r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 59be8dfdd6f4ab82f394d3d5b927e065
dc8e8f1bbae495f84322e5efd0c42a39ef5be56c
7f251408f64b28bebfe96f3db5c3dde3d5ad5febbaf2964b3516c114eaa51f4d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F251408F64B28BEBFE96F3DB5C3DDE3D5AD5FEBBAF2964B3516C114EAA51F4D"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4943
Expires: Tue, 01 Nov 2022 01:22:27 GMT
Date: Tue, 01 Nov 2022 00:00:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de47d7f9f8d5035d5490f0386442d813
fe86a705a7540c619fddd835ba720bccd2f17cfc
1b3bb62c83f8117b31f021c532a77dfea594a33ea40b5ed62dc67a29f6d15115
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1B3BB62C83F8117B31F021C532A77DFEA594A33EA40B5ED62DC67A29F6D15115"
Last-Modified: Sun, 30 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19721
Expires: Tue, 01 Nov 2022 05:28:45 GMT
Date: Tue, 01 Nov 2022 00:00:04 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 37c018b30f8ecbca9d4c0606287c01d8
9f1ce6e9b6ee40dc53da9f686c35c985485b2425
e16c2bf8d2e615c8fcd5adc5faf01cd9cc523d0ef7fa29b648b372d2ecdc95c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5333
Cache-Control: max-age=125994
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 00:00:04 GMT
Etag: "635f95d9-1d7"
Expires: Wed, 02 Nov 2022 10:59:58 GMT
Last-Modified: Mon, 31 Oct 2022 09:31:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: H9EG0dnDBmbaadWX/2Mpv9tdmgzdCvP0L4A9TwBUKfjjvJ6a0bBKlLF2wv/DfqAlS/7/Z8xbrr8=
x-amz-request-id: BXAVD1RDV292ZHHA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 31 Oct 2022 23:11:44 GMT
age: 2900
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
139.59.49.76/34363?click=pub0918740c6a4f41f2a29400d6cee98983&pubid=8378b37a
139.59.49.76302 Found 378 B URL HTTP/1.1 139.59.49.76/34363?click=pub0918740c6a4f41f2a29400d6cee98983&pubid=8378b37a
IP 139.59.49.76:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, ASCII text, with very long lines (378), with no line terminators
Hash a92bf989230bf1205711471a96d28dad
e56838be46f2f4a09f769d90c41fe3650730d325
168d7dd3e5bc89139a19fb04211d30a22a2fde45145ade2f6eee0efd3a81c4e3
GET /34363?click=pub0918740c6a4f41f2a29400d6cee98983&pubid=8378b37a HTTP/1.1
Host: 139.59.49.76
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
x-powered-by: Express
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
location: https://armr.trckswrm.com/recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined
vary: Accept, Accept-Encoding
content-type: text/html; charset=utf-8
content-length: 378
date: Tue, 01 Nov 2022 00:00:04 GMT
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f646a3a97223c35e424ccb52d0ff73da
d88c49b4ac278348e6c669792334170911fb43dd
065a4e4db1b5f7d8231afbd3cb75ce74f0a74aee63bc12a79f5a8d050f55a05b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2419
Cache-Control: max-age=118021
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 00:00:05 GMT
Etag: "635f8217-1d7"
Expires: Wed, 02 Nov 2022 08:47:06 GMT
Last-Modified: Mon, 31 Oct 2022 08:06:47 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 77d815f00f414ef4bedae6f0ef885469
bd4c0594c0af5183b5a1c2dd61acffcef6d40a53
eb467995bc69c0699e70fe46f9df436e9b18b34e2aa50fc2a7e98da86bf62542
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 00:00:05 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 30 Oct 2022 04:17:09 GMT
Expires: Sun, 06 Nov 2022 04:17:08 GMT
Etag: "bd4c0594c0af5183b5a1c2dd61acffcef6d40a53"
Cache-Control: max-age=446822,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 763059205c4db524-OSL
push.services.mozilla.com/
54.191.210.155101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.191.210.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: u5GWHM0ugcHhro1toHpjKg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Kssm/aTeklPapsbFsZJWb0X+2fc=
armr.trckswrm.com/recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined
88.99.70.114200 OK 218 B URL HTTP/1.1 armr.trckswrm.com/recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined
IP 88.99.70.114:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document, ASCII text
Hash 97c51f5a71f49ab74e9d48134cdb7593
2ac7886f4339ed49432eb3123f1989e734fb8280
4bc1980a0b32349320ceccd609f786a95a92dda3968ad662211e7f4bbe401084
GET /recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined HTTP/1.1
Host: armr.trckswrm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
content-length: 218
date: Tue, 01 Nov 2022 00:00:05 GMT
armr.trckswrm.com/favicon.ico
88.99.70.114404 Not Found 0 B URL HTTP/1.1 armr.trckswrm.com/favicon.ico
IP 88.99.70.114:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: armr.trckswrm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://armr.trckswrm.com/recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
content-length: 0
date: Tue, 01 Nov 2022 00:00:05 GMT
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dd1957fe93ea2d36664d9861650ce527
455e5e7f86469b3c91eb9dcbc001fed36eeef3d2
0c03dc36513fc3cc329386c56580e15c3c66cc42901d5fa29cc341a13d97b49a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=98298
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 00:00:06 GMT
Etag: "635f3e80-117"
Expires: Wed, 02 Nov 2022 03:18:24 GMT
Last-Modified: Mon, 31 Oct 2022 03:18:24 GMT
Server: nginx
Content-Length: 279
poqueras.com/noid/slope?lame=2H9bknzlz6BNNCcn10k5gQ%3D%3D
172.67.160.121200 OK 843 B URL HTTP/2 poqueras.com/noid/slope?lame=2H9bknzlz6BNNCcn10k5gQ%3D%3D
IP 172.67.160.121:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9eb98605b23e132a3fa07b9bd7becb67
072cddfeb2e8ae0956f574afac0df5ceb4498598
755e625a5077db8902d6eddb3c5499911faf4211d38b930fd0285ee8ee780074
GET /noid/slope?lame=2H9bknzlz6BNNCcn10k5gQ%3D%3D HTTP/1.1
Host: poqueras.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bercioles.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 00:00:06 GMT
content-type: text/html;charset=ISO-8859-1
referrer-policy: origin
cache-control: no-store, no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1kZbvm4t6%2BzqAH9s1oZe%2FEj4TKkXsA8quw2EDoiF5pTs3qsEAUgldMCTAteBcdapuAXwqAioLQZfSgzUIz9VxgNDy8xiFm7hh0Ehw6C6k8gzGZ7ctwhh9mWpjNkKxFQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76305926a95cb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81bf3de5bcfa3974af4e36376f4cff07
3221e2b38051aef5d3bc68f3d2fdb6a012bb394b
fa35b626980c259b3b761a4564663a2fbafab4b5456eefd1da3d68f24a32d589
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "FA35B626980C259B3B761A4564663A2FBAFAB4B5456EEFD1DA3D68F24A32D589"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Tue, 01 Nov 2022 05:59:37 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81bf3de5bcfa3974af4e36376f4cff07
3221e2b38051aef5d3bc68f3d2fdb6a012bb394b
fa35b626980c259b3b761a4564663a2fbafab4b5456eefd1da3d68f24a32d589
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "FA35B626980C259B3B761A4564663A2FBAFAB4B5456EEFD1DA3D68F24A32D589"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Tue, 01 Nov 2022 05:59:37 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash df470919311cc0786eafb387f0854e35
50beeea0eb69c86e9435abac0329b9bc02ec2ca9
3dfeff082e7185740aa0921fd443c4eca6f4fd00c6b154924ff1dd8406a111a2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "3DFEFF082E7185740AA0921FD443C4ECA6F4FD00C6B154924FF1DD8406A111A2"
Last-Modified: Mon, 31 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15954
Expires: Tue, 01 Nov 2022 04:26:00 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash df470919311cc0786eafb387f0854e35
50beeea0eb69c86e9435abac0329b9bc02ec2ca9
3dfeff082e7185740aa0921fd443c4eca6f4fd00c6b154924ff1dd8406a111a2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "3DFEFF082E7185740AA0921FD443C4ECA6F4FD00C6B154924FF1DD8406A111A2"
Last-Modified: Mon, 31 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15954
Expires: Tue, 01 Nov 2022 04:26:00 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7957
Expires: Tue, 01 Nov 2022 02:12:43 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7957
Expires: Tue, 01 Nov 2022 02:12:43 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7957
Expires: Tue, 01 Nov 2022 02:12:43 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66755462-8673-4014-b8b7-42348fcb2463.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66755462-8673-4014-b8b7-42348fcb2463.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c276081f8178d671424a68ebf0490758
f71414e946798b28442cc46c28041527d9a2f238
f2c46ba608ede798855b886d5eec285599a5c880125c7cd763de18c68f493297
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66755462-8673-4014-b8b7-42348fcb2463.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5297
x-amzn-requestid: 909a78a5-fc98-462f-9acd-809dcff3509d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a49IlGB3IAMF2Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63604236-5bddd0206a5129af3bafde7e;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 21:46:30 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QLyHOOb0cJx1kU7N457Vzq0YRs4XVlZV-GTfho_OIKYPLTeUXtvJ7w==
via: 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 21:46:43 GMT
age: 8003
etag: "f71414e946798b28442cc46c28041527d9a2f238"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd006407a4ea0fbeec2f1351a71f30bc
d1625420cdc79643e759247b0e9ac89dadfbe956
fd461665ee463fad26300630684a11e3c520485e3b001c2f08439d50589ddbb7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10527
x-amzn-requestid: de61bb34-5db0-4e30-8937-d9eb960bf406
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a4vAnHBpIAMFkZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63602b9d-1f4d59b63a268ec06144afbb;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 20:10:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YiQiNvM-5wyduNFW_yEQF44vnaYMuL9oWOaBujo48gqVqo-XnhXjFQ==
via: 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 22:21:09 GMT
age: 5937
etag: "d1625420cdc79643e759247b0e9ac89dadfbe956"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ace7660d2948795997e3c7cb9cf12495
fed9b6693077d233f60cc7394c7b667291ffade7
fd4718a6649572cbaf13f46b8e2961cd1c680afa1494b0bacd5fda9010a95098
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5136
x-amzn-requestid: fa63f569-2f1f-4b73-9f37-c330ed943de2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a5BbgHZaIAMFcRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63604916-16d3bd67219a340609573dcf;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 22:15:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nU430-NvnChNChLvZ_rg5c06-ZzJX8NHpbijNkzdPLZo1XtCCo2cIg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 22:57:59 GMT
age: 3727
etag: "fed9b6693077d233f60cc7394c7b667291ffade7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52af0964-7b9f-421a-9881-3600d8c6f8e4.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52af0964-7b9f-421a-9881-3600d8c6f8e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba04b351b7991163ce2fbbb50e7b9146
9696e761b1442094e358cb8bf9dd4eb9351e333b
0d1a80839ccf615665eafd34f3563d12ef74bfd35c62b3e769a83599a949a58d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52af0964-7b9f-421a-9881-3600d8c6f8e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5930
x-amzn-requestid: 09d266ca-d00a-47cb-aa5e-52bd2a5df5e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a47JYG5ooAMFq7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63603f08-5166163f44ab23133ef2011f;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 21:32:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BZjM-KFKN5aukdq-lusfCzdqtBHkfD0OZuZWHHuNtQvCvFV_xbwp5g==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 21:50:32 GMT
age: 7774
etag: "9696e761b1442094e358cb8bf9dd4eb9351e333b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601f85a4-810b-4251-8f3b-08e2b832a061.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601f85a4-810b-4251-8f3b-08e2b832a061.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8a237b3e7dcb5481bdb688f9d62b7dd
c1c81e9f689d7faa1193baba9895ffc8b0d2de55
ef622da986a55b2a727bddd4295f159ee4fd9d02dfcd96b0ba72a29c9ba4ce17
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601f85a4-810b-4251-8f3b-08e2b832a061.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4571
x-amzn-requestid: 25c92e9d-bf11-461a-8b8b-c2fc894c003f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a47JZGyQIAMFmmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63603f08-41da8005238fe0ec28530f24;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 21:32:56 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lUYX1_V2ISmfo2TOPlbmDM-c37YCAd6BzsVdwR7ozxJHI7Of_uamqA==
via: 1.1 94be61e339880d0097634de6934f7710.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 21:55:24 GMT
age: 7482
etag: "c1c81e9f689d7faa1193baba9895ffc8b0d2de55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa85c6304-6f72-4904-bb25-968b35616ef5.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa85c6304-6f72-4904-bb25-968b35616ef5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f9f8683351154be3300311e3a7e29e3
4fc868d652910c7dcf4ef0e87531de4ee6007c45
d4f012729e0eddc20948ad98d653794204f80344a5840142877dcaa8d2520a71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa85c6304-6f72-4904-bb25-968b35616ef5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7428
x-amzn-requestid: 0eabcd9d-372d-4be6-aa58-26f3ce15d7bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aioHzF3dIAMFQ4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635753cb-7332e0ae76cbda142a20fe13;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 03:11:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iA1PJ6f0-rk_HhrwpNtu5ItDneJFBG8PhDtHpHkhdlcpf6QujNmuDQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 09:08:55 GMT
age: 53471
etag: "4fc868d652910c7dcf4ef0e87531de4ee6007c45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
trk78.zzzperform.com/l/270226461dc64814f22c.js?sub={yourClickId}&source=ww&wnw=false
172.67.163.214200 OK 12 kB URL HTTP/2 trk78.zzzperform.com/l/270226461dc64814f22c.js?sub={yourClickId}&source=ww&wnw=false
IP 172.67.163.214:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (36828)
Hash f2dea40037a586c961a8b69a1c0680ff
f412ca885ba682142150926692fdee5704c69a6d
aff6929a574425e3879437a95bcc5b6b461dbd23a67d7e45ddcfc8fb76e304c5
GET /l/270226461dc64814f22c.js?sub={yourClickId}&source=ww&wnw=false HTTP/1.1
Host: trk78.zzzperform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://poqueras.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 00:00:06 GMT
content-type: text/html
last-modified: Fri, 27 Mar 2020 14:29:49 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 3564
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fJpMzTva%2BtWFeLvI6vQsimangeGB9crfDbHfh9FQbejAq5rcN4dPLXBrXPmh9ojtPdWLEfpkpHIX060TTrGzC8euq4laYN%2BHRXOPUjEJOtwQzxPguwdQx3VmQGJHUc4YaJwLBvOq5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76305929fdd3b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
t3.lowtid.com/e.php?p=c:7omnig4vvdmjho1zq&d=635151a79ddd643b302b5908&pid=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&s=139445_ww
51.161.115.163302 Found 0 B URL HTTP/1.1 t3.lowtid.com/e.php?p=c:7omnig4vvdmjho1zq&d=635151a79ddd643b302b5908&pid=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&s=139445_ww
IP 51.161.115.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /e.php?p=c:7omnig4vvdmjho1zq&d=635151a79ddd643b302b5908&pid=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&s=139445_ww HTTP/1.1
Host: t3.lowtid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trk78.zzzperform.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 01 Nov 2022 00:00:07 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 12pi7agi21
Raund: 1um
Location: https://pdxx-7fmavzpxk2xlm-4-2.lowsea.fun/emw/v1/dt?sid=67.no.firefox.&k=bfb&url=https%3A%2F%2Ftrk78.zzzperform.com%2F&xrw=&lid=63606187aa40815e576243b1&fid=67
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5932290d8317cfd8b48ac1171ce25958
90a129aa0005045075bd6b18a74cfbdfc405620a
cdc73eb5bcfc4498d563433c51e996cf4caa70a08429abd034c57d3bd74867ac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CDC73EB5BCFC4498D563433C51E996CF4CAA70A08429ABD034C57D3BD74867AC"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=428
Expires: Tue, 01 Nov 2022 00:07:15 GMT
Date: Tue, 01 Nov 2022 00:00:07 GMT
Connection: keep-alive
dakotatraff.com/l/270226461dc64814f22c?sub={yourClickId}&source=ww&wnw=false
172.67.161.197302 Found 164 B URL HTTP/2 dakotatraff.com/l/270226461dc64814f22c?sub={yourClickId}&source=ww&wnw=false
IP 172.67.161.197:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 813f9846b49c0ada805648edf1b2fdbd
caa24890460f73e6a72bb49426351e67e83b053d
8f03491247cbfa8a2e60e0f7ec62d63b5070659f60383a1c81abeb2b20221be3
GET /l/270226461dc64814f22c?sub={yourClickId}&source=ww&wnw=false HTTP/1.1
Host: dakotatraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://poqueras.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 01 Nov 2022 00:00:06 GMT
location: https://trk78.zzzperform.com/l/270226461dc64814f22c.js?sub={yourClickId}&source=ww&wnw=false
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZQDo73qGWdk1p%2FvT0yPv%2BLZx8mqkdu1imvOEtR2unEFCsi6jbjl%2BQX0jrLbe3msDlqm%2FDv0UIad2q33cA5ojZz7D8hGekZJrJtf4%2FKUi%2BBdtAJH%2Fky8FH%2F4BYjUw204ZdeU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763059290efdb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
t5.lowtid.com/d.php?p=c:ub_a64rij70pog14q&d=6351542976534b739b5850d5&pid=63606187aa40815e576243b1&source=67.no.firefox.
51.161.115.163302 Found 0 B URL HTTP/1.1 t5.lowtid.com/d.php?p=c:ub_a64rij70pog14q&d=6351542976534b739b5850d5&pid=63606187aa40815e576243b1&source=67.no.firefox.
IP 51.161.115.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /d.php?p=c:ub_a64rij70pog14q&d=6351542976534b739b5850d5&pid=63606187aa40815e576243b1&source=67.no.firefox. HTTP/1.1
Host: t5.lowtid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk78.zzzperform.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 01 Nov 2022 00:00:08 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 12pi7lnzt9
Raund: 1uq
Location: https://67.us.blowingwind.xyz/feed/?link=true&tid=67&subid=67.no.windows&ref=https%3A%2F%2Ftrk78.zzzperform.com%2F&s1=63606188a6593414732f397c
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a365609bb2c6c108bf922e547dcbaa8
e332e8b7e70304b2c2c76b6c44b78eb9de4db345
862d4a23f4f0be13702d7a14644decffcb69e48a1a1016ebcd5ec5013bc2210a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "862D4A23F4F0BE13702D7A14644DECFFCB69E48A1A1016EBCD5EC5013BC2210A"
Last-Modified: Mon, 31 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21544
Expires: Tue, 01 Nov 2022 05:59:12 GMT
Date: Tue, 01 Nov 2022 00:00:08 GMT
Connection: keep-alive
67.us.blowingwind.xyz/feed/?link=true&tid=67&subid=67.no.windows&ref=https%3A%2F%2Ftrk78.zzzperform.com%2F&s1=63606188a6593414732f397c
23.235.251.114301 Moved Permanently 0 B URL HTTP/1.1 67.us.blowingwind.xyz/feed/?link=true&tid=67&subid=67.no.windows&ref=https%3A%2F%2Ftrk78.zzzperform.com%2F&s1=63606188a6593414732f397c
IP 23.235.251.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feed/?link=true&tid=67&subid=67.no.windows&ref=https%3A%2F%2Ftrk78.zzzperform.com%2F&s1=63606188a6593414732f397c HTTP/1.1
Host: 67.us.blowingwind.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk78.zzzperform.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache
Location: https://redir.tealwinds.xyz/click/invalid/?tid=67&subid=67.no.windows
Date: Tue, 01 Nov 2022 00:00:10 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 179e0777fa26c2ca5afbdfd32d7125c2
de7d32ad6e46ebdb7dce93d99908b478fe1331e7
bebf5ae51553b00f7d8ed55a3236704a602fe46a283ea4746467bd72fa6a5c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BEBF5AE51553B00F7D8ED55A3236704A602FE46A283EA4746467BD72FA6A5C6F"
Last-Modified: Sun, 30 Oct 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4885
Expires: Tue, 01 Nov 2022 01:21:35 GMT
Date: Tue, 01 Nov 2022 00:00:10 GMT
Connection: keep-alive
redir.tealwinds.xyz/click/invalid/?tid=67&subid=67.no.windows
198.211.113.186302 Found 224 B URL HTTP/1.1 redir.tealwinds.xyz/click/invalid/?tid=67&subid=67.no.windows
IP 198.211.113.186:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, ASCII text, with no line terminators
Hash 585810573a1a686b9cd3c49ef3d3e912
d5b8220a03ba07d2bee9346ae06e074f4285675c
a004b5fe2cfc5d4163625c61ce2c66699b52d0956b14bff1f18f21f71487a755
GET /click/invalid/?tid=67&subid=67.no.windows HTTP/1.1
Host: redir.tealwinds.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk78.zzzperform.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
X-Powered-By: Express
Surrogate-Control: no-store
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
Pragma: no-cache
Expires: 0
Location: https://t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p
Vary: Accept
Content-Type: text/html; charset=utf-8
Content-Length: 224
Date: Tue, 01 Nov 2022 00:00:10 GMT
Connection: keep-alive
Keep-Alive: timeout=5
t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p
51.161.115.163302 Found 0 B URL HTTP/1.1 t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p
IP 51.161.115.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p HTTP/1.1
Host: t2.lowtid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk78.zzzperform.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 01 Nov 2022 00:00:10 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 1217p3t0dz
Raund: 1yh
Location: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0d6497453fa448d686f5e7c2d7f4a20
f6a219bac5b221fc38a16049005b346d71911333
3bcad33d44663ac3287cb74b0429b32bf0e62b33f00b2d06814b868b78f61d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3BCAD33D44663AC3287CB74B0429B32BF0E62B33F00B2D06814B868B78F61D48"
Last-Modified: Sun, 30 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19114
Expires: Tue, 01 Nov 2022 05:18:45 GMT
Date: Tue, 01 Nov 2022 00:00:11 GMT
Connection: keep-alive
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p
51.83.143.92200 OK 490 B URL HTTP/1.1 ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p
IP 51.83.143.92:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (537)
Hash b1e6dceed9b516118edddba0d01d1d92
60c3b3ac3a3c9002e8b5b64fc25d014a3536b6dd
7a005398b328c24583a982e12346f65b32d2236799a1bdeebc8e8310f88ca5f0
Analyzer Verdict Alert quad9 Sinkholed
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk78.zzzperform.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 01 Nov 2022 00:00:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=6360618b9d5c440c657bab69; expires=Fri, 04-Nov-2022 00:00:11 GMT; Max-Age=259200; path=/; domain=ron.trffclb.com; HttpOnly
Content-Encoding: gzip
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p&bv=1
51.83.143.92302 Found 0 B URL HTTP/1.1 ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p&bv=1
IP 51.83.143.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p&bv=1 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p
Cookie: bt-603611c5b7eaf46891533240=6360618b9d5c440c657bab69
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 01 Nov 2022 00:00:11 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=ron.trffclb.com; HttpOnly
Round: 119cdtswvl
Raund: 2g2
Location: https://popcash.net/world/go/134600/317194
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2900875a983c560083e7b18f92e0e5f2
1a0f3e3ea471c1fb7208510fdb6e4f9ecc0cbe9e
bd1c20426329fa2be7732a4c654a84a4003af92307623ca314d0312534ae68cc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6595
Cache-Control: max-age=99861
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 00:00:11 GMT
Etag: "635f2add-117"
Expires: Wed, 02 Nov 2022 03:44:32 GMT
Last-Modified: Mon, 31 Oct 2022 01:54:37 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ron.trffclb.com/favicon.ico
51.83.143.92200 OK 20 B URL HTTP/1.1 ron.trffclb.com/favicon.ico
IP 51.83.143.92:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 01 Nov 2022 00:00:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
popcash.net/world/go/134600/317194
104.21.52.38301 Moved Permanently 162 B URL HTTP/2 popcash.net/world/go/134600/317194
IP 104.21.52.38:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /world/go/134600/317194 HTTP/1.1
Host: popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ron.trffclb.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Tue, 01 Nov 2022 00:00:11 GMT
content-type: text/html
content-length: 162
location: http://ps.popcash.net/go/134600/317194
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=igD323cmtNZDRbtqCcVLS45QHpCmIzLR7n7R5AWaCDlhCJA%2F87z%2B%2BH%2BYKYHOOgJnALPI92cl5uuOs7pi6R3KC1oWU7IbLJvBfhfXlJU2EJ7ooy7Wp5aEqdYOV%2ByD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 763059466ce8b51b-OSL
X-Firefox-Spdy: h2
ps.popcash.net/go/134600/317194
34.232.21.200200 OK 272 B URL HTTP/1.1 ps.popcash.net/go/134600/317194
IP 34.232.21.200:0
File type HTML document, ASCII text
Hash 489c8ac0b26ed4d88b86e90442eaecc0
e0a2a4ca9398f6173023c0f79c793da33d0b88cc
e48f27f1ee3dba5f30461fff253146fc2e5897b3f53a2dc83a0474e48fd77e87
GET /go/134600/317194 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html
Date: Tue, 01 Nov 2022 00:00:11 GMT
Server: nginx
Vary: Accept-Encoding
Content-Length: 272
Connection: keep-alive
ps.popcash.net/ad/ad?p=134600&w=317194&t=0a886db387ec67ad&r=&vw=1280&vh=0
34.232.21.200303 See Other 0 B URL HTTP/1.1 ps.popcash.net/ad/ad?p=134600&w=317194&t=0a886db387ec67ad&r=&vw=1280&vh=0
IP 34.232.21.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ad/ad?p=134600&w=317194&t=0a886db387ec67ad&r=&vw=1280&vh=0 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ps.popcash.net/go/134600/317194
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Date: Tue, 01 Nov 2022 00:00:11 GMT
Location: http://dipaka-ead.com/zcvisitor/27cac0a3-5978-11ed-afc7-12ee95acec45/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed#pc151445
Server: nginx
Content-Length: 0
Connection: keep-alive
dipaka-ead.com/zcvisitor/27cac0a3-5978-11ed-afc7-12ee95acec45/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed
3.208.247.235302 0 B URL HTTP/1.1 dipaka-ead.com/zcvisitor/27cac0a3-5978-11ed-afc7-12ee95acec45/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed
IP 3.208.247.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zcvisitor/27cac0a3-5978-11ed-afc7-12ee95acec45/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Date: Tue, 01 Nov 2022 00:00:11 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Location: https://www.affectionwave.com/
Server: eCRVAMXx
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 80f303f19a42449306371f158d03f42d
82209daddd83a0254f2e1eb901e2dd9a6fb1e54e
a74206d18a13b05c6ca6a5c27f2cf84ac25c48d110cd67774b21366c23c5388f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A74206D18A13B05C6CA6A5C27F2CF84AC25C48D110CD67774B21366C23C5388F"
Last-Modified: Sun, 30 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 01 Nov 2022 06:00:12 GMT
Date: Tue, 01 Nov 2022 00:00:12 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2cfe049433e4c9f547c3204de6e04e28
f1a51b3bd67e2244fa9581471838483bdc50fc95
b483ff5359c23e1a800755ffef6c989d2b41c0da18883eb01389f551436917ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 00:00:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-154588724-16
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-154588724-16
IP 142.250.74.168:0
File type ASCII text, with very long lines (1588)
Hash 5065a8167a1e6dd0003360600d4748de
a70ebe6b7603beea6c958675cfd305d336724f08
9014e280846f949c891ff322993cc5315a88c0c605be4601c282124123903eec
GET /gtag/js?id=UA-154588724-16 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 01 Nov 2022 00:00:13 GMT
expires: Tue, 01 Nov 2022 00:00:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43567
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.affectionwave.com/
178.62.22.16302 Found 12 kB IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
Hash 394a0d538cd28a309a5fad1877ac4676
cd4a14778541069610d70aedd7808d8d704e1173
57c1107d3b3a589d5b85362e8b2d999676ff56a1fd2af759e3e37ebbf30b8395
GET / HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 01 Nov 2022 00:00:12 GMT
content-type: text/html; charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
set-cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; path=/; secure; HttpOnly
userReferrerUrl=ps.popcash.net; expires=Thu, 03-Nov-2022 00:00:12 GMT; Max-Age=172800; path=/; secure; HttpOnly
cache-control: max-age=0, private, must-revalidate, no-cache, private
location: /join
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2
178.62.22.16200 OK 20 kB URL HTTP/2 www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format (Version 2), TrueType, length 20524, version 1.0\012- data
Hash 0a082fc9f0c23f322b0e39f9084ba52b
dec485cd41c9508dbea59bbeb5ddd5515361e190
44e9527b0677c5db49883b18b6812b45e079279f2624786fc05067188bf7a307
GET /static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.affectionwave.com/static/assets/ab581ec0.css
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/octet-stream
content-length: 20524
last-modified: Mon, 18 Dec 2017 07:34:44 GMT
etag: "5a376f94-502c"
access-control-allow-origin: *
accept-ranges: bytes
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/24e5e0b3.js
178.62.22.16200 OK 36 kB URL HTTP/2 www.affectionwave.com/static/assets/24e5e0b3.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (42861), with no line terminators
Hash 367a7023797dbafd8170d745a742945c
15f37d209f8bba5b77dd5618c3d09debb3b1a0d8
1ae3f2f372cec226b6d2ef5a2b17401b54bb3cb77996ac09d47d1015c12ea6f2
GET /static/assets/24e5e0b3.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-a76d"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/js/messages/no/messages_jquery_jab.js
178.62.22.16200 OK 21 kB URL HTTP/2 www.affectionwave.com/js/messages/no/messages_jquery_jab.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash bab31f8fd1d130a91391f10f2d458191
3319de05eff0bf2a8add84f28272bd8338e354fa
ea73e76166e4328830842257afb0a486cace1194c766668ed512abfb07c58943
GET /js/messages/no/messages_jquery_jab.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/javascript;charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=2592000, private
last-modified: Thu, 01 Jan 1970 01:31:29 GMT
expires: Thu, 01 Dec 2022 00:00:13 GMT
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/5497bff0.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/5497bff0.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/5497bff0.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-cb1"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/a45513bc.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/a45513bc.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/a45513bc.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 12:07:35 GMT
etag: W/"635bc607-24bd9"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/949c3926.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/949c3926.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/949c3926.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-248"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/_dating/_default/s/payment-logos.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/_dating/_default/s/payment-logos.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/_dating/_default/s/payment-logos.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 10:16:05 GMT
etag: W/"62cfece5-c79"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/js/jquery.autocomplete.js?v=5489
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/js/jquery.autocomplete.js?v=5489
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/js/jquery.autocomplete.js?v=5489 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 08:55:25 GMT
etag: W/"6322e87d-43b2"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.affectionwave.com/resources/get/4/39100eb00726207674808593babbf9e2
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/resources/get/4/39100eb00726207674808593babbf9e2
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /resources/get/4/39100eb00726207674808593babbf9e2 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/dd6a3ac9.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/dd6a3ac9.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/dd6a3ac9.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 08:42:53 GMT
etag: W/"633e950d-bfe0"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/63f0b6bf.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/63f0b6bf.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/63f0b6bf.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-ae0"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
bercioles.com/redirect?id=737&auth=337e46e86a8ca0952bfc1828039f4d15ccd12eea&sid=90&clk=BCYI850AAAGEMHzyawAAAycAAABaAAABNQAAAAAP
172.67.138.217200 OK 0 B URL HTTP/2 bercioles.com/redirect?id=737&auth=337e46e86a8ca0952bfc1828039f4d15ccd12eea&sid=90&clk=BCYI850AAAGEMHzyawAAAycAAABaAAABNQAAAAAP
IP 172.67.138.217:0
GET /redirect?id=737&auth=337e46e86a8ca0952bfc1828039f4d15ccd12eea&sid=90&clk=BCYI850AAAGEMHzyawAAAycAAABaAAABNQAAAAAP HTTP/1.1
Host: bercioles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://armr.trckswrm.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 01 Nov 2022 00:00:06 GMT
content-type: text/html;charset=utf-8
referrer-policy: origin
vary: accept-encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=smvl54z%2F%2BQ%2BtbrjlX%2F7xrbQNwMZfGRMgKHOq5JLjc1%2FiEG%2BzGuIFKE7W8%2ByfVmwqG04NrmMloaOou74S6cfYf6JH8PYw3%2FTuEOtoz7ZLsc6wpThiGPn%2FCLR86wXExBSO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76305924ad8db4e8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/211b41b8.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/211b41b8.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/211b41b8.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-892"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/c247a8e1.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/c247a8e1.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/c247a8e1.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-947"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/5b0b6082.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/5b0b6082.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/5b0b6082.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-666"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/95d6c938.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/95d6c938.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/95d6c938.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-312"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/ab581ec0.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/ab581ec0.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/ab581ec0.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Tue, 04 Oct 2022 13:02:46 GMT
etag: W/"633c2ef6-c8a1"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/be5b1fa8.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/be5b1fa8.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/be5b1fa8.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-10df"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/32df6410.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/32df6410.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/32df6410.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:51 GMT
etag: W/"62f10a2f-206f"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/37e7367d.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/37e7367d.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/37e7367d.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-37b"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/f67027d8.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/f67027d8.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/f67027d8.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-c7"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/resources/get/4/c1321eb5f027095b5c50f520a56fed23
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/resources/get/4/c1321eb5f027095b5c50f520a56fed23
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /resources/get/4/c1321eb5f027095b5c50f520a56fed23 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/fbf73bde.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/fbf73bde.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/fbf73bde.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-1ba5"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/2409f906.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/2409f906.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/2409f906.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-2325"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/770ad0e4.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/770ad0e4.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/770ad0e4.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-8b6"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/js/messages/no/messages_notifications.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/js/messages/no/messages_notifications.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /js/messages/no/messages_notifications.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/javascript;charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=2592000, private
last-modified: Thu, 01 Jan 1970 01:31:29 GMT
expires: Thu, 01 Dec 2022 00:00:13 GMT
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/_dating/_default/i/payment_logos/diners.svg
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/_dating/_default/i/payment_logos/diners.svg
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/_dating/_default/i/payment_logos/diners.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-21e3"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/f608025f.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/f608025f.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/f608025f.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-8539"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/9ca75e15.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/9ca75e15.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/9ca75e15.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-549"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/fa6902f0.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/fa6902f0.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/fa6902f0.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-402"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/83ab9aeb.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/83ab9aeb.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/83ab9aeb.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 12:07:35 GMT
etag: W/"635bc607-baf"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/846cfccf.js
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/846cfccf.js
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/846cfccf.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 09:32:57 GMT
etag: W/"635a5049-20f30"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/_dating/_default/i/payment_logos/jcb.svg
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/_dating/_default/i/payment_logos/jcb.svg
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/_dating/_default/i/payment_logos/jcb.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-10ab"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/resources/logo
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/resources/logo
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /resources/logo HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/png
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/f56f0d59.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/f56f0d59.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/f56f0d59.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-f80"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.affectionwave.com/resources/get/4/cc9166cd2f801d8aeac627092b2c813f
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/resources/get/4/cc9166cd2f801d8aeac627092b2c813f
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /resources/get/4/cc9166cd2f801d8aeac627092b2c813f HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.affectionwave.com/resources/get/4/1a1def99fcc6d5942a5dd7639de1533d
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/resources/get/4/1a1def99fcc6d5942a5dd7639de1533d
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /resources/get/4/1a1def99fcc6d5942a5dd7639de1533d HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/fad0beb3.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/fad0beb3.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/fad0beb3.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 12 Sep 2022 06:40:07 GMT
etag: W/"631ed447-13c3"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
www.affectionwave.com/static/assets/1d9702dc.css
178.62.22.16200 OK 0 B URL HTTP/2 www.affectionwave.com/static/assets/1d9702dc.css
IP 178.62.22.16:0
ASN #14061 DIGITALOCEAN-ASN
GET /static/assets/1d9702dc.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-581"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2