Overview

URLf9fiq35gw9test3.phochancla.cf/q3bCCwDV?keyword=sthomas@slurpmail.net&sub1=clear&sub3=carlislestudents.org
IP 146.190.75.35 (United States)
ASN#0
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-29 23:55:45 UTC
StatusLoading report..
IDS alerts0
Blocklist alert4
urlquery alerts No alerts detected
Tags None

Domain Summary (28)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
r3.o.lencr.org (11) 344 No data No data 23.36.77.32
ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-29 05:48:55 UTC 34.102.187.140
js.sentry-cdn.com (1) 5259 2018-07-13 11:42:06 UTC 2022-11-29 07:25:51 UTC 151.101.2.217
ajax.googleapis.com (1) 12905 2013-08-16 09:51:31 UTC 2022-11-29 09:57:13 UTC 142.250.74.10
www.pornhubpremium.com (2) 142013 2014-02-24 07:26:05 UTC 2020-04-11 12:46:17 UTC 66.254.114.33
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-29 05:51:44 UTC 34.117.237.239
e1.o.lencr.org (2) 6159 No data No data 23.36.77.32
her-cupid.com (8) 698724 2021-08-09 12:54:36 UTC 2022-11-29 10:30:18 UTC 54.39.22.228
cdnjam.com (1) 204001 2021-02-18 07:53:51 UTC 2022-11-29 09:48:30 UTC 104.21.58.242
r3.o.lencr.org (11) 344 No data No data 95.101.11.115
www.pornhub.com (2) 10781 2012-05-21 06:55:53 UTC 2020-05-05 12:49:23 UTC 66.254.114.41
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
app.api-push.com (2) 307671 2021-12-06 12:20:56 UTC 2022-11-29 09:48:30 UTC 172.64.138.29
accounts.google.com (1) 81 2016-09-05 09:39:47 UTC 2022-11-29 06:55:08 UTC 142.250.74.109
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
o65532.ingest.sentry.io (1) 747982 2022-06-02 01:41:52 UTC 2022-11-29 08:49:08 UTC 34.120.195.249
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.215.94.42
www.facebook.com (1) 99 2012-05-21 00:23:41 UTC 2021-06-08 06:38:51 UTC 31.13.72.36
dateexotic.com (1) 0 2020-10-21 10:51:18 UTC 2022-11-29 06:14:51 UTC 104.21.34.109 Unknown ranking
ocsp.pki.goog (6) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.131
alexatracker.com (1) 0 2020-10-28 18:44:06 UTC 2022-11-29 10:30:03 UTC 104.21.85.99 Unknown ranking
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 172.64.155.188
www.xvideos.com (1) 11464 2012-05-21 18:29:12 UTC 2020-03-18 14:38:47 UTC 185.88.181.3
f9fiq35gw9test3.phochancla.cf (1) 0 No data No data 146.190.75.35 Unknown ranking
browser.sentry-cdn.com (1) 4393 2018-07-13 11:42:06 UTC 2022-11-29 07:21:29 UTC 151.101.2.217
lh3.google.com (1) 213 2013-06-02 21:16:56 UTC 2020-05-01 19:11:57 UTC 172.217.21.174
pornhub.com (1) 4903 2012-05-22 01:01:29 UTC 2022-11-29 11:19:41 UTC 66.254.114.41

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-29 2 her-cupid.com/static/BgAA/video-1.mp4 Phishing
2022-11-29 2 her-cupid.com/static/BgAA/video-1.mp4 Phishing
2022-11-29 2 her-cupid.com/stats Phishing
2022-11-29 2 her-cupid.com/stats Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected

Files

URL her-cupid.com/static/BgAA/video-1.mp4
IP  54.39.22.228
Magic COM executable for DOS\012- data
Size 41671
MD5 5dbda6e8152f6a61a84ab7df799d0817
SHA1 7498a908fe8d358fd8d5e935bb2096112b7865df
SHA256 50bf23c7a02b8fa37f93d3742f9e649b1e87e6155acaefba74cc7046a66e67fa
Analyzer Analysed Verdict Comment
VirusTotal 0/0  VirusTotal Report

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 146.190.75.35
Date UQ / IDS / BL URL IP
2023-02-01 10:37:20 +0000 0 - 4 - 0 evism7vn9test3.ifvoma.tk/q3bCCwDV?keyword=tim (...) 146.190.75.35
2023-02-01 01:29:52 +0000 0 - 2 - 0 jm4niaqktest3.birthzarnelomu.ml/TSKtBH6B?keyw (...) 146.190.75.35
2023-01-26 20:11:41 +0000 0 - 2 - 0 5wjg8u5stest3.discecalrola.ml/TSKtBH6B?keywor (...) 146.190.75.35
2023-01-26 09:59:43 +0000 0 - 5 - 15 n6q5ol0h1qtest3.acpisibroriset.gq/q3bCCwDV?ke (...) 146.190.75.35
2023-01-24 21:34:39 +0000 0 - 0 - 16 v91h86vgpt7nxvtest3.disderfthomulming.tk/q3bC (...) 146.190.75.35


Last 5 reports on ASN:
Date UQ / IDS / BL URL IP
2023-02-01 12:59:21 +0000 0 - 1 - 1 down.nishuoa.com/Mobile_qm2014chs_15850.exe 211.93.212.118
2023-02-01 12:43:19 +0000 0 - 0 - 5 stellarfutureblog.com/survey/MX/ATT 164.92.171.42
2023-02-01 12:38:40 +0000 0 - 0 - 1 gs.orenhofen.de/films/teens-try-porn-xxx-exci (...) 92.205.64.100
2023-02-01 12:33:11 +0000 0 - 1 - 1 service-aramexza.instawp.xyz/wp-plugins/panel/ 146.190.48.164
2023-02-01 12:32:19 +0000 0 - 0 - 5 stearncomnmnunity.com/profiIes/765122579382696185 185.149.120.37


Last 1 reports on domain: phochancla.cf
Date UQ / IDS / BL URL IP
2022-11-29 23:55:45 +0000 0 - 0 - 4 f9fiq35gw9test3.phochancla.cf/q3bCCwDV?keywor (...) 146.190.75.35


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-12-11 07:38:17 +0000 0 - 0 - 6 1d6cf36e782.trfcompny-offer.com/ 94.237.103.119
2022-12-10 14:38:28 +0000 0 - 0 - 6 4jshdbfjsdf44.monster/Purb99d0745f9c875782493 (...) 188.72.236.136
2022-12-10 11:08:40 +0000 0 - 0 - 4 goatrck.com/tracking.php 185.32.28.169
2022-12-04 18:49:58 +0000 0 - 0 - 6 goatraffik.com/tracking.php 185.32.28.169
2022-12-04 14:43:54 +0000 0 - 0 - 4 g0td0main.com/Purb99d0745f9c8757824933c881516 (...) 188.72.236.136

JavaScript

Executed Scripts (11)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (63)


Request Response
 
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6244 

                                        
                                            
Expires: Wed, 30 Nov 2022 01:39:39 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:35 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 5811 

                                        
                                            
Cache-Control: max-age=130347 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:35 GMT 

                                        
                                            
Etag: "6385df6f-1d7" 

                                        
                                            
Expires: Thu, 01 Dec 2022 12:08:02 GMT 

                                        
                                            
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT 

                                        
                                            
Server: ECS (ska/F715) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 55 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text

                                                Size:   55

                                                Md5:    9f073354411bbaf7a319b1519f10b4b7

                                                Sha1:   571498f38548829bf186f49f5be9d5fa6e689a68

                                                Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3452 

                                        
                                            
Expires: Wed, 30 Nov 2022 00:53:07 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:35 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json 

                                        
                                    
                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 939 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 23:17:56 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 2259 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    14cd9a0afb6ba9a763651d5112760d1e

                                                Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa

                                                Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.160.144.191

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: binary/octet-stream 

                                        
                                    
                                        

                                        
                                            
x-amz-id-2: uSyykEAJQGM4ZtQaReoZsApxFWu4K9AE21BpV0O1nCuAhWUx6/f0kPAChMxoXwQxw6ZBUuvgjAc= 

                                        
                                            
x-amz-request-id: FQCVRHS12F2CAD8T 

                                        
                                            
content-disposition: attachment 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
content-length: 5348 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 23:45:39 GMT 

                                        
                                            
age: 596 

                                        
                                            
last-modified: Thu, 10 Nov 2022 09:21:27 GMT 

                                        
                                            
etag: "9ebddc2b260d081ebbefee47c037cb28" 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    9ebddc2b260d081ebbefee47c037cb28

                                                Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39

                                                Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /q3bCCwDV?keyword=sthomas@slurpmail.net&sub1=clear&sub3=carlislestudents.org HTTP/1.1 

                                        
                                            
Host: f9fiq35gw9test3.phochancla.cf 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1
search 
                                         146.190.75.35

                                        
                                            HTTP/1.1 302 Found 

                                        
                                            
Content-Type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.22.1 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:35 GMT 

                                        
                                            
Content-Length: 0 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cache-Control: no-cache, no-store, must-revalidate 

                                        
                                            
Expires: 0 

                                        
                                            
Location: https://dateexotic.com/agEA?usid=s8hnpa13p343&email=sthomas%40slurpmail.net&sub1=clear_main&prid=s8hnpa13p343 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Set-Cookie: _subid=s8hnpa13p343;Expires=Friday, 30-Dec-2022 23:55:35 GMT;Max-Age=2678400;Path=/
b15e4=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjExOVwiOjE2Njk3NjYxMzR9LFwiY2FtcGFpZ25zXCI6e1wiMzJcIjoxNjY5NzY2MTM0fSxcInRpbWVcIjoxNjY5NzY2MTM0fSJ9.iMs2Hqu5MyN4EjficU00GatRLf3AcY7hIJ5BrDUFOEg;Expires=Tuesday, 29-Oct-2075 23:51:10 GMT;Max-Age=1669852535;Path=/
_token=uuid_s8hnpa13p343_s8hnpa13p34363869bf701c552.48885064;Expires=Friday, 30-Dec-2022 23:55:35 GMT;Max-Age=2678400;Path=/ 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:35 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: e1.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 346 

                                        
                                            
ETag: "CB8F23C5DD13BBBAE1790D52078A6D91BB554FA1DD0AFFAF57A043F9A5EE7476" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=2249 

                                        
                                            
Expires: Wed, 30 Nov 2022 00:33:04 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:35 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: e1.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 346 

                                        
                                            
ETag: "CB8F23C5DD13BBBAE1790D52078A6D91BB554FA1DD0AFFAF57A043F9A5EE7476" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=2249 

                                        
                                            
Expires: Wed, 30 Nov 2022 00:33:04 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:35 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json 

                                        
                                    
                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 329 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 23:08:56 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 2799 

                                        
                                            
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
etag: "1648230346554" 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 5308 

                                        
                                            
Cache-Control: max-age=124781 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:35 GMT 

                                        
                                            
Etag: "6385cba8-1d7" 

                                        
                                            
Expires: Thu, 01 Dec 2022 10:35:16 GMT 

                                        
                                            
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT 

                                        
                                            
Server: ECS (ska/F715) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 55 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text

                                                Size:   55

                                                Md5:    9f073354411bbaf7a319b1519f10b4b7

                                                Sha1:   571498f38548829bf186f49f5be9d5fa6e689a68

                                                Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /s/gts1p5/WN5AJRoEZfI HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:36 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: scaffolding on HTTPServer2 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /?r=aHR0cHM6Ly93d3cyLmRhdGVleG90aWMuY29tL2FnRUE%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%3D&h=b659d514a0907940f15b7c8462e4c875 HTTP/1.1 

                                        
                                            
Host: alexatracker.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://dateexotic.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         104.21.85.99

                                        
                                            HTTP/2 301 Moved Permanently 

                                        
                                    
                                        

                                        
                                            
date: Tue, 29 Nov 2022 23:55:36 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
location: https://www2.dateexotic.com/agEA?usid=s8hnpa13p343&email=sthomas%40slurpmail.net&sub1=clear_main&prid=s8hnpa13p343&bdata=eyJkYXRhIjp7InBsYXRmb3JtIjoiTGludXggeDg2XzY0In0sImV4dHJhIjp7Ik5hdmlnYXRvci5wbGF0Zm9ybSI6WyJMaW51eCBwbGF0Zm9ybSBhbmQgV2luZG93cyB1c2VyIGFnZW50IGRvIG5vdCBtYXRjaCJdfSwiZXJyb3JzIjp7ImlmcmFtZSI6WyJjYW4ndCBhY2Nlc3MgcHJvcGVydHkgXCJhcHBlbmRDaGlsZFwiLCBkb2N1bWVudC5ib2R5IGlzIG51bGwiXSwiY2FudmFzX2NvbnRleHQiOlsiRmFpbGVkIHRvIGdldCBjYW52YXMgY29udGV4dCJdfSwiYm90U2NvcmUiOiIyNCJ9&tbsession=7728635488651090936&c=2645646549 

                                        
                                            
set-cookie: trbarid=7728635488651090936;expires=Thu, 28 Nov 2024 23:55:36 GMT;secure;HttpOnly;SameSite=None;path=/ 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ii72Y6cQFxhIy6l1JpJWlPyRLU30c4m6nr9oIEPlK%2FSu2SOobnRa9brdlXN2VEYQQ5fofb3ozxTaqTHNRS0mK7bwFRPc4DJlqFsCQodEKiL4f78I6i1gySiZqIJERGAbq4H0"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 771f466ecd94b529-OSL 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /s/gts1p5/WN5AJRoEZfI HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:36 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: scaffolding on HTTPServer2 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: qOZy3sarUK/lNVTfafIENA== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket
search 
                                         34.215.94.42

                                        
                                            HTTP/1.1 101 Switching Protocols 

                                        
                                    
                                        

                                        
                                            
Connection: Upgrade 

                                        
                                            
Upgrade: websocket 

                                        
                                            
Sec-WebSocket-Accept: U5/7SQg2x1luS6aHbGaHfsB3fIk= 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "B264F3E63F403D010F1661AE0498D1EC3212D45142085054A43D1D5EF7779F0E" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6775 

                                        
                                            
Expires: Wed, 30 Nov 2022 01:48:31 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:36 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /FAAA/10317/oth?i=S9-ek2OGm_g&u=7728635488651090936 HTTP/1.1 

                                        
                                            
Host: her-cupid.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://dateexotic.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         54.39.22.228

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
server: nginx/1.18.0 (Ubuntu) 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:36 GMT 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
x-cache-status: HIT 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   12419

                                                Md5:    c6ee9dcc1d34e2c1384d83147b726a7c

                                                Sha1:   3670c924121c23e0e21da2218052d8b14a8b991b

                                                Sha256: 3e3b7e2fefff4b950c585e1dfbdf28f57e7e8a4fe684e17787a7983c18233b78

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /f44bbfb9a37b4915ac9fa50036de00f6.min.js HTTP/1.1 

                                        
                                            
Host: js.sentry-cdn.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://her-cupid.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         151.101.2.217

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript 

                                        
                                    
                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
cache-control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000 

                                        
                                            
x-frame-options: deny 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
x-envoy-attempt-count: 1 

                                        
                                            
x-envoy-upstream-service-time: 11 

                                        
                                            
content-encoding: gzip 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
age: 59 

                                        
                                            
x-served-by: getsentry-web-default-common-production-c5db7b689-f6dl8, cache-bma1653-BMA 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
timing-allow-origin: https://sentry.io 

                                        
                                            
strict-transport-security: max-age=31536000; includeSubDomains 

                                        
                                            
content-length: 1020 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (512)

                                                Size:   1020

                                                Md5:    deb34d7f2c87353155b469a5fe36ce3c

                                                Sha1:   c008bc34f360a1bf8deb464e3a289dde267cd659

                                                Sha256: c6288bbdd02874245a8d4bab2da8a57328ac0571b9e55c80903609155647d345

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 6540 

                                        
                                            
Cache-Control: public, max-age=1209600 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
Etag: "63866bad-37" 

                                        
                                            
Last-Modified: Tue, 29 Nov 2022 20:29:33 GMT 

                                        
                                            
Server: ECS (amb/6B93) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 55 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text

                                                Size:   55

                                                Md5:    9f073354411bbaf7a319b1519f10b4b7

                                                Sha1:   571498f38548829bf186f49f5be9d5fa6e689a68

                                                Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 

                                        
                                            
Host: ajax.googleapis.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.10

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" 

                                        
                                            
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 31021 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Tue, 29 Nov 2022 21:57:45 GMT 

                                        
                                            
expires: Wed, 29 Nov 2023 21:57:45 GMT 

                                        
                                            
cache-control: public, max-age=31536000, stale-while-revalidate=2592000 

                                        
                                            
last-modified: Fri, 08 May 2020 07:05:03 GMT 

                                        
                                            
age: 7072 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   34550

                                                Md5:    75c09fe60f183b90d7e6648b425d2129

                                                Sha1:   fca6b6d9d5325c525028e0445d30d8a28dff206c

                                                Sha256: 6f82aaade433b02a72501922ac679cc59820da667ca6f06319a11fde2407a317

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /cdn/push.min.js HTTP/1.1 

                                        
                                            
Host: cdnjam.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         104.21.58.242

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/x-javascript 

                                        
                                    
                                        

                                        
                                            
date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
content-security-policy: block-all-mixed-content 

                                        
                                            
etag: W/"44c9e373bc246e347c8420a2eb8f54d4" 

                                        
                                            
last-modified: Mon, 06 Jun 2022 20:30:35 GMT 

                                        
                                            
strict-transport-security: max-age=15724800; includeSubDomains 

                                        
                                            
vary: Origin, Accept-Encoding 

                                        
                                            
x-amz-request-id: 16F62D8C82243EE0 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
cache-control: max-age=14400 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 5185 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ehmiQBGSCo50c9W%2BNr1l4HiaTf6RtTUCeJpf6vg7K9%2FDAG9lonCl1GFNIbxtm%2B6E4H%2Byy7IldgitZschbBwIORo95kdH4ux1SSiOaEfadZTjUUXbmsUm1fUjjQf9"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 771f46760ef6b503-OSL 

                                        
                                            
content-encoding: br 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (36273)

                                                Size:   11079

                                                Md5:    bc8ab20ad6be581f920ca9dcc0291e64

                                                Sha1:   6e375a98bde1e1261dd37b901755b3ac4fdb2404

                                                Sha256: ff96f923d154dbc5effb15a35e4e292f9e902306bbdeca9a006099407e613cfa

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=8469 

                                        
                                            
Expires: Wed, 30 Nov 2022 02:16:46 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=8469 

                                        
                                            
Expires: Wed, 30 Nov 2022 02:16:46 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         95.101.11.115

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=18369 

                                        
                                            
Expires: Wed, 30 Nov 2022 05:01:46 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         95.101.11.115

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=18369 

                                        
                                            
Expires: Wed, 30 Nov 2022 05:01:46 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         95.101.11.115

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=18369 

                                        
                                            
Expires: Wed, 30 Nov 2022 05:01:46 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F265a94d3-cdf4-4682-bcea-7cb1b79bc860.png HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 13195 

                                        
                                            
x-amzn-requestid: 1303b72c-fe18-46a3-b3c1-06f3b8550d90 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cYhGvHW6oAMFxgw= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63867bc4-1b3dbbb005a238117076d1f3;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: pw2Wm8mI8MxRAOVsdvvWLEuxPN5ffcgWBZ_KecuuS5stoTHF4hxECg== 

                                        
                                            
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 22:08:33 GMT 

                                        
                                            
age: 6424 

                                        
                                            
etag: "6004b4b7afd22dded903f026d245bc90a6706767" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   13195

                                                Md5:    9fb14804c284e300f976848e30396e9c

                                                Sha1:   6004b4b7afd22dded903f026d245bc90a6706767

                                                Sha256: 1cf96b0b6c83f182d018fa4ffb9924038bf282755091e7bacff2a624220260d5

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7a6f598-362e-4a6c-ba04-330df636e33b.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8498 

                                        
                                            
x-amzn-requestid: f6b92060-88d4-49bd-b60e-94d99feca4e4 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cYiBaGPOIAMFu1Q= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63867d3c-331dacfb087d23881924eef9;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Tue, 29 Nov 2022 21:44:28 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: 5Zv5zu1q8h4GFU6agEcDzSVFYuvF74qu7UBnovs3vH5jpu17cmyxjQ== 

                                        
                                            
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 21:57:37 GMT 

                                        
                                            
age: 7080 

                                        
                                            
etag: "127ac68bac21c88ffc6e09cc6666e93de4746a1f" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8498

                                                Md5:    f3c7e8351884491aeab9323c004bc3f3

                                                Sha1:   127ac68bac21c88ffc6e09cc6666e93de4746a1f

                                                Sha256: e6fa04c502105c43c85c00d39481d2598c6d8fd56540e10107b6668c51597ae4

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /static/BgAA/style.css HTTP/1.1 

                                        
                                            
Host: her-cupid.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers
search 
                                         54.39.22.228

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css 

                                        
                                    
                                        

                                        
                                            
server: nginx/1.18.0 (Ubuntu) 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
content-length: 123755 

                                        
                                            
last-modified: Fri, 23 Oct 2020 08:07:18 GMT 

                                        
                                            
etag: "5f928f36-1e36b" 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (14824)

                                                Size:   123755

                                                Md5:    7eb2e38f11b9e3d7b15255be67d02eae

                                                Sha1:   df3646d9d4c6a14ad23f5e2cc687d98c263ec131

                                                Sha256: d6de2b35ffac79fd3279f17a947576e06ce71eca8ee202b2611cdaf39b370fc5

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa44c8657-c62c-4dd0-8688-d6b89a767fb4.png HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8337 

                                        
                                            
x-amzn-requestid: 88e6ec5a-6b04-4787-91e4-02f316d0d6e2 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cYhgYHViIAMFZrA= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63867c68-10f0d81a09c0ae930f6be726;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:56 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: CQERARyqGc2C8dEihlWw5X9eI6QqdR9Equ683aCy1XkizytQdod9Kw== 

                                        
                                            
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 21:57:25 GMT 

                                        
                                            
age: 7092 

                                        
                                            
etag: "71e4307194ea9fb15d29c8a5e35f9bfd3cb0c6e0" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8337

                                                Md5:    2cb669522a324cd5d9ba1b1743138d38

                                                Sha1:   71e4307194ea9fb15d29c8a5e35f9bfd3cb0c6e0

                                                Sha256: a997731964710b80affb001f7f2e2f05a93550b06c1626279516d78b11332803

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 7298 

                                        
                                            
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cYgDcE3poAMFaAA= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: 8heT2eN5oLbO14R9qLq78Vma_TkteufTyKM5i3K2XoJYXfWNwLMEwQ== 

                                        
                                            
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 21:56:25 GMT 

                                        
                                            
age: 7152 

                                        
                                            
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   7298

                                                Md5:    e00769bd1391b8f4f5b8ab128a825355

                                                Sha1:   e4ddf955e8ac1986045ed55880c43c69e588a021

                                                Sha256: 81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52cf4797-5177-4859-9523-faeb4e38f224.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 9812 

                                        
                                            
x-amzn-requestid: 70bfeb68-0703-44bf-8550-50c759d52d86 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cYgDbFolIAMFYBQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63867a15-73fb65ee2b9161372819207f;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: QQCoNlJBSE2V-IQlZr37dhINTABRu3ms9Y1p4FweO36HD-U6m9vvwg== 

                                        
                                            
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 21:52:45 GMT 

                                        
                                            
age: 7372 

                                        
                                            
etag: "ce411cc5b0a37bbd89551d06d7d0349f45734e97" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   9812

                                                Md5:    5c5277610f3a542571abb53ffb3d4df1

                                                Sha1:   ce411cc5b0a37bbd89551d06d7d0349f45734e97

                                                Sha256: 3bf1105631ef7fda0249a46390ca90f904ea73b0a4f017c2db85326550a80a3f

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 10958 

                                        
                                            
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cYgFHF9oIAMF5lg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: gCt9oHpZ68tLCYHIYpI1XLtADkScxwf12kDFnU0o5WoQIVSzWlqozw== 

                                        
                                            
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 22:16:52 GMT 

                                        
                                            
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07" 

                                        
                                            
age: 5925 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   10958

                                                Md5:    777ce44582c70bf01a31da4cab366f36

                                                Sha1:   57e1d34f146d5ccd9943aa97bcc3158f7103bb07

                                                Sha256: fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /7.22.0/bundle.es5.min.js HTTP/1.1 

                                        
                                            
Host: browser.sentry-cdn.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://her-cupid.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         151.101.2.217

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=utf-8 

                                        
                                    
                                        

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
expires: Wed, 29 Nov 2023 15:51:15 GMT 

                                        
                                            
last-modified: Tue, 29 Nov 2022 13:39:10 GMT 

                                        
                                            
etag: "721a1d0830c504f6bfc4289f478dfe07" 

                                        
                                            
content-encoding: gzip 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
age: 29061 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
server: Fastly 

                                        
                                            
strict-transport-security: max-age=31536000; includeSubDomains 

                                        
                                            
content-length: 20204 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (62148)

                                                Size:   20204

                                                Md5:    721a1d0830c504f6bfc4289f478dfe07

                                                Sha1:   db5a2471eb5798d49e117f17402d396fa07d5d8a

                                                Sha256: 6ae6be0f021a49c7047f31f7992d64f2e8f99c1fef1dc6d0043ec09f4ab54faa

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "2B2383F9CED9A8175201BB3FB857BAB8D68345F8FD6F046D22778133C41C9DC0" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=2845 

                                        
                                            
Expires: Wed, 30 Nov 2022 00:43:02 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /api/6161109/envelope/?sentry_key=f44bbfb9a37b4915ac9fa50036de00f6&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.22.0 HTTP/1.1 

                                        
                                            
Host: o65532.ingest.sentry.io 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://her-cupid.com/ 

                                        
                                            
Content-Type: text/plain;charset=UTF-8 

                                        
                                            
Origin: https://her-cupid.com 

                                        
                                            
Content-Length: 426 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.195.249

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
content-length: 2 

                                        
                                            
access-control-allow-origin: https://her-cupid.com 

                                        
                                            
access-control-expose-headers: retry-after, x-sentry-error, x-sentry-rate-limits 

                                        
                                            
vary: Origin 

                                        
                                            
x-envoy-upstream-service-time: 0 

                                        
                                            
strict-transport-security: max-age=31536000; includeSubDomains; preload 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   2

                                                Md5:    99914b932bd37a50b983c5e7c90ae93b

                                                Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

                                                Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         95.101.11.115

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "2B2383F9CED9A8175201BB3FB857BAB8D68345F8FD6F046D22778133C41C9DC0" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=7409 

                                        
                                            
Expires: Wed, 30 Nov 2022 01:59:06 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            OPTIONS /get-keys HTTP/1.1 

                                        
                                            
Host: app.api-push.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Access-Control-Request-Method: POST 

                                        
                                            
Access-Control-Request-Headers: content-type 

                                        
                                            
Origin: https://her-cupid.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         172.64.138.29

                                        
                                            HTTP/2 204 No Content 

                                        
                                    
                                        

                                        
                                            
date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
vary: Origin 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH 

                                        
                                            
access-control-allow-headers: content-type 

                                        
                                            
strict-transport-security: max-age=15724800; includeSubDomains 

                                        
                                            
cf-cache-status: DYNAMIC 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5LkhHk7HQbf8b8A3lVcm3AFMe8EMXyIx04WmJU4CP7GlPpHcA5qLjV5vDgkl1t3ytcLEG4cR5%2FrsbH4AF%2BRSnpz1b3JOwFPm5GG9s%2Fex5cJJq52j21p6za33ru0HA%2F8s9iFh"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 771f46782f620662-LHR 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /get-keys HTTP/1.1 

                                        
                                            
Host: app.api-push.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Content-Length: 174 

                                        
                                            
Origin: https://her-cupid.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         172.64.138.29

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json; charset=utf-8 

                                        
                                    
                                        

                                        
                                            
date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
vary: Origin 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH 

                                        
                                            
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept 

                                        
                                            
strict-transport-security: max-age=15724800; includeSubDomains 

                                        
                                            
cf-cache-status: DYNAMIC 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yg6GS7V5Sfshz1P4q3DmVgt1aUrlo86huSfX2lIgmroxemjOioqdzhMVloitHP2GHMiknIEbq%2FRaGNmtz%2F13uqCK50b66E66ZHnc7Ay5xupmjudYnC6KTxmKkH9Me28B4X%2Fy"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 771f467948260662-LHR 

                                        
                                            
content-encoding: br 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (1940), with no line terminators

                                                Size:   1269

                                                Md5:    fc80754d49d8613dd320d233632ee5eb

                                                Sha1:   3b0e5b76bdfd581c51e39a16a940bf5e61e0c6ff

                                                Sha256: e3501ab8417cedeab064c3ceeee8b164727474b241eab5cfba4f03ebd4df2b87

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /u/0/d/1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0=w100 HTTP/1.1 

                                        
                                            
Host: lh3.google.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         172.217.21.174

                                        
                                            HTTP/2 302 Found 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
location: https://accounts.google.com/ServiceLogin?continue=https://lh3.google.com/u/0/d/1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100&hl=en 

                                        
                                            
cache-control: private 

                                        
                                            
vary: Origin 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:38 GMT 

                                        
                                            
server: fife 

                                        
                                            
content-length: 337 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators

                                                Size:   337

                                                Md5:    66a43eafe19fd2e9782007272dd06ced

                                                Sha1:   9d5112f8b4482ef224d10b0d0a17bfaf053e8e23

                                                Sha256: f432da756645f1aa0bdfff17c86556d7343c5ae482f941597552d9701560d6bb

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /v14.0/plugins/like.php HTTP/1.1 

                                        
                                            
Host: www.facebook.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         31.13.72.36

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html;charset=utf-8 

                                        
                                    
                                        

                                        
                                            
pragma: no-cache 

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate 

                                        
                                            
expires: Sat, 01 Jan 2000 00:00:00 GMT 

                                        
                                            
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0; 

                                        
                                            
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests; 

                                        
                                            
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]} 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-fb-debug: NtYmLxm8F9IbxISmKGMkNwlpLLZccc/KeO4Cza7wTQin3O78lQaOWOPIDLKqnG74KNEw9u5ludp2b4OsrHOZ2Q== 

                                        
                                            
content-length: 0 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:38 GMT 

                                        
                                            
priority: u=3,i 

                                        
                                            
alt-svc: h3=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /static/BgAA/favicon.ico HTTP/1.1 

                                        
                                            
Host: her-cupid.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: slappInfo64_S9-ek2OGm_g=eyJuYmwiOm51bGwsImltcHJlc3Npb24iOiJTOS1lazJPR21fZyIsInRydXN0TGV2ZWwiOjAsImJvdFNjb3JlIjowLCJmaW5pc2hDbGlja3NDb3VudCI6MCwibGFuZGluZ0NvbmZpZyI6bnVsbCwic2hvd2VkUG9wcyI6MCwidXJpIjoiaHR0cHM6Ly9oZXItY3VwaWQuY29tL0ZBQUEvMTAzMTcvb3RoP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2Iiwic2VhcmNoIjoiP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2IiwiY29udGFjdEV4aXN0cyI6ZmFsc2V9 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers
search 
                                         54.39.22.228

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/x-icon 

                                        
                                    
                                        

                                        
                                            
server: nginx/1.18.0 (Ubuntu) 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:38 GMT 

                                        
                                            
content-length: 2359 

                                        
                                            
last-modified: Fri, 28 Aug 2020 07:47:28 GMT 

                                        
                                            
etag: "5f48b690-937" 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   2359

                                                Md5:    bad3516885b6825c4e895aad5eead234

                                                Sha1:   36c425547ef0824b243e85588b32a6d1bf847cfa

                                                Sha256: bd398a5d9889417235018c6666c6d625fedd12eba8352b20bc0b0dde82992282

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 6363 

                                        
                                            
Cache-Control: public, max-age=1209600 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:38 GMT 

                                        
                                            
Etag: "63866bad-37" 

                                        
                                            
Last-Modified: Tue, 29 Nov 2022 20:29:33 GMT 

                                        
                                            
Server: ECS (ska/F715) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:38 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:38 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /ServiceLogin?continue=https://lh3.google.com/u/0/d/1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100&hl=en HTTP/1.1 

                                        
                                            
Host: accounts.google.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.109

                                        
                                            HTTP/2 302 Found 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
x-frame-options: DENY 

                                        
                                            
cache-control: no-cache, no-store, max-age=0, must-revalidate 

                                        
                                            
pragma: no-cache 

                                        
                                            
expires: Mon, 01 Jan 1990 00:00:00 GMT 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:38 GMT 

                                        
                                            
location: https://accounts.google.com/v3/signin/identifier?dsh=S-2079782871%3A1669766138212496&continue=https%3A%2F%2Flh3.google.com%2Fu%2F0%2Fd%2F1l0frEmdXyaOzgdSdyzEFLxHRz8nZsme1xNv0ZMbsDI0%3Dw100&hl=en&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=ARgdvAtPGDLWAUSoDWmbSuEcC0m3RJekzMzMk8U5ST3kK4Dn0SAgsvHs4ByyPzUwU1as6lHK_4UV 

                                        
                                            
strict-transport-security: max-age=31536000; includeSubDomains 

                                        
                                            
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-BP-mLFHDA4Wv4ZQzGeZOJQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport 

                                        
                                            
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]} 

                                        
                                            
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk" 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
content-length: 410 

                                        
                                            
server: GSE 

                                        
                                            
set-cookie: __Host-GAPS=1:MNl3dPqybfms-w3uSIzD7iySy6p44g:zE4gjNHd1T5A2MXI;Path=/;Expires=Thu, 28-Nov-2024 23:55:38 GMT;Secure;HttpOnly;Priority=HIGH 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (385)

                                                Size:   410

                                                Md5:    506e8bc2c00c7926b0df99216a8efd80

                                                Sha1:   a7a549144f2c1d1c45dbe8496fae3d4dc9f95eba

                                                Sha256: db9298a07725ad88a7447ba471fc0d6d27b4ca0835344b5fd9c0a2c6f6e076ac

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /static/BgAA/video-1.mp4 HTTP/1.1 

                                        
                                            
Host: her-cupid.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Range: bytes=1867776- 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: slappInfo64_S9-ek2OGm_g=eyJuYmwiOm51bGwsImltcHJlc3Npb24iOiJTOS1lazJPR21fZyIsInRydXN0TGV2ZWwiOjAsImJvdFNjb3JlIjowLCJmaW5pc2hDbGlja3NDb3VudCI6MCwibGFuZGluZ0NvbmZpZyI6bnVsbCwic2hvd2VkUG9wcyI6MCwidXJpIjoiaHR0cHM6Ly9oZXItY3VwaWQuY29tL0ZBQUEvMTAzMTcvb3RoP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2Iiwic2VhcmNoIjoiP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2IiwiY29udGFjdEV4aXN0cyI6ZmFsc2V9 

                                        
                                            
Sec-Fetch-Dest: video 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers
search 
                                         54.39.22.228

                                        
                                            HTTP/2 206 Partial Content 

                                        
                                            
content-type: video/mp4 

                                        
                                    
                                        

                                        
                                            
server: nginx/1.18.0 (Ubuntu) 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:38 GMT 

                                        
                                            
content-length: 41671 

                                        
                                            
last-modified: Fri, 28 Aug 2020 07:47:28 GMT 

                                        
                                            
etag: "5f48b690-1d22c7" 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-range: bytes 1867776-1909446/1909447 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  COM executable for DOS\012- data

                                                Size:   41671

                                                Md5:    5dbda6e8152f6a61a84ab7df799d0817

                                                Sha1:   7498a908fe8d358fd8d5e935bb2096112b7865df

                                                Sha256: 50bf23c7a02b8fa37f93d3742f9e649b1e87e6155acaefba74cc7046a66e67fa

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - fortinet: Phishing

                                                    
                                                
                                                
                                                

                                                
                                                      File Analyzers:

                                                    
                                                            - virustotal: 0/0 

                                                    
                                                
                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 2162 

                                        
                                            
Cache-Control: max-age=159796 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:39 GMT 

                                        
                                            
Etag: "638660bd-139" 

                                        
                                            
Expires: Thu, 01 Dec 2022 20:18:55 GMT 

                                        
                                            
Last-Modified: Tue, 29 Nov 2022 19:42:53 GMT 

                                        
                                            
Server: ECS (ska/F715) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 55 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text

                                                Size:   55

                                                Md5:    9f073354411bbaf7a319b1519f10b4b7

                                                Sha1:   571498f38548829bf186f49f5be9d5fa6e689a68

                                                Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         95.101.11.115

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "FB9EA3D68FE575BE42DFE4252DDF347129DFFD7CCC9C08B869143F64357E4053" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=14764 

                                        
                                            
Expires: Wed, 30 Nov 2022 04:01:43 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:39 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /video/manage?o=mr&t=pr2 HTTP/1.1 

                                        
                                            
Host: pornhub.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         66.254.114.41

                                        
                                            HTTP/2 301 Moved Permanently 

                                        
                                            
content-type: text/html 

                                        
                                    
                                        

                                        
                                            
server: openresty 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:39 GMT 

                                        
                                            
content-length: 166 

                                        
                                            
location: https://www.pornhub.com/video/manage?o=mr&t=pr2 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
rating: RTA-5042-1996-1400-1577-RTA 

                                        
                                            
set-cookie: __s=63869BFB-42FE722901BB7456-289FACA; Secure; Samesite=None
__l=63869BFB-42FE722901BB7456-289FACA; Secure; Samesite=None; Max-Age=31556926 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubDomains; preload 

                                        
                                            
x-request-id: 63869BFB-42FE722901BB7456-289FACA 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   166

                                                Md5:    3ea1c8d079b38532a6e01a96216ba5e2

                                                Sha1:   598d3ff91d3e252f1e13df8cf0348b270ff2da3f

                                                Sha256: 87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /user/security/1111 HTTP/1.1 

                                        
                                            
Host: www.pornhubpremium.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         66.254.114.33

                                        
                                            HTTP/1.1 302 Found 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
server: openresty 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:39 GMT 

                                        
                                            
transfer-encoding: chunked 

                                        
                                            
set-cookie: ua=df16c081c25306654a0efb89b8761a08; expires=Wed, 30-Nov-2022 23:55:39 GMT; Max-Age=86400; path=/; domain=pornhubpremium.com; secure; HttpOnly
platform=pc; expires=Tue, 06-Dec-2022 23:55:39 GMT; Max-Age=604800; path=/; domain=pornhubpremium.com; secure; HttpOnly
bs=c2h8zxl9rl7ea9lyl2iof017vf3b2ca6; expires=Fri, 26-Nov-2032 23:55:39 GMT; Max-Age=315360000; path=/; domain=pornhubpremium.com; secure; HttpOnly; SameSite=None
ss=916092187317125056; expires=Wed, 29-Nov-2023 23:55:39 GMT; Max-Age=31536000; path=/; domain=pornhubpremium.com; secure; HttpOnly 

                                        
                                            
cache-control: no-cache, no-store, must-revalidate 

                                        
                                            
pragma: no-cache 

                                        
                                            
ph-redirect: 1026 

                                        
                                            
location: https://www.pornhubpremium.com/premium/login?redirect=ZiaPkKoiWhbX9EPtDgxRTCCwZ_tfB_a6BTe4rwpzsBosznieQLB7S-Yv78exK5aO 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
vary: User-Agent 

                                        
                                            
rating: RTA-5042-1996-1400-1577-RTA 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubDomains; preload 

                                        
                                            
x-request-id: 63869BFB-42FE722101BB7423-289C69D 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /premium/login?redirect=ZiaPkKoiWhbX9EPtDgxRTCCwZ_tfB_a6BTe4rwpzsBosznieQLB7S-Yv78exK5aO HTTP/1.1 

                                        
                                            
Host: www.pornhubpremium.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: bs=c2h8zxl9rl7ea9lyl2iof017vf3b2ca6 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         66.254.114.33

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
server: openresty 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:39 GMT 

                                        
                                            
transfer-encoding: chunked 

                                        
                                            
set-cookie: ua=df16c081c25306654a0efb89b8761a08; expires=Wed, 30-Nov-2022 23:55:39 GMT; Max-Age=86400; path=/; domain=pornhubpremium.com; secure; HttpOnly
platform=pc; expires=Tue, 06-Dec-2022 23:55:39 GMT; Max-Age=604800; path=/; domain=pornhubpremium.com; secure; HttpOnly
ss=768078618235237750; expires=Wed, 29-Nov-2023 23:55:39 GMT; Max-Age=31536000; path=/; domain=pornhubpremium.com; secure; HttpOnly
fg_0d2ec4cbd943df07ec161982a603817e=19079.100000; expires=Thu, 29-Dec-2022 23:55:39 GMT; Max-Age=2592000; path=/; domain=pornhubpremium.com; secure
ats=eyJhIjoyNiwibiI6MywicyI6MiwiZSI6ODAwMCwicCI6NSwiY24iOiJOb3RfTWVtYmVyX0xvZ2luX0MwMDBfNDJfMV80MTEifQ%3D%3D; expires=Thu, 29-Dec-2022 23:55:39 GMT; Max-Age=2592000; path=/; domain=pornhubpremium.com; secure; HttpOnly 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
cache-control: no-cache, no-store, must-revalidate 

                                        
                                            
vary: User-Agent 

                                        
                                            
rating: RTA-5042-1996-1400-1577-RTA 

                                        
                                            
content-encoding: gzip 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubDomains; preload 

                                        
                                            
x-request-id: 63869BFB-42FE722101BB7423-289C6FC 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2404)

                                                Size:   7796

                                                Md5:    ffdf60bf398bb1495c13b20fe77f8643

                                                Sha1:   2c8aa7cea5b50a9874e986eaf374346b3adc9191

                                                Sha256: b0148b8af2d14a67bde7d5ac92d8f29ac77fc63a87df657f6d51e0dd1c57d75a

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sectigo.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         172.64.155.188

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:39 GMT 

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Tue, 29 Nov 2022 19:48:07 GMT 

                                        
                                            
Expires: Tue, 06 Dec 2022 19:48:06 GMT 

                                        
                                            
Etag: "e059008669e4d6be11426abb9ad005c743900e80" 

                                        
                                            
Cache-Control: max-age=589346,s-maxage=1800,public,no-transform,must-revalidate 

                                        
                                            
X-CCACDN-Proxy-ID: mcdpinlb2 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
CF-Cache-Status: DYNAMIC 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 771f4682ba94b527-OSL 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /favorite/90902157/mk_1123 HTTP/1.1 

                                        
                                            
Host: www.xvideos.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         185.88.181.3

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html; charset=utf-8 

                                        
                                    
                                        

                                        
                                            
Date: Tue, 29 Nov 2022 23:55:39 GMT 

                                        
                                            
P3p: policyref="/p3p.xml", CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" 

                                        
                                            
Vary: Accept-Encoding,User-Agent,Accept-Language,Cookie 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
Content-Security-Policy: default-src 'self' data: 'unsafe-inline' 'unsafe-eval' blob: *.xvideos.com *.xnxx.com *.red-cdn.com *.gold-cdn.com *.xvideos-cdn.com *.xnxx-cdn.com *.others-cdn.com z8y8f3q6.ssl.hwcdn.net https://www.xvideos.com https://wg-xvdev.xvideos.com *.trafficfactory.biz fonts.googleapis.com fonts.gstatic.com ajax.googleapis.com www.google-analytics.com www.googletagmanager.com *.addthis.com *.addthisedge.com www.iwanttodeliver.com apis.google.com www.google.com www.gstatic.com accounts.google.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ *.hwcdn.net fcm.googleapis.com *.nk-img.com https://static-dev-xvlive.xvideos.com https://dev-api.naked.com http://dev-api.naked.com *.googleapis.com *.cdn77.org *.pingdom.net *.exoclick.com *.exosrv.com *.realsrv.com *.orbsrv.com *.exdynsrv.com *.ackcdn.net *.afcdn.net *.aucdn.net *.adtng.com *.adglare.net adinvent.engine.adglare.net *.bngpt.com bngpt.com *.trafficjunky.net *.ohmybutt.com *.flirt4free.com *.xlovecam.com *.wlresources.com *.medleyads.com *.cams.com *.acdn5165543.com *.protoawe.com *.google-analytics.com livejasmin.com *.livejasmin.com *.jsmcrptjmp.com *.awemwh.com *.promo-bc.com *.bongacams.com *.bongacash.com *.gammae.com *.servingmillions.com *.super-route.com cdn01.flashmediaportal.com engine.asf4f.us *.htdvt.com *.jerkmate.com *.vfgtb.com *.hytxg2.com *.awemdia.com *.cfgr3.com *.ajxx98.online *.sf4f.us *.adworldmedia.com as.air2s.com bngpst.com cretgate.com mysexchatroom.com trknex.com medleyads.com ajxx98.online gamesfromheaven.com go.hpyjmp.com r.trwl2.com bongacams.com clickserve.dartsearch.net afrtrk.com track.cam4tracking.com *.smljmp.com sffsdvc.com www.sffsdvc.com bmedia.justservingfiles.net blkditsup.com vast.bimbim.com promo.cameraprive.com bngprl.com *.bngprl.com trafforsrv.com serving.stat-rock.com zubivu.com *.xxxjmp.com *.feelpornx.com *.crjugate.com *.hqscene.com *.xlviirdr.com adulttime.xxx *.adulttime.xxx *.javhd.com *.doppiocdn.com *.videosworks.com xlivrdr.com *.xlivrdr.com *.servetraff.com *.adglare.net www.flirt4free.com www.ohmybutt.com www.secretpartners.com cdn.asf4f.us *.livejasmin.com *.jsmcrptjmp.com *.awemwh.com etahub.com ctrack.trafficjunky.net tracking.sexcash.com wss://dev-chatserver.camster.com wss://staging-chatserver.camster.com wss://m.1ka.com wss://c1.1ka.com wss://c11.1ka.com wss://c12.1ka.com wss://c13.1ka.com wss://c14.1ka.com wss://c15.1ka.com wss://c16.1ka.com wss://c17.1ka.com wss://c18.1ka.com wss://c19.1ka.com wss://c110.1ka.com wss://c111.1ka.com wss://c112.1ka.com wss://c113.1ka.com wss://c114.1ka.com wss://c115.1ka.com wss://c2.1ka.com wss://c21.1ka.com wss://c22.1ka.com wss://c23.1ka.com wss://c24.1ka.com wss://c25.1ka.com wss://c26.1ka.com wss://c27.1ka.com wss://c28.1ka.com wss://c29.1ka.com wss://c210.1ka.com wss://c211.1ka.com wss://c212.1ka.com wss://c213.1ka.com wss://c214.1ka.com wss://c215.1ka.com wss://c3.1ka.com wss://c31.1ka.com wss://c32.1ka.com wss://c33.1ka.com wss://c34.1ka.com wss://c35.1ka.com wss://c36.1ka.com wss://c37.1ka.com wss://c38.1ka.com wss://c39.1ka.com wss://c4.1ka.com wss://c41.1ka.com wss://c42.1ka.com wss://c43.1ka.com wss://c44.1ka.com wss://c45.1ka.com wss://c46.1ka.com wss://c47.1ka.com wss://c48.1ka.com wss://c49.1ka.com wss://c410.1ka.com wss://c411.1ka.com wss://c412.1ka.com wss://c413.1ka.com wss://c414.1ka.com wss://c415.1ka.com wss://c5.1ka.com wss://c51.1ka.com wss://c52.1ka.com wss://c53.1ka.com wss://c54.1ka.com wss://c55.1ka.com wss://c56.1ka.com wss://c57.1ka.com wss://c58.1ka.com wss://c59.1ka.com wss://c510.1ka.com wss://c511.1ka.com wss://c512.1ka.com wss://c513.1ka.com wss://c514.1ka.com wss://c515.1ka.com https://dev-chatserver.camster.com https://staging-chatserver.camster.com https://m.1ka.com https://c1.1ka.com https://c11.1ka.com https://c12.1ka.com https://c13.1ka.com https://c14.1ka.com https://c15.1ka.com https://c16.1ka.com https://c17.1ka.com https://c18.1ka.com https://c19.1ka.com https://c110.1ka.com https://c111.1ka.com https://c112.1ka.com https://c113.1ka.com https://c114.1ka.com https://c115.1ka.com https://c2.1ka.com https://c21.1ka.com https://c22.1ka.com https://c23.1ka.com https://c24.1ka.com https://c25.1ka.com https://c26.1ka.com https://c27.1ka.com https://c28.1ka.com https://c29.1ka.com https://c210.1ka.com https://c211.1ka.com https://c212.1ka.com https://c213.1ka.com https://c214.1ka.com https://c215.1ka.com https://c3.1ka.com https://c31.1ka.com https://c32.1ka.com https://c33.1ka.com https://c34.1ka.com https://c35.1ka.com https://c36.1ka.com https://c37.1ka.com https://c38.1ka.com https://c39.1ka.com https://c4.1ka.com https://c41.1ka.com https://c42.1ka.com https://c43.1ka.com https://c44.1ka.com https://c45.1ka.com https://c46.1ka.com https://c47.1ka.com https://c48.1ka.com https://c49.1ka.com https://c410.1ka.com https://c411.1ka.com https://c412.1ka.com https://c413.1ka.com https://c414.1ka.com https://c415.1ka.com https://c5.1ka.com https://c51.1ka.com https://c52.1ka.com https://c53.1ka.com https://c54.1ka.com https://c55.1ka.com https://c56.1ka.com https://c57.1ka.com https://c58.1ka.com https://c59.1ka.com https://c510.1ka.com https://c511.1ka.com https://c512.1ka.com https://c513.1ka.com https://c514.1ka.com https://c515.1ka.com https://media.1ka.com https://u.1ka.com https://n.1ka.com;img-src 'self' 'unsafe-inline' data: blob: *.xvideos.com *.xnxx.com *.red-cdn.com *.gold-cdn.com *.xvideos-cdn.com *.xnxx-cdn.com *.others-cdn.com *.hwcdn.net *.trafficfactory.biz www.google.com www.google-analytics.com ssl.gstatic.com *.nk-img.com *.camster.com *.vscdns.com *.doubleclick.net *.google.fr *.google.com *.exoclick.com *.exosrv.com *.realsrv.com *.exdynsrv.com *.ackcdn.net *.afcdn.net *.aucdn.net bmedia.justservingfiles.net; 

                                        
                                            
Referrer-Policy: no-referrer-when-downgrade 

                                        
                                            
Set-Cookie: session_token=5f7925323e9bd6e3QcE0imdzkKusofE1w6giBOv0KvXHJGVz3BNbu_78M9xL6d-qw785q4GiESRTuBZheIQItDmeaqWvBQiqlzVpjlCCYRpT8hakJyfeI7Q_BVcj_hytfXtgQrkk_c0zoojgbAlablu4HFGxHufQEcUYY0cOapjGyST3SZAoaln5ws60s0fI0ZTEjGnDp0phtLHi; expires=Thu, 29-Dec-2022 23:55:39 GMT; Max-Age=2592000; path=/; domain=.xvideos.com
_ga=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.xvideos.com
_gid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.xvideos.com
_gat=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.xvideos.com 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Server: nginx 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8644)

                                                Size:   25865

                                                Md5:    42088d1e9d2d2fc8dd171ab5ef8872d1

                                                Sha1:   17d925b0920c332d0488b249c3eb9e11a85775d3

                                                Sha256: 375c8a744ac68f722b1c1a1cfe10ecc3192f4bdf623f58c697c2cfcae3eb3550

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /static/BgAA/video-1.mp4 HTTP/1.1 

                                        
                                            
Host: her-cupid.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Range: bytes=0- 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: slappInfo64_S9-ek2OGm_g=eyJuYmwiOm51bGwsImltcHJlc3Npb24iOiJTOS1lazJPR21fZyIsInRydXN0TGV2ZWwiOjAsImJvdFNjb3JlIjowLCJmaW5pc2hDbGlja3NDb3VudCI6MCwibGFuZGluZ0NvbmZpZyI6bnVsbCwic2hvd2VkUG9wcyI6MCwidXJpIjoiaHR0cHM6Ly9oZXItY3VwaWQuY29tL0ZBQUEvMTAzMTcvb3RoP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2Iiwic2VhcmNoIjoiP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2IiwiY29udGFjdEV4aXN0cyI6ZmFsc2V9 

                                        
                                            
Sec-Fetch-Dest: video 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers
search 
                                         54.39.22.228

                                        
                                            HTTP/2 206 Partial Content 

                                        
                                            
content-type: video/mp4 

                                        
                                    
                                        

                                        
                                            
server: nginx/1.18.0 (Ubuntu) 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:37 GMT 

                                        
                                            
content-length: 1909447 

                                        
                                            
last-modified: Fri, 28 Aug 2020 07:47:28 GMT 

                                        
                                            
etag: "5f48b690-1d22c7" 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-range: bytes 0-1909446/1909447 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - fortinet: Phishing

                                                    
                                                
                                                
                                                

                                                
                                            
                                            
                                        

                                    
                                        
                                            GET /user-id?nbl=&impression=S9-ek2OGm_g&trustLevel=0&botScore=0&finishClicksCount=0&landingConfig=&showedPops=0&uri=https%3A%2F%2Fher-cupid.com%2FFAAA%2F10317%2Foth%3Fi%3DS9-ek2OGm_g%26u%3D7728635488651090936&search=%3Fi%3DS9-ek2OGm_g%26u%3D7728635488651090936&contactExists=false HTTP/1.1 

                                        
                                            
Host: her-cupid.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
X-Requested-With: XMLHttpRequest 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: slappInfo64_S9-ek2OGm_g=eyJuYmwiOm51bGwsImltcHJlc3Npb24iOiJTOS1lazJPR21fZyIsInRydXN0TGV2ZWwiOjAsImJvdFNjb3JlIjowLCJmaW5pc2hDbGlja3NDb3VudCI6MCwibGFuZGluZ0NvbmZpZyI6bnVsbCwic2hvd2VkUG9wcyI6MCwidXJpIjoiaHR0cHM6Ly9oZXItY3VwaWQuY29tL0ZBQUEvMTAzMTcvb3RoP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2Iiwic2VhcmNoIjoiP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2IiwiY29udGFjdEV4aXN0cyI6ZmFsc2V9 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers
search 
                                         54.39.22.228

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
server: nginx/1.18.0 (Ubuntu) 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:38 GMT 

                                        
                                            
set-cookie: userid=22245db4a5b83424882eaffe4bbc70b4b11a4da6f93e466cc89ceac7035f0824a%3A2%3A%7Bi%3A0%3Bs%3A6%3A%22userid%22%3Bi%3A1%3Bi%3A599586991922%3B%7D; expires=Thu, 30-Nov-2023 20:12:18 GMT; Max-Age=31609000; path=/; HttpOnly; SameSite=Lax 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /video/manage?o=mr&t=pr2 HTTP/1.1 

                                        
                                            
Host: www.pornhub.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         66.254.114.41

                                        
                                            HTTP/2 302 Found 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
server: openresty 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:39 GMT 

                                        
                                            
set-cookie: ua=df16c081c25306654a0efb89b8761a08; expires=Wed, 30-Nov-2022 23:55:39 GMT; Max-Age=86400; path=/; domain=pornhub.com; secure
platform=pc; expires=Tue, 06-Dec-2022 23:55:39 GMT; Max-Age=604800; path=/; domain=pornhub.com; secure
bs=8er8e3y9l7v6z6c94fwqcs6jdt0izd01; expires=Fri, 26-Nov-2032 23:55:39 GMT; Max-Age=315360000; path=/; domain=pornhub.com; secure; SameSite=None
ss=136401182487757074; expires=Wed, 29-Nov-2023 23:55:39 GMT; Max-Age=31536000; path=/; domain=pornhub.com; secure
fg_0d2ec4cbd943df07ec161982a603817e=77377.100000; expires=Thu, 29-Dec-2022 23:55:39 GMT; Max-Age=2592000; path=/; domain=pornhub.com; secure
__s=63869BFB-42FE722901BB7456-289FB2A; Secure; Samesite=None
__l=63869BFB-42FE722901BB7456-289FB2A; Secure; Samesite=None; Max-Age=31556926 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
cache-control: no-cache, no-store, must-revalidate 

                                        
                                            
pragma: no-cache 

                                        
                                            
ph-redirect: 1041 

                                        
                                            
location: /login 

                                        
                                            
vary: User-Agent 

                                        
                                            
rating: RTA-5042-1996-1400-1577-RTA 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubDomains; preload 

                                        
                                            
x-request-id: 63869BFB-42FE722901BB7456-289FB2A 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /login HTTP/1.1 

                                        
                                            
Host: www.pornhub.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: bs=8er8e3y9l7v6z6c94fwqcs6jdt0izd01 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         66.254.114.41

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
server: openresty 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:39 GMT 

                                        
                                            
set-cookie: ua=df16c081c25306654a0efb89b8761a08; expires=Wed, 30-Nov-2022 23:55:39 GMT; Max-Age=86400; path=/; domain=pornhub.com; secure
platform=pc; expires=Tue, 06-Dec-2022 23:55:39 GMT; Max-Age=604800; path=/; domain=pornhub.com; secure
ss=382737551503858367; expires=Wed, 29-Nov-2023 23:55:39 GMT; Max-Age=31536000; path=/; domain=pornhub.com; secure
fg_0d2ec4cbd943df07ec161982a603817e=63945.100000; expires=Thu, 29-Dec-2022 23:55:39 GMT; Max-Age=2592000; path=/; domain=pornhub.com; secure
__s=63869BFB-42FE722901BB7456-289FBB6; Secure; Samesite=None
__l=63869BFB-42FE722901BB7456-289FBB6; Secure; Samesite=None; Max-Age=31556926 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
cache-control: no-cache, no-store, must-revalidate 

                                        
                                            
pragma: no-cache 

                                        
                                            
vary: User-Agent 

                                        
                                            
rating: RTA-5042-1996-1400-1577-RTA 

                                        
                                            
content-encoding: gzip 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubDomains; preload 

                                        
                                            
x-request-id: 63869BFB-42FE722901BB7456-289FBB6 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /stats HTTP/1.1 

                                        
                                            
Host: her-cupid.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/x-www-form-urlencoded; charset=UTF-8 

                                        
                                            
X-Requested-With: XMLHttpRequest 

                                        
                                            
Content-Length: 319 

                                        
                                            
Origin: https://her-cupid.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: slappInfo64_S9-ek2OGm_g=eyJuYmwiOm51bGwsImltcHJlc3Npb24iOiJTOS1lazJPR21fZyIsInRydXN0TGV2ZWwiOjEsImJvdFNjb3JlIjowLCJmaW5pc2hDbGlja3NDb3VudCI6MCwibGFuZGluZ0NvbmZpZyI6bnVsbCwic2hvd2VkUG9wcyI6MCwidXJpIjoiaHR0cHM6Ly9oZXItY3VwaWQuY29tL0ZBQUEvMTAzMTcvb3RoP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2Iiwic2VhcmNoIjoiP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2IiwiY29udGFjdEV4aXN0cyI6ZmFsc2UsImx1aWQiOjU5OTU4Njk5MTkyMiwiZXZlbnQiOiJleHRzZXMiLCJkYXRhIjp7InBocCI6ImZhbHNlIn19; userid=22245db4a5b83424882eaffe4bbc70b4b11a4da6f93e466cc89ceac7035f0824a%3A2%3A%7Bi%3A0%3Bs%3A6%3A%22userid%22%3Bi%3A1%3Bi%3A599586991922%3B%7D 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers
search 
                                         54.39.22.228

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
server: nginx/1.18.0 (Ubuntu) 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:39 GMT 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - fortinet: Phishing

                                                    
                                                
                                                
                                                

                                                
                                            
                                            
                                        

                                    
                                        
                                            POST /stats HTTP/1.1 

                                        
                                            
Host: her-cupid.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/x-www-form-urlencoded; charset=UTF-8 

                                        
                                            
X-Requested-With: XMLHttpRequest 

                                        
                                            
Content-Length: 318 

                                        
                                            
Origin: https://her-cupid.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: slappInfo64_S9-ek2OGm_g=eyJuYmwiOm51bGwsImltcHJlc3Npb24iOiJTOS1lazJPR21fZyIsInRydXN0TGV2ZWwiOjEsImJvdFNjb3JlIjowLCJmaW5pc2hDbGlja3NDb3VudCI6MCwibGFuZGluZ0NvbmZpZyI6bnVsbCwic2hvd2VkUG9wcyI6MCwidXJpIjoiaHR0cHM6Ly9oZXItY3VwaWQuY29tL0ZBQUEvMTAzMTcvb3RoP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2Iiwic2VhcmNoIjoiP2k9UzktZWsyT0dtX2cmdT03NzI4NjM1NDg4NjUxMDkwOTM2IiwiY29udGFjdEV4aXN0cyI6ZmFsc2UsImx1aWQiOjU5OTU4Njk5MTkyMiwiZXZlbnQiOiJleHRzZXMiLCJkYXRhIjp7InBoIjoiZmFsc2UifX0=; userid=22245db4a5b83424882eaffe4bbc70b4b11a4da6f93e466cc89ceac7035f0824a%3A2%3A%7Bi%3A0%3Bs%3A6%3A%22userid%22%3Bi%3A1%3Bi%3A599586991922%3B%7D 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers
search 
                                         54.39.22.228

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
server: nginx/1.18.0 (Ubuntu) 

                                        
                                            
date: Tue, 29 Nov 2022 23:55:39 GMT 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - fortinet: Phishing

                                                    
                                                
                                                
                                                

                                                
                                            
                                            
                                        

                                    
                                        
                                            GET /agEA?usid=s8hnpa13p343&email=sthomas%40slurpmail.net&sub1=clear_main&prid=s8hnpa13p343 HTTP/1.1 

                                        
                                            
Host: dateexotic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1
search 
                                         104.21.34.109

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html 

                                        
                                    
                                        

                                        
                                            
date: Tue, 29 Nov 2022 23:55:35 GMT 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gt1ewXV5HyMf6N0Gjomczf3HUoozFDqHCExFmAEiElRH4aNhlumk3d9e7FEviHgU9vOObjq2iMSv6BiWuveP5R6IrL4kFXnBzqIEXXyPjsLHVEEr6FEx%2BuOXddTYII48oQ%3D%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 771f4668f85fb4f4-OSL 

                                        
                                            
content-encoding: br 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---