Report - findukrainiangirl.quest/

Report Overview

Submitted URL
findukrainiangirl.quest/
IP
162.255.119.54
ASN
#22612 NAMECHEAP-NET
Submitted
2023-01-22 11:04:17
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.131
flx808.lporirxe.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	395 B	12 kB	104.18.155.225
aux.fqtag.com	19371	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	946 B	372 B	35.190.13.203
findukrainiangirl.quest	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	472 B	162.255.119.54
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	21 kB	142.250.74.110
fqtag.com	13252	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	511 B	3.2 kB	35.190.72.161
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	396 B	45 kB	142.250.74.168
ocsp.godaddy.com	698	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	2.3 kB	192.124.249.24
cdn.fqtag.com	18775	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	91 kB	35.190.36.172
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.33.119.27
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.1 kB	93.184.220.29
www.findukrainiangirl.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	15 kB	1.1 MB	54.208.222.244
ml-trk.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.5 kB	188.114.97.1
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.83.112.49
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	53 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-22	medium	ml-trk.com/rd.html?go=https%3A%2F%2Fwww.FindUkrainianGirl.com%2Findex.php%2Fpromote%2Fclick%3Faid%3D2360%26oid%3DCP231375%26qpid_offer_id%3DFUG_235084TSAEM%26qpid_subid%3D37119%26qpid_clickid%3D45_37119_8823_04199a38e9bdc827520bb5004217de2f%26source_tag%3Ds002	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (29)

	URL	Size	First Seen	Last Seen
	www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002	156 B	2023-03-13	2023-11-14
Pretty URL www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 05:30:11 Last Seen2023-11-14 09:52:36 Times Seen31 Hash 12f231c511b3c1d748526bee898bd5ad 7f60c0eca3adb1472cadc6e0cb393c4b0bf35601 4ad4ed1bd112abf2c4b4a6a0d1eef3285610213a863221efd9a8505e96cfc993 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002	4.9 kB	2023-03-07	2024-02-02
Pretty URL www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:47 Last Seen2024-02-02 11:18:38 Times Seen94 Hash 83e8a76862bf96a7279523c143e1fcb6 55395f677860739a0ebeef37544030982f042ec7 0afaef1a38da0bcd1d6af760879078d5bbbe29b401582d081615172bbb7b51e6 Loading...

	www.googletagmanager.com/gtag/js?id=UA-133277878-94	112 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-133277878-94 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 05:30:12 Last Seen2023-03-13 05:30:12 Times Seen1 Hash 18b7573468a3b7a8bab8556ad6ed2024 c6fe761dd7cbec23c313da352cf6217a05acfa52 a3b29f9e6815b58819f7df5c9f8873eabfbc88b312b379677d132caef0aca9e4 Loading...

	fqtag.com/js/implement-r.js?org=B30kwnm0BOePk19pEhOI&s=936e527f4ee104fbcfc5c47eef47e162&rt=click&p=CP231375&a=37119&cmp=FUG_235084TSAEM&rf=https%3A%2F%2Fml-trk.com%2F	2.7 kB	2023-03-13	2023-03-13
Pretty URL fqtag.com/js/implement-r.js?org=B30kwnm0BOePk19pEhOI&s=936e527f4ee104fbcfc5c47eef47e162&rt=click&p=CP231375&a=37119&cmp=FUG_235084TSAEM&rf=https%3A%2F%2Fml-trk.com%2F IP 35.190.72.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 05:30:12 Last Seen2023-03-13 05:30:12 Times Seen1 Hash 254b51574d20b50599f5dfab5bdf333a e70a84603f114c094b245737ad0a3134ebd21517 82219331215c44a8eb882082a22cebf4d24c2a0a862b57e950a7c0991b94514e Loading...

	www.findukrainiangirl.com/common/js/my_validate_index2.js	9.6 kB	2023-03-07	2024-04-12
Pretty URL www.findukrainiangirl.com/common/js/my_validate_index2.js IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-12 16:13:42 Times Seen461 Hash d5835f520b9b0fa174d34d162caa9275 f6c6e859252596c39f573cf235c63937b7e159ae 9f30c76559fd2d02dc9e446c5a7e9cca3311028168e5f9894726e952c6aec367 Loading...

	www.findukrainiangirl.com/common/js/jquery.min.js	95 kB	2023-03-07	2024-04-17
Pretty URL www.findukrainiangirl.com/common/js/jquery.min.js IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:23 Last Seen2024-04-17 20:01:28 Times Seen13670 Hash b8d64d0bc142b3f670cc0611b0aebcae abcd2ba13348f178b17141b445bc99f1917d47af 47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4 Loading...

	www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002	372 B	2023-03-07	2024-04-12
Pretty URL www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-12 16:13:42 Times Seen285 Hash 259df69648fa40087a69c966c183276b 4ec84f0c31e04dad8082244297de4b8d9b2c6206 36190e23ee2093fa260eb03b8a394ef981e000854b9e9199396931298bda897d Loading...

	cdn.fqtag.com/1.27.339-ccfb11a/pixel.js	90 kB	2023-03-07	2023-04-05
Pretty URL cdn.fqtag.com/1.27.339-ccfb11a/pixel.js IP 35.190.36.172 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2023-04-05 02:05:44 Times Seen257 Hash e0eff30579598f76147c9ea12f490d21 f0bf2ef576db440b275bdae3d6abac35e59a33b2 e70a34c5f232fa80328a361630a994cf847c54deb926f13d40be4807291b657b Loading...

	ml-trk.com/rd.html?go=https%3A%2F%2Fwww.FindUkrainianGirl.com%2Findex.php%2Fpromote%2Fclick%3Faid%3D2360%26oid%3DCP231375%26qpid_offer_id%3DFUG_235084TSAEM%26qpid_subid%3D37119%26qpid_clickid%3D45_37119_8823_04199a38e9bdc827520bb5004217de2f%26source_tag%3Ds002	214 B	2023-03-07	2023-04-05
Pretty URL ml-trk.com/rd.html?go=https%3A%2F%2Fwww.FindUkrainianGirl.com%2Findex.php%2Fpromote%2Fclick%3Faid%3D2360%26oid%3DCP231375%26qpid_offer_id%3DFUG_235084TSAEM%26qpid_subid%3D37119%26qpid_clickid%3D45_37119_8823_04199a38e9bdc827520bb5004217de2f%26source_tag%3Ds002 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:50 Last Seen2023-04-05 01:54:10 Times Seen23 Hash db888f185ef0a5aacd560b2ebdf5801a 62ae899bed1b545b27ef5dbe037581e1fb55c544 0d532a064a29ec58ac0297fe0d64a35aff9bbdeceac63bcc54a914a426491d5e Loading...

	www.findukrainiangirl.com/common/js/auto_email/jquery.autoComplete.js	3.2 kB	2023-03-07	2024-04-12
Pretty URL www.findukrainiangirl.com/common/js/auto_email/jquery.autoComplete.js IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-12 16:13:42 Times Seen540 Hash 60fc884ca4b40a86037a92f7c107fb0b 3083200fc046eda732fdd57681c24bd13c667b64 ef998064931f59aaab2fc8d642027d45394e0a53d7965dbbda314bac75488e5b Loading...

	www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002	2.7 kB	2023-03-07	2023-04-05
Pretty URL www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:36:12 Last Seen2023-04-05 02:05:44 Times Seen6 Hash 7bb3dade496165cb831ec377fbf1380c 38f41db19faf674096bdaa71fb6cf26c84f1cd67 7fca96afa72fc0175a0ec26988dbfc785f004a647f03d7dfb633204f54bf857d Loading...

	www.findukrainiangirl.com/common/js/jquery.cookie.js	3.1 kB	2023-03-07	2024-04-17
Pretty URL www.findukrainiangirl.com/common/js/jquery.cookie.js IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-17 15:28:24 Times Seen9093 Hash d5528dde0006c78be04817327c2f9b6f 31e1bcc4cf805a2c2fee21f48ded1e598f64a2a8 b84161c9fbf7520cd14e7019f92120bd87a928a074156e91a992eba9fc9436e8 Loading...

	www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002	5.4 kB	2023-03-13	2023-03-13
Pretty URL www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 05:30:12 Last Seen2023-03-13 05:30:12 Times Seen1 Hash f22e8a81e6d1f0fe3d82fa3f4ec315e9 dc900c2a71e20df001f019fafc492117dc1f6d16 5d48d9ba3e56e21430a1164aaf1685d17fa796add5f221d9a5132ca1a98cde2a Loading...

	www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002	555 B	2023-03-07	2024-04-12
Pretty URL www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-12 16:13:41 Times Seen287 Hash 5de95a6d1c9ad1dcd4cf940567b465b6 160ccae4984757fa01a2ba10606c8d2bb9981c08 78234cd26a48ef2394f8dc947337b0edabde723ba9ddfe2b7b37cceb54791466 Loading...

	www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002	460 B	2023-03-07	2023-04-05
Pretty URL www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:15:02 Last Seen2023-04-05 02:05:44 Times Seen6 Hash 6be7c9b00bea2b7d29448115cb71755b bf2e3624396c6b768059b2ef3e4a3dfc109b069c dc7bc2db28e906ae6cbdee923697813b9ce8e318d6bc860c0bed6c25a44d5107 Loading...

	flx808.lporirxe.com/flp/ncvp.js?c=808&i=1674385447	19 kB	2023-03-07	2023-04-05
Pretty URL flx808.lporirxe.com/flp/ncvp.js?c=808&i=1674385447 IP 104.18.155.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2023-04-05 02:05:44 Times Seen79 Hash 6640f0a52690e947e6e81ce2974254d0 cc25d5dd25076a1b6dde69a710056adc4174e6f2 791f2b038331fbed89c1a0702368e60251bc23c3539dc9fa5b2f296f58b3f66a Loading...

	www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002	1.3 kB	2023-03-07	2023-04-05
Pretty URL www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:36:12 Last Seen2023-04-05 02:05:44 Times Seen6 Hash f67cca099be517f395cc5854e688581d 7e0d2b48850be3921c4027b03517b28408f2282d 293708087ce8eab567ed89dd545542c649fc7f51d5207934cee92787ee16e08c Loading...

	www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002	490 B	2023-03-07	2024-04-12
Pretty URL www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 IP 54.208.222.244 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-12 16:13:42 Times Seen282 Hash 2ecdf8fb59032c5e5b289fd9bde02623 9808d4e32e079397da6c3d26b999b8ae649715f3 ba864a76fd3a649559e0ce1c0f4d50c2c79323a43fd2cfd35b4443ae596ea76b Loading...

		Size	First Seen	Last Seen
	#1 Eval - 72e4b710f54b113bd86ac561dc633756	31 B	2023-03-07	2024-02-11
Pretty Observations First Seen2023-03-07 01:03:44 Last Seen2024-02-11 17:40:04 Times Seen273 Hash 72e4b710f54b113bd86ac561dc633756 7fa12b5fb0fa712975c0c9f07e992ca2f98547a9 83ba63efde4d727ac5babaea99f131c7a173c43d8ba138525523e267bf5f19c9 Loading...

	#2 Eval - b2c2041f8d99c45e0f21474fe4f8b7bc	17 B	2023-03-07	2024-04-16
Pretty Observations First Seen2023-03-07 01:03:01 Last Seen2024-04-16 10:51:55 Times Seen7383 Hash b2c2041f8d99c45e0f21474fe4f8b7bc 0b876666393469c726a2e3edbb29544c03a92154 17f5bfdbae6b35ae8bc3b27c069526d694021fe1e37a8027678e770fbb05e061 Loading...

	#3 Eval - 5923e6a91fd004cc0815f0a5494f6368	14 B	2023-03-07	2024-03-25
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-03-25 09:38:39 Times Seen2525 Hash 5923e6a91fd004cc0815f0a5494f6368 6f0cc8f774ac9d8240ffe81a9c659c9612d7bb70 0510de046e8325540849bad09f31eaaa3e9256fafd330c5d57327dc948812a33 Loading...

	#4 Eval - 87a21a9ee75bb029d3b8941958099c54	20 B	2023-03-07	2023-04-05
Pretty Observations First Seen2023-03-07 01:03:44 Last Seen2023-04-05 02:05:44 Times Seen257 Hash 87a21a9ee75bb029d3b8941958099c54 c8af57545ff675d9bdae1b63e10e7abc58e8dc23 f83271bbf9f61f53799bbe1ea9aa015e44b5b2ab3d7a94605b3aa390d2bfbc59 Loading...

	#5 Eval - d77891993d4243bf3b7e6f187378524f	34 kB	2023-03-07	2024-04-12
Pretty Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-12 16:13:42 Times Seen282 Hash d77891993d4243bf3b7e6f187378524f b40dbcc442c1577b825be707a81af10aefbe4477 5d3c94050ef872a0fc580bc4fd74591defddc495a88faa8ed75dfaf669598830 Loading...

	#6 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-04-18 07:38:18 Times Seen347468 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#7 Eval - a4b846e0527b55835a5901ef7fcc9929	20 B	2023-03-07	2023-04-05
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2023-04-05 02:05:44 Times Seen258 Hash a4b846e0527b55835a5901ef7fcc9929 b9b65fef01473a6b2073e9273faf6370038ea4be 989aee59bc8b1d209d85b911b79e19acbd4f38b57f507a32a8824db502e689e0 Loading...

	#8 Eval - bc4b62e8aa462fc9c7968fd9ce48b2eb	7 B	2023-03-07	2023-04-05
Pretty Observations First Seen2023-03-07 01:03:44 Last Seen2023-04-05 02:05:44 Times Seen257 Hash bc4b62e8aa462fc9c7968fd9ce48b2eb 6cb3ec8f27d8a4240954e747afce92ea66419815 05f06428ae6926ccb3847eac1c4adbe310cdeb3f5db585f26c2b9bb7887bff03 Loading...

	#9 Eval - ff74a399b04285c33477cfe77280ab86	11 B	2023-03-07	2023-04-05
Pretty Observations First Seen2023-03-07 01:03:44 Last Seen2023-04-05 02:05:44 Times Seen258 Hash ff74a399b04285c33477cfe77280ab86 b051b8b1148a90c1e0f1badfa7212681ef38ccd9 f587a8350df0c0f85a945195aac9f88d92f340e865a2e7fb23ad516da6623618 Loading...

		Size	First Seen	Last Seen
	#1 Write - ff5f11a04f34556ac5c3a35efa9dce9c	126 B	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 05:30:12 Last Seen2023-03-13 05:30:12 Times Seen1 Hash ff5f11a04f34556ac5c3a35efa9dce9c cbf1953a342acd31471461264f0794afaef7534f 61404da34dd289c3975f50ca19552592759f1f66961a4bfc67e5e676298bf38e Loading...

HTTP Transactions (47)

URL IP Response Size

findukrainiangirl.quest/

162.255.119.54

302 Found

140 B

URL HTTP/1.1
findukrainiangirl.quest/
IP
162.255.119.54:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document, ASCII text
Size
140 B (140 bytes)
Hash
92d76bfdfddde598e754600adc582e34
dcb5cc9e4f7278e032b19f98d1119d926a519da1
de9738106d0a2d49588a41d409ce83ed455b1b0be9714359f738e0689604e125

HTTP Headers

GET / HTTP/1.1
Host: findukrainiangirl.quest
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Sun, 22 Jan 2023 11:04:05 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 140
Connection: keep-alive
Location: https://ml-trk.com/aff_c?offer_id=8823&aff_id=37119&url_id=0_15414_15415_15416_15417_15418&aff_sub5=email&source=s002
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
20d267853e48ef7d476459ed67da5d97
06d1bd08efd69c0e93486d3c423fa2640f372d29
24323cd45ca2ed01c63f908233d9b2ad5bb6f63394884c45bf6abb0221d0edd6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24323CD45CA2ED01C63F908233D9B2AD5BB6F63394884C45BF6ABB0221D0EDD6"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20087
Expires: Sun, 22 Jan 2023 16:38:52 GMT
Date: Sun, 22 Jan 2023 11:04:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15496
Expires: Sun, 22 Jan 2023 15:22:21 GMT
Date: Sun, 22 Jan 2023 11:04:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
38c102db4bcfb9c4fb19174986950fd3
51c2cc8a3aca4da5c9ab3438467c29203fc0b0c3
dad6b64bc9f4dd827471ccc2e5273fceee574685376083aaa80f9d2f918037f2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAD6B64BC9F4DD827471CCC2E5273FCEEE574685376083AAA80F9D2F918037F2"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10209
Expires: Sun, 22 Jan 2023 13:54:14 GMT
Date: Sun, 22 Jan 2023 11:04:05 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 22 Jan 2023 10:34:51 GMT
content-type: application/json
age: 1754
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: IP2Ewivvl2mA8gLG3aTVk2Tx9eS9zkKjVdka59fa5MBMsmHxI3HU7GiLYxaNTwwZmdaqkq3SHWQ=
x-amz-request-id: J0STTA2KRM3ZMSQ0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 22 Jan 2023 10:47:15 GMT
age: 1010
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:05 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
622f9e39015154885f8441ecedd3c98b
437448373257ebfe2578611fa8471828211b54bb
de6d581f3b79765ad1012c9557ebab37e4df9d805459cb4324d11041b08fc4e9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=128351
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 11:04:05 GMT
Etag: "63cc6a84-118"
Expires: Mon, 23 Jan 2023 22:43:16 GMT
Last-Modified: Sat, 21 Jan 2023 22:43:16 GMT
Server: nginx
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
622f9e39015154885f8441ecedd3c98b
437448373257ebfe2578611fa8471828211b54bb
de6d581f3b79765ad1012c9557ebab37e4df9d805459cb4324d11041b08fc4e9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=128351
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 11:04:05 GMT
Etag: "63cc6a84-118"
Expires: Mon, 23 Jan 2023 22:43:16 GMT
Last-Modified: Sat, 21 Jan 2023 22:43:16 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 22 Jan 2023 10:17:30 GMT
age: 2796
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

580 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
580 B (580 bytes)
Hash
e15de3f37bf8cb4880c64e7076ed89ad
27c546d6e6e3d7429fee93fe351c9bb1abbc42bf
cb8106cb53191882b8f4f4c80900b8f8de44e66b0e2eb75aabb863a410549169

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2960
Cache-Control: max-age=168721
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 11:04:06 GMT
Etag: "63ccfca7-1d7"
Expires: Tue, 24 Jan 2023 09:56:07 GMT
Last-Modified: Sun, 22 Jan 2023 09:06:47 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.83.112.49

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.83.112.49:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nrT+GVdb9mTBvN+RbRKOyA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3Q+1WYe44x+ro9FINrefaHXWJLM=

www.findukrainiangirl.com/index.php/promote/click?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002

54.208.222.244

302 Found

20 B

URL HTTP/2
www.findukrainiangirl.com/index.php/promote/click?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
data
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

HTTP Headers

GET /index.php/promote/click?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ml-trk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sun, 22 Jan 2023 11:04:06 GMT
content-type: text/html; charset=UTF-8
content-length: 20
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
p3p: CP=CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR
set-cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; path=/
owner_id=CP231375; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
adv_id=2360; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
adv_type=1; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
subaffid=37119; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
source_id=s002; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
adv_ldp_id=CD3005004; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
qpid_offer_id=FUG_235084TSAEM; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
website_id=207; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
referer=https%3A%2F%2Fml-trk.com%2F; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
adv_click_history_id=677387242; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D; expires=Sat, 22-Apr-2023 11:04:06 GMT; path=/
location: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002

54.208.222.244

200 OK

28 kB

URL HTTP/2
www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (22671), with CRLF line terminators
Size
28 kB (27852 bytes)
Hash
0a71d92b1a63c9a039a87aa4e68b0e6b
a5240b331119d07c3b2f2e16701ab1b859b44859
cf60c8651ff7b2cd6ba638463b2f90de6da015befc96cf93b5c93ee0f251a823

HTTP Headers

GET /qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002 HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ml-trk.com/
Connection: keep-alive
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:07 GMT
content-type: text/html; charset=UTF-8
content-length: 27852
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de7a63d2ad6aa24d59f3bc8f1ad1506d
4d482f361dd60cda2c6e98daf09e22f867cc29db
3d4a5f556dfeb8b4279179ff9bbe5d3d2560da10fb0b37b1c0c4c396667ca496

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3D4A5F556DFEB8B4279179FF9BBE5D3D2560DA10FB0B37B1C0C4C396667CA496"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14622
Expires: Sun, 22 Jan 2023 15:07:49 GMT
Date: Sun, 22 Jan 2023 11:04:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10525
Expires: Sun, 22 Jan 2023 13:59:32 GMT
Date: Sun, 22 Jan 2023 11:04:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10525
Expires: Sun, 22 Jan 2023 13:59:32 GMT
Date: Sun, 22 Jan 2023 11:04:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10525
Expires: Sun, 22 Jan 2023 13:59:32 GMT
Date: Sun, 22 Jan 2023 11:04:07 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7656 bytes)
Hash
d3e5cb3e8d03fffcd307c5ebaef08167
1a813821d15afd416b82c3343a7920a0ffc909cb
84a81b6f63faa3f17a20222b8fa389761a0fb0512a1549b4848849c0425539c9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7656
x-amzn-requestid: 6e1ebd9d-6ef0-48d0-a891-51bbf914ed42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNlYHaUoAMFr-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c88-479e8fb72b0b248d020d9e77;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DaWs0RT0IupgLoLeQZYbdYdvYFd02bXrdQBFYpqLxwmKf1bKhh_wgQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:06 GMT
etag: "1a813821d15afd416b82c3343a7920a0ffc909cb"
content-type: image/jpeg
age: 47761
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4936bb42-8976-4efc-8b26-9a2f517edf25.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8534 bytes)
Hash
6a1b3929a583677ce66741ead75e9e65
84ed47576e82c02590bc86f3e6eef9167b65f12c
625f164a7fcb02056fae9afab968c313f6c53f460a0e7b2229966b52049a3d7a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4936bb42-8976-4efc-8b26-9a2f517edf25.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8534
x-amzn-requestid: c3a41a38-9910-4907-b82f-0d56efef6f6b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fDzbLGI2IAMFXQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63caff7a-2e1152ba048d504246f4b2f5;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 20:54:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EFM-Qc7doROkqk2x8aNEIkmsnmBlsLl3ParlGoWIKRJUumIQBv9hpw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 02:02:52 GMT
age: 32475
etag: "84ed47576e82c02590bc86f3e6eef9167b65f12c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10988 bytes)
Hash
5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RlbJymJhU6Ti5RZCSIvPzloackAiBEBGapKI440u4ZIfB5FYBNugLw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 03:24:49 GMT
age: 27558
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78e98c30-5996-4c9f-8207-16807fdf9242.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5822 bytes)
Hash
278120411564827c9e80134f4f0e2291
bf87f6e184830ee496e8d1aa5ccd9f2b273e7a64
51de0be8e47289d12f8a7fe670afcffe36597846dd3674f87e465d9489c984ce

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78e98c30-5996-4c9f-8207-16807fdf9242.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5822
x-amzn-requestid: 71e2ad62-a46a-46a7-b00d-d9b67c891b71
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHN6fGg3oAMFQSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5d0f-2b990007732b97603562fcfe;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:45:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v4OpB32at9tB1ICHeHQ4MjkubhGY4ZTZpwCEH2wQ1IgUqlFpQXvjlg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 22:48:17 GMT
age: 44150
etag: "bf87f6e184830ee496e8d1aa5ccd9f2b273e7a64"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdc45398-1d4d-45ac-94a6-2cc6d910d8b8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5196 bytes)
Hash
375f2cf298e45122ca727fb63f0e5ea7
eb746e6842127741552c7dcc48e8a92193ca3075
8b5e5432f69dad1428c3a735f7a0d07823658e03befc7b6e15f6f5c3306fbaa8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdc45398-1d4d-45ac-94a6-2cc6d910d8b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5196
x-amzn-requestid: 24221211-6673-4d7b-88de-2ef8c9a62f1b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNWRFPUIAMFf-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c27-286d3bb84ad3362d615479ed;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uSVzx-rzZIDLp55bKb-12pKjPUzRGih9sIupyPYRuDQasYa7JRnWoA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:52:07 GMT
etag: "eb746e6842127741552c7dcc48e8a92193ca3075"
content-type: image/jpeg
age: 47520
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c0f67edfa92ff11474d17ad3160ed43e
a43cc627d3c9258bdbe14ff3ceeed1c98496ff50
309dea4b94ceda4ec43c2f944cdfad61434c96eaafd172bc55c39545f3bf5a1e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 11:04:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd68d33e7-2d1d-4f9d-9544-28746d9156e6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8057 bytes)
Hash
4e71636bb9a13ad7d52d253e16cd6a3f
401dd58e34982d3434739b9a2f7182487ea1cac5
1ac336df72b6eb569983e197f094378a26a175113249bedca0610cabd57e2e54

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd68d33e7-2d1d-4f9d-9544-28746d9156e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8057
x-amzn-requestid: 5469b005-6740-4f3d-80ca-a45fd39cae68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNkCFiZoAMF8oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c80-210da08f113a3273257b7d61;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: j3SoP46ER0JjOaLh363bQ9QW4ZIW19_rbgeQ7Ey8W-zgyGMMLSLccA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:17 GMT
etag: "401dd58e34982d3434739b9a2f7182487ea1cac5"
content-type: image/jpeg
age: 47750
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fqtag.com/js/implement-r.js?org=B30kwnm0BOePk19pEhOI&s=936e527f4ee104fbcfc5c47eef47e162&rt=click&p=CP231375&a=37119&cmp=FUG_235084TSAEM&rf=https%3A%2F%2Fml-trk.com%2F

35.190.72.161

200 OK

2.7 kB

URL HTTP/2
fqtag.com/js/implement-r.js?org=B30kwnm0BOePk19pEhOI&s=936e527f4ee104fbcfc5c47eef47e162&rt=click&p=CP231375&a=37119&cmp=FUG_235084TSAEM&rf=https%3A%2F%2Fml-trk.com%2F
IP
35.190.72.161:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2713), with no line terminators
Size
2.7 kB (2713 bytes)
Hash
254b51574d20b50599f5dfab5bdf333a
e70a84603f114c094b245737ad0a3134ebd21517
82219331215c44a8eb882082a22cebf4d24c2a0a862b57e950a7c0991b94514e

HTTP Headers

GET /js/implement-r.js?org=B30kwnm0BOePk19pEhOI&s=936e527f4ee104fbcfc5c47eef47e162&rt=click&p=CP231375&a=37119&cmp=FUG_235084TSAEM&rf=https%3A%2F%2Fml-trk.com%2F HTTP/1.1
Host: fqtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: 0
cache-control: no-cache, no-store, must-revalidate
x-xss-protection: 0
pragma: no-cache
date: Sun, 22 Jan 2023 11:04:07 GMT
access-control-allow-origin: *
content-type: application/javascript
content-length: 2713
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de7a63d2ad6aa24d59f3bc8f1ad1506d
4d482f361dd60cda2c6e98daf09e22f867cc29db
3d4a5f556dfeb8b4279179ff9bbe5d3d2560da10fb0b37b1c0c4c396667ca496

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3D4A5F556DFEB8B4279179FF9BBE5D3D2560DA10FB0B37B1C0C4C396667CA496"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14622
Expires: Sun, 22 Jan 2023 15:07:49 GMT
Date: Sun, 22 Jan 2023 11:04:07 GMT
Connection: keep-alive

www.googletagmanager.com/gtag/js?id=UA-133277878-94

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-133277878-94
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43993 bytes)
Hash
cfa371fafe834b4aced967e3227bca97
2b7500cac91d916174f322e898fd5127602e927b
568ebca373edc1d62574f1777b8a25d51222b7a370b235fe7a7b304c9ccb4b6d

HTTP Headers

GET /gtag/js?id=UA-133277878-94 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 22 Jan 2023 11:04:07 GMT
expires: Sun, 22 Jan 2023 11:04:07 GMT
cache-control: private, max-age=900
last-modified: Sun, 22 Jan 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43993
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c0f67edfa92ff11474d17ad3160ed43e
a43cc627d3c9258bdbe14ff3ceeed1c98496ff50
309dea4b94ceda4ec43c2f944cdfad61434c96eaafd172bc55c39545f3bf5a1e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 11:04:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.findukrainiangirl.com/qa/register04/images/logo.png

54.208.222.244

200 OK

10 kB

URL HTTP/2
www.findukrainiangirl.com/qa/register04/images/logo.png
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 709 x 94, 8-bit/color RGBA, non-interlaced\012- data
Size
10 kB (10344 bytes)
Hash
7c735a804c4074c7fe9cf08bf21d355d
85e5e1399fbe02c5bd6bd5a09c75a545a96f0e54
e9800397c43b32d23e06fff09830bc189147d301ff32669310ae58b74bcfa355

HTTP Headers

GET /qa/register04/images/logo.png HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:07 GMT
content-type: image/png
content-length: 10344
last-modified: Tue, 13 Dec 2022 08:07:10 GMT
etag: "2868-5efb11b5896b9"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

www.findukrainiangirl.com/qa/register04/images/girl.gif

54.208.222.244

200 OK

747 kB

URL HTTP/2
www.findukrainiangirl.com/qa/register04/images/girl.gif
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
GIF image data, version 89a, 353 x 268\012- data
Size
747 kB (747407 bytes)
Hash
dad89eddd27385a34ec6f3b1323affd8
64518a2f795747a3a3d2253dea5e3120e2250b41
c6f8e67de576d5ffd5a62607143736c08e64899c9cc76c0e2253e3a1d8a3b0aa

HTTP Headers

GET /qa/register04/images/girl.gif HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:07 GMT
content-type: image/gif
content-length: 747407
last-modified: Tue, 13 Dec 2022 08:07:10 GMT
etag: "b678f-5efb11b53dbc9"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

www.findukrainiangirl.com/common/js/auto_email/jquery.autoComplete.js

54.208.222.244

200 OK

1.0 kB

URL HTTP/2
www.findukrainiangirl.com/common/js/auto_email/jquery.autoComplete.js
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
1.0 kB (1046 bytes)
Hash
d4b600f68461a491b71e88dc6f0173e1
7e20eb3d42dfec881deb87d3c2d6aad1c40aca0f
c5dc9fb6467bc20ff42141ea247397131baf1e1d6240d0dd66eb62f2cf87c74a

HTTP Headers

GET /common/js/auto_email/jquery.autoComplete.js HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 1046
last-modified: Fri, 09 Oct 2020 08:24:18 GMT
etag: "c56-5b138acbfdc33"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.findukrainiangirl.com/qa/register04/css/layout.css?02

54.208.222.244

200 OK

4.0 kB

URL HTTP/2
www.findukrainiangirl.com/qa/register04/css/layout.css?02
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text, with very long lines (371), with CRLF line terminators
Size
4.0 kB (3989 bytes)
Hash
4352afc792cadaa450f099655a61d868
a12396b4737839bdea73c66cd59209a80126dd5d
64c56e163ca1e172cdf801cfedcbdb1c6dd0ce9c91c1b51c68c13c1cfc603778

HTTP Headers

GET /qa/register04/css/layout.css?02 HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: text/css
content-length: 3989
last-modified: Tue, 13 Dec 2022 08:07:07 GMT
etag: "3cc5-5efb11b285ef9"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.findukrainiangirl.com/common/js/jquery.cookie.js

54.208.222.244

200 OK

1.4 kB

URL HTTP/2
www.findukrainiangirl.com/common/js/jquery.cookie.js
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
1.4 kB (1378 bytes)
Hash
00cfb5c8c7ec0b51b1dfb190279d570f
468f6fe01079afbcf53594f1065847f04165e249
0585e143aba785df6fb525229dd5e3466227cecc87e913459f0444e732fbf15c

HTTP Headers

GET /common/js/jquery.cookie.js HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 1378
last-modified: Fri, 09 Oct 2020 08:24:18 GMT
etag: "c31-5b138acc863cb"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.findukrainiangirl.com/common/js/my_validate_index2.js

54.208.222.244

200 OK

2.9 kB

URL HTTP/2
www.findukrainiangirl.com/common/js/my_validate_index2.js
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
2.9 kB (2851 bytes)
Hash
f1e757f7e2374c7b7162906a20688af2
ca928406b98b3611e9f23ac3157c8a116eb332a6
4cc7f63506663396d396c9e81fdda9310abfe101cfa63e57411b1263c0d1f803

HTTP Headers

GET /common/js/my_validate_index2.js HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 2851
last-modified: Fri, 09 Oct 2020 08:24:18 GMT
etag: "2560-5b138acc60a3b"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.findukrainiangirl.com/common/js/auto_email/autoComplete.css

54.208.222.244

200 OK

376 B

URL HTTP/2
www.findukrainiangirl.com/common/js/auto_email/autoComplete.css
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with CRLF line terminators
Size
376 B (376 bytes)
Hash
fa161ac586a052c4476ed190ac1571e0
95bf7bc6541743739aa6d9f185d398e36dc9ce6c
f514e2d195768146c7b6453b788d6fdeb1df19ee6e5b017e0e9a1003a8e5c662

HTTP Headers

GET /common/js/auto_email/autoComplete.css HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: text/css
content-length: 376
last-modified: Fri, 09 Oct 2020 08:24:17 GMT
etag: "27d-5b138acba794b"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.findukrainiangirl.com/common/js/jquery.min.js

54.208.222.244

200 OK

35 kB

URL HTTP/2
www.findukrainiangirl.com/common/js/jquery.min.js
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Size
35 kB (34763 bytes)
Hash
28ca33b476a0e86fa59725bdb38c7f2f
120531fc57923e78104a0aacee05c53cecbfd61f
ffbc181a3d82af401ee3645d08b10d739c12222da179cd5ec2dc67016d7c93a3

HTTP Headers

GET /common/js/jquery.min.js HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 34763
last-modified: Fri, 09 Oct 2020 08:24:18 GMT
etag: "17278-5b138accbfdab"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.findukrainiangirl.com/qa/register04/images/bbg.jpg

54.208.222.244

200 OK

296 kB

URL HTTP/2
www.findukrainiangirl.com/qa/register04/images/bbg.jpg
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1680x799, components 3\012- data
Size
296 kB (296354 bytes)
Hash
cb877395ddc4391097b45b492b713531
38af363e1daf3ff6b04c81e28a8e1cdd35e851e0
743b9b8087f2f57084ad010c555038be9bd8037cbe097f2b9073d6715561dcc9

HTTP Headers

GET /qa/register04/images/bbg.jpg HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: image/jpeg
content-length: 296354
last-modified: Tue, 13 Dec 2022 08:07:08 GMT
etag: "485a2-5efb11b372821"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1777 bytes)
Hash
52969e58671f1de216d4362479149b5d
4089e3e025db1d669ae4e848c6e223ca857647d3
6e8a3c7ab411ba07993036a6ddc6f53be1ec32496cdbe2049feab0c7bb240887

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 22 Jan 2023 11:04:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 22 Jan 2023 02:45:20 GMT
Expires: Mon, 23 Jan 2023 02:45:20 GMT
ETag: "4089e3e025db1d669ae4e848c6e223ca857647d3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

cdn.fqtag.com/1.27.339-ccfb11a/pixel.js

35.190.36.172

200 OK

90 kB

URL HTTP/2
cdn.fqtag.com/1.27.339-ccfb11a/pixel.js
IP
35.190.36.172:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (31986)
Size
90 kB (89647 bytes)
Hash
e0eff30579598f76147c9ea12f490d21
f0bf2ef576db440b275bdae3d6abac35e59a33b2
e70a34c5f232fa80328a361630a994cf847c54deb926f13d40be4807291b657b

HTTP Headers

GET /1.27.339-ccfb11a/pixel.js HTTP/1.1
Host: cdn.fqtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycdup0pYNmqUNpS7Fiv5j13Tq0HA-Z6rFRcg6BX156d_SCyhryEFvXeoc8hqqlbaKxFshwKaiXx1gQSVqjbfJ1cC2Bp5UemVv
x-goog-generation: 1611776924905378
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 89647
content-language: en
x-goog-hash: crc32c=YwE4YA==, md5=4O/zBXlZj3YUfJ6hL0kNIQ==
x-goog-expiration: Sun, 11 Nov 2294 19:48:44 GMT
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 89647
server: UploadServer
date: Sun, 22 Jan 2023 11:02:39 GMT
expires: Sun, 22 Jan 2023 12:02:39 GMT
cache-control: public, max-age=3600
age: 89
last-modified: Wed, 27 Jan 2021 19:48:44 GMT
etag: "e0eff30579598f76147c9ea12f490d21"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

flx808.lporirxe.com/flp/ncvp.js?c=808&i=1674385447

104.18.155.225

200 OK

11 kB

URL HTTP/2
flx808.lporirxe.com/flp/ncvp.js?c=808&i=1674385447
IP
104.18.155.225:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
11 kB (11218 bytes)
Hash
e6a30d4ef5eaccb5d35d0eb5dc740052
42740eec442f77afdb474126b88300330ef2473a
b962548be39783badbf3c462775ada9eddb95b9bc6e4e5c0c313c54fb6e524aa

HTTP Headers

GET /flp/ncvp.js?c=808&i=1674385447 HTTP/1.1
Host: flx808.lporirxe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: application/javascript
content-length: 11218
last-modified: Wed, 30 Nov 2022 23:31:48 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 6290
expires: Mon, 23 Jan 2023 11:04:08 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
server: cloudflare
cf-ray: 78d7ce9dbb66b511-OSL
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 22 Jan 2023 10:41:07 GMT
expires: Sun, 22 Jan 2023 12:41:07 GMT
cache-control: public, max-age=7200
age: 1381
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.findukrainiangirl.com/qa/register04/images/favicon.png

54.208.222.244

200 OK

1.3 kB

URL HTTP/2
www.findukrainiangirl.com/qa/register04/images/favicon.png
IP
54.208.222.244:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Size
1.3 kB (1252 bytes)
Hash
e34cc2b5b85f3dbe87036fdc98da89ac
39d0dafc953aa1ec37cf4ad03e43525967d540ee
f0fc2184499433d70b42770da3fd175ff3fb8a10c67d32a5c0e26aa28ead4227

HTTP Headers

GET /qa/register04/images/favicon.png HTTP/1.1
Host: www.findukrainiangirl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/qa/register04.php?aid=2360&oid=CP231375&qpid_offer_id=FUG_235084TSAEM&qpid_subid=37119&qpid_clickid=45_37119_8823_04199a38e9bdc827520bb5004217de2f&source_tag=s002
Cookie: PHPSESSID=j1rs912jokb3ehl3jsr87t3gk1; owner_id=CP231375; adv_id=2360; adv_type=1; subaffid=37119; source_id=s002; adv_ldp_id=CD3005004; qpid_offer_id=FUG_235084TSAEM; website_id=207; referer=https%3A%2F%2Fml-trk.com%2F; adv_click_history_id=677387242; qpid_click_id=45_37119_8823_04199a38e9bdc827520bb5004217de2f; owner_argv=a%3A6%3A%7Bs%3A3%3A%22aid%22%3Bs%3A4%3A%222360%22%3Bs%3A3%3A%22oid%22%3Bs%3A8%3A%22CP231375%22%3Bs%3A13%3A%22qpid_offer_id%22%3Bs%3A15%3A%22FUG_235084TSAEM%22%3Bs%3A10%3A%22qpid_subid%22%3Bs%3A5%3A%2237119%22%3Bs%3A12%3A%22qpid_clickid%22%3Bs%3A46%3A%2245_37119_8823_04199a38e9bdc827520bb5004217de2f%22%3Bs%3A10%3A%22source_tag%22%3Bs%3A4%3A%22s002%22%3B%7D; flv=zOeczHykEphmXHAo5lo3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 11:04:08 GMT
content-type: image/png
content-length: 1252
last-modified: Tue, 13 Dec 2022 08:07:08 GMT
etag: "4e4-5efb11b38e959"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=17280000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

aux.fqtag.com/aux/d

35.190.13.203

204 No Content

0 B

URL HTTP/2
aux.fqtag.com/aux/d
IP
35.190.13.203:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /aux/d HTTP/1.1
Host: aux.fqtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 232
Origin: https://www.findukrainiangirl.com
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
access-control-allow-origin: *
date: Sun, 22 Jan 2023 11:04:08 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

aux.fqtag.com/aux/p

35.190.13.203

204 No Content

0 B

URL HTTP/2
aux.fqtag.com/aux/p
IP
35.190.13.203:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /aux/p HTTP/1.1
Host: aux.fqtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 271
Origin: https://www.findukrainiangirl.com
Connection: keep-alive
Referer: https://www.findukrainiangirl.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
access-control-allow-origin: *
date: Sun, 22 Jan 2023 11:04:09 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ml-trk.com/aff_c?offer_id=8823&aff_id=37119&url_id=0_15414_15415_15416_15417_15418&aff_sub5=email&source=s002

188.114.97.1

302 Found

0 B

URL HTTP/2
ml-trk.com/aff_c?offer_id=8823&aff_id=37119&url_id=0_15414_15415_15416_15417_15418&aff_sub5=email&source=s002
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /aff_c?offer_id=8823&aff_id=37119&url_id=0_15414_15415_15416_15417_15418&aff_sub5=email&source=s002 HTTP/1.1
Host: ml-trk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
date: Sun, 22 Jan 2023 11:04:05 GMT
content-type: text/html; charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: undefined
access-control-allow-credentials: true
access-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS
access-control-expose-headers: x-total-count
access-control-allow-headers: Content-Type,authorization
cache-control: private, no-store, no-cache
set-cookie: language=en; Domain=ml-trk.com; Path=/; Expires=Tue, 21 Feb 2023 11:04:05 GMT
test=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
8823=45_37119_8823_04199a38e9bdc827520bb5004217de2f; Domain=ml-trk.com; Path=/; Expires=Tue, 21 Feb 2023 11:04:05 GMT
op_8823=15416; Domain=ml-trk.com; Path=/; Expires=Tue, 21 Feb 2023 11:04:05 GMT
user_id=fe89c109-180e-4f1d-9b3f-f7f72e73750a_57692d9aeddef815936e6c2e0999b9f3; Domain=ml-trk.com; Path=/; Expires=Fri, 21 Jan 2028 11:04:05 GMT; Secure; SameSite=None
location: /rd.html?go=https%3A%2F%2Fwww.FindUkrainianGirl.com%2Findex.php%2Fpromote%2Fclick%3Faid%3D2360%26oid%3DCP231375%26qpid_offer_id%3DFUG_235084TSAEM%26qpid_subid%3D37119%26qpid_clickid%3D45_37119_8823_04199a38e9bdc827520bb5004217de2f%26source_tag%3Ds002
vary: Accept
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KLKPjWI7SBfxnpCF3khLMaohTDH7R1%2BThLzCId0XSuUCuQKNVb3iR7UXXf64fZxQCn7e4Y79OpwwWSRhmQgkXcrttxdjR5r202f8xSuD%2FgeZLte73vIVM9Bs5X7H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78d7ce8c5df8b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ml-trk.com/rd.html?go=https%3A%2F%2Fwww.FindUkrainianGirl.com%2Findex.php%2Fpromote%2Fclick%3Faid%3D2360%26oid%3DCP231375%26qpid_offer_id%3DFUG_235084TSAEM%26qpid_subid%3D37119%26qpid_clickid%3D45_37119_8823_04199a38e9bdc827520bb5004217de2f%26source_tag%3Ds002

188.114.97.1

200 OK

0 B

URL HTTP/2
ml-trk.com/rd.html?go=https%3A%2F%2Fwww.FindUkrainianGirl.com%2Findex.php%2Fpromote%2Fclick%3Faid%3D2360%26oid%3DCP231375%26qpid_offer_id%3DFUG_235084TSAEM%26qpid_subid%3D37119%26qpid_clickid%3D45_37119_8823_04199a38e9bdc827520bb5004217de2f%26source_tag%3Ds002
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /rd.html?go=https%3A%2F%2Fwww.FindUkrainianGirl.com%2Findex.php%2Fpromote%2Fclick%3Faid%3D2360%26oid%3DCP231375%26qpid_offer_id%3DFUG_235084TSAEM%26qpid_subid%3D37119%26qpid_clickid%3D45_37119_8823_04199a38e9bdc827520bb5004217de2f%26source_tag%3Ds002 HTTP/1.1
Host: ml-trk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: language=en; 8823=45_37119_8823_04199a38e9bdc827520bb5004217de2f; op_8823=15416; user_id=fe89c109-180e-4f1d-9b3f-f7f72e73750a_57692d9aeddef815936e6c2e0999b9f3
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
date: Sun, 22 Jan 2023 11:04:05 GMT
content-type: text/html
last-modified: Fri, 13 Aug 2021 14:56:49 GMT
vary: Accept-Encoding
cache-control: no-store, no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kreH%2FClpaIwq6NAB6v%2BQPyW2AJieoGnjrLCANU6G53jb%2B9OBqRMH3vK5QQfU0TlEz3a79As%2B1megiSjCAPKHtsOPNGXr2iq0wmXNTxGkD4sigPAVYXnbMv%2FnD2om"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78d7ce8cce93b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (29)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML