AJieoGnjrLCANU6G53jb%2B9OBqRMH3vK5QQfU0TlEz3a79As%2B1megiSjCAPKHtsOPNGXr2iq0wmXNTxGkD4sigPAVYXnbMv%2FnD2om"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78d7ce8cce93b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2