jiggasha.com/bec/docusignOffice2017/docusignOffice2017/docusign/docusign/index.php
93.115.28.104200 OK 542 B URL HTTP/1.1 jiggasha.com/bec/docusignOffice2017/docusignOffice2017/docusign/docusign/index.php
IP 93.115.28.104:0
ASN #16125 UAB Cherry Servers
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (542), with no line terminators
Hash 4e471e077dbfbb56de9d27f460a10ac8
0c44e7e212f764bdeb79ef1a4f80a797c79bc3f6
c168424e47994f18596375f86bd27f6fb196d6842fab7b0f0a1a71978c04fdcd
Analyzer Verdict Alert fortinet Phishing
GET /bec/docusignOffice2017/docusignOffice2017/docusign/docusign/index.php HTTP/1.1
Host: jiggasha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 542
content-type: text/html; charset=utf-8
date: Mon, 28 Nov 2022 01:18:53 GMT
server: nginx
set-cookie: sid=9fbd08b4-6eba-11ed-a2d3-f44514aa45ac; path=/; domain=.jiggasha.com; expires=Sat, 16 Dec 2090 04:33:01 GMT; max-age=2147483647; HttpOnly
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3669
Expires: Mon, 28 Nov 2022 02:20:03 GMT
Date: Mon, 28 Nov 2022 01:18:54 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2571
Cache-Control: max-age=122110
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 01:18:54 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:14:04 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19099
Expires: Mon, 28 Nov 2022 06:37:13 GMT
Date: Mon, 28 Nov 2022 01:18:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 00:19:27 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3567
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qdbcFTDsdcevqh5GiTp7Rh1gtTMVskVYd4gk4SMNkBpppDOi5ETPWWGXzAc03Skc7ozVGVga3iQ=
x-amz-request-id: QA5VQ3YZ6EZ14ACE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 00:44:50 GMT
age: 2044
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 01:18:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
jiggasha.com/favicon.ico
93.115.28.104404 Not Found 9 B IP 93.115.28.104:0
ASN #16125 UAB Cherry Servers
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: jiggasha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jiggasha.com/bec/docusignOffice2017/docusignOffice2017/docusign/docusign/index.php
Cookie: sid=9fbd08b4-6eba-11ed-a2d3-f44514aa45ac
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Mon, 28 Nov 2022 01:18:54 GMT
server: nginx
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 01:08:54 GMT
cache-control: public,max-age=3600
age: 601
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6263
Cache-Control: max-age=120740
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 01:18:55 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:51:15 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
jiggasha.com/bec/docusignOffice2017/docusignOffice2017/docusign/docusign/index.php?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTYwNTUzNCwiaWF0IjoxNjY5NTk4MzM0LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2xwbGxtN2hlYXA2cHJ1aDgxYmtuMjciLCJuYmYiOjE2Njk1OTgzMzQsInRzIjoxNjY5NTk4MzM0MTMyMzU5fQ.C1gr-atyUlSR0QucY6jtDx_EhtCNdXa0hEe1hnqBiq4&sid=9fbd08b4-6eba-11ed-a2d3-f44514aa45ac
93.115.28.104302 Found 11 B URL HTTP/1.1 jiggasha.com/bec/docusignOffice2017/docusignOffice2017/docusign/docusign/index.php?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTYwNTUzNCwiaWF0IjoxNjY5NTk4MzM0LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2xwbGxtN2hlYXA2cHJ1aDgxYmtuMjciLCJuYmYiOjE2Njk1OTgzMzQsInRzIjoxNjY5NTk4MzM0MTMyMzU5fQ.C1gr-atyUlSR0QucY6jtDx_EhtCNdXa0hEe1hnqBiq4&sid=9fbd08b4-6eba-11ed-a2d3-f44514aa45ac
IP 93.115.28.104:0
ASN #16125 UAB Cherry Servers
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /bec/docusignOffice2017/docusignOffice2017/docusign/docusign/index.php?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTYwNTUzNCwiaWF0IjoxNjY5NTk4MzM0LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2xwbGxtN2hlYXA2cHJ1aDgxYmtuMjciLCJuYmYiOjE2Njk1OTgzMzQsInRzIjoxNjY5NTk4MzM0MTMyMzU5fQ.C1gr-atyUlSR0QucY6jtDx_EhtCNdXa0hEe1hnqBiq4&sid=9fbd08b4-6eba-11ed-a2d3-f44514aa45ac HTTP/1.1
Host: jiggasha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jiggasha.com/bec/docusignOffice2017/docusignOffice2017/docusign/docusign/index.php
Cookie: sid=9fbd08b4-6eba-11ed-a2d3-f44514aa45ac
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Mon, 28 Nov 2022 01:18:55 GMT
location: http://dipaka-ead.com/zcvisitor/a00c3384-6eba-11ed-bffe-12d21f78093b/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=675fd9c0-665d-11ed-9380-0a918cbcbb97
server: nginx
set-cookie: sid=9fbd08b4-6eba-11ed-a2d3-f44514aa45ac; path=/; domain=.jiggasha.com; expires=Sat, 16 Dec 2090 04:33:02 GMT; max-age=2147483647; HttpOnly
dipaka-ead.com/zcvisitor/a00c3384-6eba-11ed-bffe-12d21f78093b/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=675fd9c0-665d-11ed-9380-0a918cbcbb97
3.208.247.235200 1.1 kB URL HTTP/1.1 dipaka-ead.com/zcvisitor/a00c3384-6eba-11ed-bffe-12d21f78093b/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=675fd9c0-665d-11ed-9380-0a918cbcbb97
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 897a9f76dea64c3ce8c8771d92afb014
630d8c08635da41825649d36a1e859a58634ad3b
a5debee7cb34afdb9ae6395306ac89d56b84a2986859766d5148bf22d068e6ce
GET /zcvisitor/a00c3384-6eba-11ed-bffe-12d21f78093b/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=675fd9c0-665d-11ed-9380-0a918cbcbb97 HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://jiggasha.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 28 Nov 2022 01:18:55 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: HWzayRGX
push.services.mozilla.com/
34.223.160.237101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.223.160.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yESP9lmIPMiLxezzxLxvlA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BRqRF0vs3YcYJfaRl0J/5VxUcXE=
dipaka-ead.com/zcredirect?visitid=a00c3384-6eba-11ed-bffe-12d21f78093b&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
3.208.247.235200 912 B URL HTTP/1.1 dipaka-ead.com/zcredirect?visitid=a00c3384-6eba-11ed-bffe-12d21f78093b&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (413)
Hash 081d80c8e8e66c2e4895e0b8c2de657d
03b915307eeaff396b5ce987aa3fc3c7f5db960c
f64a78693402a9b42c909456c7af3af837cb7660b92eb25e96c6597b06c20067
GET /zcredirect?visitid=a00c3384-6eba-11ed-bffe-12d21f78093b&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcvisitor/a00c3384-6eba-11ed-bffe-12d21f78093b/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=675fd9c0-665d-11ed-9380-0a918cbcbb97
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 28 Nov 2022 01:18:55 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: ALZgEdAD
dipaka-ead.com/favicon.ico
3.208.247.235404 653 B URL HTTP/1.1 dipaka-ead.com/favicon.ico
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcredirect?visitid=a00c3384-6eba-11ed-bffe-12d21f78093b&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Mon, 28 Nov 2022 01:18:56 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: ANCLZKaz
cartining-specute.com/zp-redirect?target=https%3A%2F%2Ftrk.cloudtraff.com%2F23008f39-f6ce-4226-941f-87822c52a00d%3Fo%3D2769%26clicktag%3Dw9m4mbssnsacghpki19sa48i%26subPublisher%3D719fbd40-273d-47b8-882f-683d1074b172w9m4mbssnsacghpki19sa48i&caid=4eb8b007-6ca0-413b-b911-b9a4ba281fee&zpid=a00c3384-6eba-11ed-bffe-12d21f78093b&cid=w9m4mbssnsacghpki19sa48i&rt=R
18.197.36.77302 Found 0 B URL HTTP/2 cartining-specute.com/zp-redirect?target=https%3A%2F%2Ftrk.cloudtraff.com%2F23008f39-f6ce-4226-941f-87822c52a00d%3Fo%3D2769%26clicktag%3Dw9m4mbssnsacghpki19sa48i%26subPublisher%3D719fbd40-273d-47b8-882f-683d1074b172w9m4mbssnsacghpki19sa48i&caid=4eb8b007-6ca0-413b-b911-b9a4ba281fee&zpid=a00c3384-6eba-11ed-bffe-12d21f78093b&cid=w9m4mbssnsacghpki19sa48i&rt=R
IP 18.197.36.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zp-redirect?target=https%3A%2F%2Ftrk.cloudtraff.com%2F23008f39-f6ce-4226-941f-87822c52a00d%3Fo%3D2769%26clicktag%3Dw9m4mbssnsacghpki19sa48i%26subPublisher%3D719fbd40-273d-47b8-882f-683d1074b172w9m4mbssnsacghpki19sa48i&caid=4eb8b007-6ca0-413b-b911-b9a4ba281fee&zpid=a00c3384-6eba-11ed-bffe-12d21f78093b&cid=w9m4mbssnsacghpki19sa48i&rt=R HTTP/1.1
Host: cartining-specute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dipaka-ead.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Mon, 28 Nov 2022 01:18:56 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://trk.cloudtraff.com/23008f39-f6ce-4226-941f-87822c52a00d?o=2769&clicktag=w9m4mbssnsacghpki19sa48i&subPublisher=719fbd40-273d-47b8-882f-683d1074b172w9m4mbssnsacghpki19sa48i
pragma: no-cache
set-cookie: cc-v4=Qof4Q5OXnm0bKN%2Bf0xdXdhWQ96%2FtSvBJgncTL0Bt%2BXwHoR2EmC%2BCmIX4Z%2BddL6%2F5sXEn%2FmkOrmh6Lo5zJiSOixJVcHs%2BhE4AiPfBqOSyfjL3em%2FMWas03zt6ourlF9U4x9T7Db%2BT2vfxBzwINDgnSA%3D%3D; Max-Age=31536000; Expires=Tue, 28-Nov-2023 01:18:56 GMT; Domain=cartining-specute.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e65b7b2481560ad77ed8ad1372837d0d
787a94b95ed9f8017a0fbeb62e510254f23a81a2
254391c515025605acd9691182ac83f3757fe7d784e8ccd0f8094f109076fa99
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "254391C515025605ACD9691182AC83F3757FE7D784E8CCD0F8094F109076FA99"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10312
Expires: Mon, 28 Nov 2022 04:10:48 GMT
Date: Mon, 28 Nov 2022 01:18:56 GMT
Connection: keep-alive
trk.cloudtraff.com/23008f39-f6ce-4226-941f-87822c52a00d?o=2769&clicktag=w9m4mbssnsacghpki19sa48i&subPublisher=719fbd40-273d-47b8-882f-683d1074b172w9m4mbssnsacghpki19sa48i
104.18.24.64302 Found 0 B URL HTTP/2 trk.cloudtraff.com/23008f39-f6ce-4226-941f-87822c52a00d?o=2769&clicktag=w9m4mbssnsacghpki19sa48i&subPublisher=719fbd40-273d-47b8-882f-683d1074b172w9m4mbssnsacghpki19sa48i
IP 104.18.24.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /23008f39-f6ce-4226-941f-87822c52a00d?o=2769&clicktag=w9m4mbssnsacghpki19sa48i&subPublisher=719fbd40-273d-47b8-882f-683d1074b172w9m4mbssnsacghpki19sa48i HTTP/1.1
Host: trk.cloudtraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dipaka-ead.com/
Connection: keep-alive
Cookie: UTGv2=D-h48803562ab672381b1fe2dff4e09f95cd47; vcid=%7B%22id%22%3A%22a99d2416-3eb7-4ebb-9f7f-2bfb8b8a3fca%22%2C%22firstTime%22%3A%22Jun+6%2C+2022+2%3A04%3A21+PM%22%2C%22visitCount%22%3A1%2C%22firstTimeDay%22%3A%22Jun+6%2C+2022+2%3A04%3A21+PM%22%2C%22visitDays%22%3A1%2C%22origin%22%3A%22routing%22%2C%22lastLocation%22%3A%22routing%22%2C%22ageInSecs%22%3A0%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 28 Nov 2022 01:18:56 GMT
content-length: 0
location: https://www.dirtydating.com/landing/wf6006?clickId=309b6d7f-81ae-446b-bb80-945b6cf60de7&tracker=SGM_Pro&publisher=31015&subPublisher=719fbd40-273d-47b8-882f-683d1074b172w9m4mbssnsacghpki19sa48i&zz=true&hit_id=309b6d7f-81ae-446b-bb80-945b6cf60de7&tp_redirect_id=309b6d7f-81ae-446b-bb80-945b6cf60de7
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: attrk=yes;Version=1;Max-Age=86400
vcid=%7B%22id%22%3A%22a99d2416-3eb7-4ebb-9f7f-2bfb8b8a3fca%22%2C%22firstTime%22%3A%22Jun+6%2C+2022+2%3A04%3A21+PM%22%2C%22lastTime%22%3A%22Nov+28%2C+2022+1%3A18%3A56+AM%22%2C%22visitCount%22%3A2%2C%22firstTimeDay%22%3A%22Nov+28%2C+2022+1%3A18%3A56+AM%22%2C%22visitDays%22%3A2%2C%22origin%22%3A%22routing%22%2C%22lastLocation%22%3A%22routing%22%2C%22ageInSecs%22%3A15074075%7D;Version=1;Domain=cloudtraff.com;Path=/;Max-Age=2147483647;Expires=Sat, 16 Dec 2090 04:33:03 GMT
__cf_bm=NX.Z2fznVlL1nC5px3Ls8RzLGM9.ji4Nd9WUZTA7mMg-1669598336-0-AT5JbudznYQYkS9GdAg6Jbkmfeig14Cg5aN9zP6Y/dBK8LbT62nQOrTw6+QsCr5Oydf8ahceawmaiyOLpnP4Pfc=; path=/; expires=Mon, 28-Nov-22 01:48:56 GMT; domain=.cloudtraff.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 770f45c149ccb4fa-OSL
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 810e448acb4da9b420187b005ed85ede
badd5bdeba3cab30731b8741fa96ad78a3843b5f
8276c64509fec29b0dc863ce2e617abc430573a538adbbc0c9ca9c92fb80c42e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "8276C64509FEC29B0DC863CE2E617ABC430573A538ADBBC0C9CA9C92FB80C42E"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5657
Expires: Mon, 28 Nov 2022 02:53:13 GMT
Date: Mon, 28 Nov 2022 01:18:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3686
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Mon, 28 Nov 2022 01:18:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3686
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Mon, 28 Nov 2022 01:18:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3686
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Mon, 28 Nov 2022 01:18:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3686
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Mon, 28 Nov 2022 01:18:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 11830
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 005e5ba3c9588cf389a58195001b64e3
238a7439d887fb3aa7f1302eeb43fce62f08441a
d75dd5b6f57d9c9290725c5be76cc7d7a39682ca569bea18eceb9bdc13d444f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10813
x-amzn-requestid: 5a3c9584-1389-45ac-968d-0a2301f82eda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KG00oAMFpig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-6ffc3ff67f7f7e75399834e8;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3ggibSv4guzAQjW77yMg7HTp5JCBi1B9dxXi-Zy_-Vw0b6lP1PAGyQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:09 GMT
age: 12467
etag: "238a7439d887fb3aa7f1302eeb43fce62f08441a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fa848cb85e85df184b078fe7aa95ae52
21aa6418f3a0d2b64925b66d5fb9079b7e84a11c
37d299c166e3350dee6dee647e98a86f8bd916d186bae12c42764ed0a3177085
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5989
x-amzn-requestid: db10fcc5-80ab-4650-af49-d5afe36706f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78LHQqIAMF9_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-4cbd19e3227894844807742c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A5n6y1-hpgr4vynnRXkEZNvCvjlNGH6brl7eYMsdN1MST7YoD2BPgA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:13 GMT
age: 12463
etag: "21aa6418f3a0d2b64925b66d5fb9079b7e84a11c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4060284252d32701c42e2df4a83970a0
a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da
53eca0f8435d6e2e62962ef80d4597afad2773a582746d523f7f5d30c3e07b8e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4708
x-amzn-requestid: 6efd15cd-c944-42e7-8142-01360fbe4a25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JFbXIAMFc_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3c7d91eb7a2f3a9669f89d88;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6FSZ3Zw-s95LlrU3skAr5_g6m36c9SQ9_6vA3HFbMKYTTFzJRBJ76w==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:26:43 GMT
age: 10333
etag: "a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a8935783026c10470f60033d3a860f7b
65941dd34eb1063a3f7fe2b6790a11a484a06b9a
e88c706458faf5b5512212692392c7c1a0d8e60af62962267166f5cb60ee9c89
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11165
x-amzn-requestid: 9e35d865-adea-4d2a-b20f-beb014cdd42f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JE2VIAMFYgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-7cf4db38152cdfa1448cba3d;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: SFO5-C3, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4YRocKXYUOkfho0bEHNX0xMxhhKNH2Cm3XtQDtQK7x2dFOsipPjfCw==
via: 1.1 dec8fa38a453902521b941c7cd70d33c.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:26:45 GMT
age: 10331
etag: "65941dd34eb1063a3f7fe2b6790a11a484a06b9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f20d5c4b208740dd4c737b9d95c0e1d0
c843c5422499736a83a80c2b07475a8dbbb8860f
f8d048a2c911aaedfa53b7d6e134638e8c36db0700a874fe99e0d8f847970a1b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12555
x-amzn-requestid: 2d9827ba-fc88-4deb-9844-f5b42764b2e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_MHPWIAMFQMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d861-42986aeb284115943c849306;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: up0DWugUp4S0jAtsA-KBRapBAHtcHCdTwWJock-y22fqyL6_YVFeqg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:09 GMT
age: 12467
etag: "c843c5422499736a83a80c2b07475a8dbbb8860f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 621633ded2065320ae3bd2cae400bc41
41cb5fe669b4684018cd541deeef9951eb00d6be
a7b627917e108fbf730d4d908c10db01aae0562a77fd69cc17e95e41f83d9f6a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A7B627917E108FBF730D4D908C10DB01AAE0562A77FD69CC17E95E41F83D9F6A"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13928
Expires: Mon, 28 Nov 2022 05:11:04 GMT
Date: Mon, 28 Nov 2022 01:18:56 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 621633ded2065320ae3bd2cae400bc41
41cb5fe669b4684018cd541deeef9951eb00d6be
a7b627917e108fbf730d4d908c10db01aae0562a77fd69cc17e95e41f83d9f6a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A7B627917E108FBF730D4D908C10DB01AAE0562A77FD69CC17E95E41F83D9F6A"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13928
Expires: Mon, 28 Nov 2022 05:11:04 GMT
Date: Mon, 28 Nov 2022 01:18:56 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 621633ded2065320ae3bd2cae400bc41
41cb5fe669b4684018cd541deeef9951eb00d6be
a7b627917e108fbf730d4d908c10db01aae0562a77fd69cc17e95e41f83d9f6a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A7B627917E108FBF730D4D908C10DB01AAE0562A77FD69CC17E95E41F83D9F6A"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13927
Expires: Mon, 28 Nov 2022 05:11:04 GMT
Date: Mon, 28 Nov 2022 01:18:57 GMT
Connection: keep-alive
lpmedia.servefilesonly.com/img/_pictures/cougarLife/icon-chat.png
104.18.11.149200 OK 2.5 kB URL HTTP/2 lpmedia.servefilesonly.com/img/_pictures/cougarLife/icon-chat.png
IP 104.18.11.149:0
File type PNG image data, 60 x 60, 8-bit colormap, non-interlaced\012- data
Hash 58d7cd4d0f96deb538b103d2d18e14ba
932efd0bcc0840b8a19df04867f0ea73283619a2
18ab1b4f231eea7d4ba13e60309d23aec98eb846efcac914f8d5d0b7989859ed
GET /img/_pictures/cougarLife/icon-chat.png HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/png
content-length: 2468
last-modified: Mon, 21 Nov 2022 07:33:03 GMT
etag: "637b29af-9a4"
access-control-allow-origin: *
cache-control: public, max-age=691200
cf-cache-status: HIT
age: 475442
expires: Tue, 06 Dec 2022 01:18:57 GMT
accept-ranges: bytes
set-cookie: __cf_bm=t.nEbWZ3ALNenC0WXInozulxr1Ah7A6jPt4iCAbQuNs-1669598337-0-AfW5OSP00gmw1QgKSNO7b146lIBcbFpFdmcUgMKIosEbjYEdDP+LgxAjwcBIAYRWseGQ4iPuqst+rQsV+P4RVRg=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c67adeb521-OSL
X-Firefox-Spdy: h2
imedia.servefilesonly.com/05760d79-bf90-4f15-a9e5-132bc5e11f19_wf-medium-16-2.jpg
104.18.11.149200 OK 43 kB URL HTTP/2 imedia.servefilesonly.com/05760d79-bf90-4f15-a9e5-132bc5e11f19_wf-medium-16-2.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash 1c8a41f00343925ce71377f5ed455596
9963cf20e6245040bdc1e49afeeeb347a434548b
671ccd89685f86dd578eb27effccc387ce84949ae95ae02f5567d7b3333386af
GET /05760d79-bf90-4f15-a9e5-132bc5e11f19_wf-medium-16-2.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 42966
cf-bgj: h2pri
etag: "1c8a41f00343925ce71377f5ed455596"
last-modified: Thu, 15 Oct 2020 02:24:07 GMT
via: 1.1 23c0f38b3232ce0b791a0dc79e0ef642.cloudfront.net (CloudFront)
x-amz-cf-id: OPAGb3RGn0M0ycmaN_F37ve6yZeOU5pHHzEAfMllQjRvZ141wdxfaA==
x-amz-cf-pop: ARN1-C1
x-cache: Miss from cloudfront
cf-cache-status: HIT
age: 459834
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=ZBL2pIlpjKb._Lyb4miuCIZ.VO5LzLbNa03mruNKdoc-1669598337-0-AQS5S/8A4LkFPYeQdVQITR+O82yBwmVXjO6Wem4y6+BRu0PMWUs+C0vrFWsF/Sfz/jaxCjZE5kBDwHR7njDJxeQ=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c69af3b521-OSL
X-Firefox-Spdy: h2
www.dirtydating.com/landing/wf6006?clickId=309b6d7f-81ae-446b-bb80-945b6cf60de7&tracker=SGM_Pro&publisher=31015&subPublisher=719fbd40-273d-47b8-882f-683d1074b172w9m4mbssnsacghpki19sa48i&zz=true&hit_id=309b6d7f-81ae-446b-bb80-945b6cf60de7&tp_redirect_id=309b6d7f-81ae-446b-bb80-945b6cf60de7
104.18.17.89200 OK 14 kB URL HTTP/2 www.dirtydating.com/landing/wf6006?clickId=309b6d7f-81ae-446b-bb80-945b6cf60de7&tracker=SGM_Pro&publisher=31015&subPublisher=719fbd40-273d-47b8-882f-683d1074b172w9m4mbssnsacghpki19sa48i&zz=true&hit_id=309b6d7f-81ae-446b-bb80-945b6cf60de7&tp_redirect_id=309b6d7f-81ae-446b-bb80-945b6cf60de7
IP 104.18.17.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (626)
Hash 675d9a7798132e4b30a2a214c91da4b3
e12a9c764f2159af75e48d67e6dba993c41277af
b209c915d3f766739e32a802492a507dcc88898c5bbf651944a2dc4f36c14121
GET /landing/wf6006?clickId=309b6d7f-81ae-446b-bb80-945b6cf60de7&tracker=SGM_Pro&publisher=31015&subPublisher=719fbd40-273d-47b8-882f-683d1074b172w9m4mbssnsacghpki19sa48i&zz=true&hit_id=309b6d7f-81ae-446b-bb80-945b6cf60de7&tp_redirect_id=309b6d7f-81ae-446b-bb80-945b6cf60de7 HTTP/1.1
Host: www.dirtydating.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dipaka-ead.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:56 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=0, private, must-revalidate, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type, Accept, Origin, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
pragma: no-cache
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=fg8rd8imk87388kihuvad051li; path=/
__cf_bm=TJs4VDCN.gVp6rPL4rZ_WRvAALFo6R5m_VdTZDrcapY-1669598336-0-Aasaf8YaK9UNvV2OAeqnD7KF/2IncoSh+4G2j9cXsXJ02JIF0cciEKu+t6s3H4AO32D7VGvEznisotUN2r8Knvg=; path=/; expires=Mon, 28-Nov-22 01:48:56 GMT; domain=.dirtydating.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 770f45c4088e1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
imedia.servefilesonly.com/93408fba-7db5-4d7c-97f7-2a20808b3fbf_wf-medium-16-6.jpg
104.18.11.149200 OK 77 kB URL HTTP/2 imedia.servefilesonly.com/93408fba-7db5-4d7c-97f7-2a20808b3fbf_wf-medium-16-6.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash b1bfe40b81b4d858c60ff77dc57f5eba
21157e0a45209a9e9cca6c58654925bc2f7da4f2
23db8c2ea963fa5dc475a676556d425883ebd3eb59eb4c1678afe0ce40664dbc
GET /93408fba-7db5-4d7c-97f7-2a20808b3fbf_wf-medium-16-6.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 76724
cf-bgj: h2pri
etag: "b1bfe40b81b4d858c60ff77dc57f5eba"
last-modified: Thu, 15 Oct 2020 02:24:08 GMT
via: 1.1 e9eeb72bccacc26d81e7bd02c27d126a.cloudfront.net (CloudFront)
x-amz-cf-id: SaA7hMNF_l9O2I7zDp11wleIjugVNcnaghJA0pLETnl1fUH2p7oVzg==
x-amz-cf-pop: ARN1-C1
x-cache: Miss from cloudfront
cf-cache-status: HIT
age: 459834
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=A1yvyOwNG28n0wMbk32iTQx4MuntMCfFtXwW2CuqVxo-1669598337-0-AUagimTsMJxMHrNtN4MgHelzMhIrl1i4JOtsfw8zWlethw6tTQNBam1ryVkIdEJJ4d+88dK+KPYm7bKxFDVgKGc=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c69af6b521-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2620cb440711056d80ec6ee6a4101116
0de0450475dd899906c36956881f9db5ecad90fd
9a84a21b1cb5e13c925b144beef55b87669a02836087e1a9cf74fa4964ef43f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5256
Cache-Control: max-age=112204
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 01:18:57 GMT
Etag: "63830b45-117"
Expires: Tue, 29 Nov 2022 08:29:01 GMT
Last-Modified: Sun, 27 Nov 2022 07:01:25 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
imedia.servefilesonly.com/1644e556-471e-41c4-af38-38f9b8c972aa_wf-small-16-6.jpg
104.18.11.149200 OK 7.2 kB URL HTTP/2 imedia.servefilesonly.com/1644e556-471e-41c4-af38-38f9b8c972aa_wf-small-16-6.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 5cd88a86164fd66a980e9b75f60ff55a
419c3a181b50e758213d8d2ac5befc8896f78e94
14b27da54e2c772811da965446cb991b55e5d427f58f507f6f9b80807aebcd6f
GET /1644e556-471e-41c4-af38-38f9b8c972aa_wf-small-16-6.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 7181
cf-bgj: h2pri
etag: "5cd88a86164fd66a980e9b75f60ff55a"
last-modified: Thu, 15 Oct 2020 02:24:10 GMT
via: 1.1 a529b95d300020af7b6819ecefd572f4.cloudfront.net (CloudFront)
x-amz-cf-id: D57LuY-YqLlmq4RVjK-YASJpNtIMQ0l-KSLyF5Q9cuQw-AgOcBfayA==
x-amz-cf-pop: HEL50-C1
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 459834
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=hFxyC8YDicH3BXG44Xfo9nP_bE071GpyJxZxpXKjK0U-1669598337-0-AbdlmOHn//hPBwpqXONfePdF8/hc+bK2bVavI9nGIaJGcJkVw4oBo1HoGNaOn5pweuuM+UMpVnLgvh7V3GE7l70=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c69af9b521-OSL
X-Firefox-Spdy: h2
imedia.servefilesonly.com/612cafb8-062f-4984-b769-1a231729eada_wf-medium-16-4.jpg
104.18.11.149200 OK 57 kB URL HTTP/2 imedia.servefilesonly.com/612cafb8-062f-4984-b769-1a231729eada_wf-medium-16-4.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash 90087b504212a3109b4518fa863a74c6
2dfeafc671465bd802d827b69702f296eb0493b4
6cfb205169d6f4c0b2b1dd0f2cb029e79ce8e69a259bd5f5abd1252ae178e503
GET /612cafb8-062f-4984-b769-1a231729eada_wf-medium-16-4.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 57427
cf-bgj: h2pri
etag: "90087b504212a3109b4518fa863a74c6"
last-modified: Thu, 15 Oct 2020 02:24:08 GMT
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-id: Y3ShhAnhMYu2z0bxkuRf5vMb7U9uHAXWj6VQp6KIejxzkmIzEk9d6w==
x-amz-cf-pop: ARN1-C1
x-cache: Miss from cloudfront
cf-cache-status: HIT
age: 459834
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=VLwwExMtiJpObgh6ULRpsoZYVFpF8vmGkxu2_XisPkg-1669598337-0-AYXNeVzNRVB7VoBO5/BDbnRb1kC86lvJ7qsYIPeda8nqM/5xhC9fNYFNrxCtrjdpN8Zr2PXZLbN5ozY/EgU4mxg=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c69af1b521-OSL
X-Firefox-Spdy: h2
imedia.servefilesonly.com/5bee0cff-ccdf-4f51-a9e3-2eeda71e2b69_wf-medium-16-5.jpg
104.18.11.149200 OK 58 kB URL HTTP/2 imedia.servefilesonly.com/5bee0cff-ccdf-4f51-a9e3-2eeda71e2b69_wf-medium-16-5.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash 76360b6dff5b6e301ad86042115b7e69
4263468a2398f24aee08697c6ad14ac1ac14a4a8
5cd0e04a0f9d82b5ad03231bb5cfda515f260ef8b49c2be8930931dd3a8b1de2
GET /5bee0cff-ccdf-4f51-a9e3-2eeda71e2b69_wf-medium-16-5.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 58105
cf-bgj: h2pri
etag: "76360b6dff5b6e301ad86042115b7e69"
last-modified: Thu, 15 Oct 2020 02:24:08 GMT
via: 1.1 d975c23165964b20999503339a61d1ae.cloudfront.net (CloudFront)
x-amz-cf-id: nIiVBAvQUcQcCC6h9RPv-pmpjuk8PrTwDblLQ9R0FPxWaHR3sJDQSA==
x-amz-cf-pop: ARN1-C1
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 472189
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=J_iAPilO1gWKpvFpU3RNladx4NoviKHqCXLSQ4DmHrg-1669598337-0-AUFFxrYmA9mg3nRwO3cPWTsQhfBBijdiQsLeNkAdYAh2Hob3OWaCVd+tno6VvJ//wBlFXIW+Ut1djHAgiom33QI=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c69af5b521-OSL
X-Firefox-Spdy: h2
imedia.servefilesonly.com/d2f1b54b-c9f6-4dd3-8a5e-cd9587a9b87a_wf-small-16-2.jpg
104.18.11.149200 OK 6.5 kB URL HTTP/2 imedia.servefilesonly.com/d2f1b54b-c9f6-4dd3-8a5e-cd9587a9b87a_wf-small-16-2.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash e64348fd818e4ad11148c8504729370d
681c15a6170bf2e639f94d2849548e57acfed2fd
3264e0e114cd7a9eb32d933e234c5d049b97f89ae5a441f78477f3ea0aad8e0a
GET /d2f1b54b-c9f6-4dd3-8a5e-cd9587a9b87a_wf-small-16-2.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 6523
cf-bgj: h2pri
etag: "e64348fd818e4ad11148c8504729370d"
last-modified: Thu, 15 Oct 2020 02:24:09 GMT
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: _GzjVYZFm5rk-XB3ZiRIdQfVNjufPmcgPcsVKpFmP5sDkq4NqbuHFg==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 459835
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=nptvlL697egNccwNNF3GBHg6IAygpWvlJrZH.2AAhVc-1669598337-0-AeaxLch22QNZHYiGf233BOQvDc0Ok2igueEJLU778m2lAaYzWfhVkamfjloIxyynyUzfXzmOHuDW+EXGG1eIVQY=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c69afab521-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7505e6a6ec5b5b89eff187cd1e7b73dc
f2407e16efbe99af301250a98e08948199d66225
bca5c29d185ab671d9b97a74c815da37ff5e2a7baa5e1555d272d784b4221236
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3379
Cache-Control: max-age=113568
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 01:18:57 GMT
Etag: "638317ee-117"
Expires: Tue, 29 Nov 2022 08:51:45 GMT
Last-Modified: Sun, 27 Nov 2022 07:55:26 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
imedia.servefilesonly.com/a0ad3f45-eb32-44c8-8f38-b9227288824b_wf-medium-16-1.jpg
104.18.11.149200 OK 106 kB URL HTTP/2 imedia.servefilesonly.com/a0ad3f45-eb32-44c8-8f38-b9227288824b_wf-medium-16-1.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Size 106 kB (105498 bytes)
Hash 3d2fa62b6bc506bc6e474de69146221d
428f085ee973088f460c5d187a1f83c8dbe9d1d2
ab1af49f8aa8147177795682be249fb53e252eff3e89adaf758d5a995bbf8dbd
GET /a0ad3f45-eb32-44c8-8f38-b9227288824b_wf-medium-16-1.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 105498
cf-bgj: h2pri
etag: "3d2fa62b6bc506bc6e474de69146221d"
last-modified: Thu, 15 Oct 2020 02:24:06 GMT
via: 1.1 feed293e4f35224252786d4d48fa601e.cloudfront.net (CloudFront)
x-amz-cf-id: CTPwL0AlZHMn6DGZfYB2ZG30X9MVZUfmZDGvwRbI7tKalT7TUrsd0A==
x-amz-cf-pop: ARN1-C1
x-cache: Miss from cloudfront
cf-cache-status: HIT
age: 459834
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=WlZbwH65vAI2lDmcBLa2bwpDxJ.WRPiLplFpY5iOU2c-1669598337-0-ARGd9b9Ftt3xfZbDniDYgwWHaF4D/DZHMggfJB1LVDWn5QD5WHKrbzmn6KV+F8y7QsfGTnCQl7ulRzyHx14f4HQ=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c69af2b521-OSL
X-Firefox-Spdy: h2
imedia.servefilesonly.com/6e418c1f-b3e3-4fa2-9096-76e828975584_wf-small-16-1.jpg
104.18.11.149200 OK 7.3 kB URL HTTP/2 imedia.servefilesonly.com/6e418c1f-b3e3-4fa2-9096-76e828975584_wf-small-16-1.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash d0ff9898baa8c12b64f041b0df31de72
c103f707503f1a2ea11ee9ab8c411d9dcb31ecd8
748474360031f18d837cd1d53f0891140d1457713d0e0f190873e6cf422f0455
GET /6e418c1f-b3e3-4fa2-9096-76e828975584_wf-small-16-1.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 7297
cf-bgj: h2pri
etag: "d0ff9898baa8c12b64f041b0df31de72"
last-modified: Thu, 15 Oct 2020 02:24:09 GMT
vary: Accept-Encoding
via: 1.1 a62f7ce6b39c676fcfdde0f9a6fcf08e.cloudfront.net (CloudFront)
x-amz-cf-id: _P7lVEq7AxhaGstw9WpA6qJzyXq3xdPIgu6d8ZJTkc9ftDt3em4ZpQ==
x-amz-cf-pop: ARN1-C1
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 364780
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=3vsdJb5SOy.BEDeSEdloh8Jby64a9moYvwbQfbE4Li8-1669598337-0-ASuR7U2vWele2ltAjExRKhRdL4BB69SGGXDNBsbDN7OQK1189s2JWLdAqJpvUyrQQOcI1Lk2YU9/04Ad6GEYL98=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 770f45c6ab00b521-OSL
X-Firefox-Spdy: h2
imedia.servefilesonly.com/caa01ce3-0a55-46dd-af8e-ed1902f4a654_wf-medium-16-3.jpg
104.18.11.149200 OK 80 kB URL HTTP/2 imedia.servefilesonly.com/caa01ce3-0a55-46dd-af8e-ed1902f4a654_wf-medium-16-3.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash ffc3e3bbf87dc14fa42ddbddb675600c
5ce700fdbcf623795174944057e58466d88f002c
d72e2b2e4af13c83ceaf0ca7e24e28246ae45d57ac7c06c8d3ec2e65f0d1d1bf
GET /caa01ce3-0a55-46dd-af8e-ed1902f4a654_wf-medium-16-3.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 80160
cf-bgj: h2pri
etag: "ffc3e3bbf87dc14fa42ddbddb675600c"
last-modified: Thu, 15 Oct 2020 02:24:07 GMT
via: 1.1 978313776816dba934d16309fa2c65c8.cloudfront.net (CloudFront)
x-amz-cf-id: EhU2_Twu2ZF33E4B7RsSjEzrx7ZpK1p35FwCV2uve1HsbAjJ3E6Ykg==
x-amz-cf-pop: ARN54-C1
x-cache: Miss from cloudfront
cf-cache-status: HIT
age: 459834
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=rwx18oDVLsTflIWQeTK_DcKe6gt3bLZVluiEBG4OduE-1669598337-0-AbVulEgQRqsuNz2vKy/IHnxHzV7u30BpPMSXDbSivqe3JuAH/olWBwWugCl/nMMabTdISDukTT0HvaUFxHe3ors=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c6aaffb521-OSL
X-Firefox-Spdy: h2
imedia.servefilesonly.com/554a60e1-7b1f-41a0-81e2-645dbf7d7e0d_wf-small-16-5.jpg
104.18.11.149200 OK 6.1 kB URL HTTP/2 imedia.servefilesonly.com/554a60e1-7b1f-41a0-81e2-645dbf7d7e0d_wf-small-16-5.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash c071eae81cff34d02d3e37e2733b96a8
b457d787cf4c2eed4ebf9bb67f29dcf9e1d981d5
f3b7fdeb9137bd612f3bb39146d05e602cfb7cb12ff0ba966b48ae2365395b43
GET /554a60e1-7b1f-41a0-81e2-645dbf7d7e0d_wf-small-16-5.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 6124
cf-bgj: h2pri
etag: "c071eae81cff34d02d3e37e2733b96a8"
last-modified: Thu, 15 Oct 2020 02:24:10 GMT
via: 1.1 071f9eb2da57909aeed117ffdc09bd88.cloudfront.net (CloudFront)
x-amz-cf-id: xoecKmZRmnYf1UqEgPN5DhteBLmhqOp1ZQ8HdZcvsuFviK_ZCgFn0g==
x-amz-cf-pop: HEL50-C1
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 459834
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=v6QQvPR4rnC5Zr01z543.Re0N8yOhVHWhIhyHL5R2Jo-1669598337-0-AanT8rN3j2IfNsSrhTtfDN5f2NXYMd6QnQSnHVa8Mqj+fcQNVzEeF/VuY0UsVrG6CVg45ZNCIAkvOeFo7YE6BgE=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c70b2db521-OSL
X-Firefox-Spdy: h2
imedia.servefilesonly.com/9261e1b5-15d4-4a07-800c-b711c9425d4a_wf-small-18-4.jpg
104.18.11.149200 OK 6.1 kB URL HTTP/2 imedia.servefilesonly.com/9261e1b5-15d4-4a07-800c-b711c9425d4a_wf-small-18-4.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash bcf31f38b8a6346dc7cf735b6e13ca33
b041f39a37f8adf279d0995a0fc6e291bfd850c8
b9c5bee6e282652046b9f8c61a2832b60745a790d79094ddfd2c24de7ed60f56
GET /9261e1b5-15d4-4a07-800c-b711c9425d4a_wf-small-18-4.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 6119
cf-bgj: h2pri
etag: "bcf31f38b8a6346dc7cf735b6e13ca33"
last-modified: Thu, 15 Oct 2020 02:24:09 GMT
via: 1.1 d975c23165964b20999503339a61d1ae.cloudfront.net (CloudFront)
x-amz-cf-id: bOKzEdSVW8Dz_bTm2-AVzq_n3p17cBplwDfvOcGjpaHUinx3nZbTtg==
x-amz-cf-pop: ARN1-C1
x-cache: Miss from cloudfront
cf-cache-status: HIT
age: 459834
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=lg9kbq0NLm6xuUt_1lUcZDKbObxrpTWhDRPWBCNzqQE-1669598337-0-AbcoZOnqL+BFhQeZKLQO/r1tJw5SOmshzG/8NOsjylp4sAA5+kbOoWyzqyVE4fnjRJ8mNhTHyxQU6p0RJLU8XzQ=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c70b2fb521-OSL
X-Firefox-Spdy: h2
imedia.servefilesonly.com/a8448519-9559-470b-b6e3-2de7fc44a1aa_wf_big_6006.jpg
104.18.11.149200 OK 99 kB URL HTTP/2 imedia.servefilesonly.com/a8448519-9559-470b-b6e3-2de7fc44a1aa_wf_big_6006.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x800, components 3\012- data
Hash eb7158ac9c68e57ba03d1ef9dfac3cfd
11006a3f8979a553369d4475d54cd808cb5c99bf
4a7e825dbf6137edea1cd33cd78622c845a55239cc5f4d10c44f6d7400e3f6b2
GET /a8448519-9559-470b-b6e3-2de7fc44a1aa_wf_big_6006.jpg HTTP/1.1
Host: imedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 99445
cf-bgj: h2pri
etag: "eb7158ac9c68e57ba03d1ef9dfac3cfd"
last-modified: Thu, 15 Oct 2020 02:23:55 GMT
via: 1.1 c2c75215aa2ab067e062055fa68a3fde.cloudfront.net (CloudFront)
x-amz-cf-id: yDLupSV2U7_zdbqNQ3tOoTN6-xTB1kz18fENlZRpeR-b3dCt6CkHew==
x-amz-cf-pop: CPH50-C1
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 459834
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=c4DtS7eE_zLq0.tiGkCkH06jzu.wpmygO_.B0L_Kk_8-1669598337-0-AdgCPa9CGCvkilQljgdoMqW+jNeK2u1UyPf3Tl+H8kipre7JAkaVEYFUB/CGijefOhFsvpytm9WTaOsHfUs1tBM=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c70b2eb521-OSL
X-Firefox-Spdy: h2
lpmedia.servefilesonly.com/build/widgets/registrationFormBuilder/styles.min.css?963054
104.18.11.149200 OK 1.8 kB URL HTTP/2 lpmedia.servefilesonly.com/build/widgets/registrationFormBuilder/styles.min.css?963054
IP 104.18.11.149:0
Hash ea410ab2f9133827d6dfa8888286766f
aebbc9f7e522b837754f15717ee344017eb5131f
14c2bb5fc9d5275226773ec53658f7bd6110fa12d314ce3d7ad20df36f96fc12
GET /build/widgets/registrationFormBuilder/styles.min.css?963054 HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 09:21:17 GMT
vary: Accept-Encoding
etag: W/"637f378d-133a"
access-control-allow-origin: *
cache-control: public, max-age=691200
content-encoding: gzip
cf-cache-status: HIT
age: 314094
expires: Tue, 06 Dec 2022 01:18:57 GMT
set-cookie: __cf_bm=jvhleHwuTQlIgFXiP4tZ3fc9G54CdvLM.scGDs6Bzm0-1669598337-0-AZNbtJxC0aKhd+oeJRGe7f2arUdXEjSE3Wb3E/ihRchn3I7TWc7Ado/j1OsnIi6/BVdME5Q+IpOHfVb0L/GDgAg=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 770f45c67ad9b521-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 01:18:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.11.207200 OK 7.3 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.11.207:0
File type ASCII text, with very long lines (30837)
Hash 992bce0a7b7274a4adcd62c633e874d5
cae038f2767d85308098d94da80e7967c94d802f
11fd4e7ad78da7921c81ffe0015fbca21669087acd3bb6b0ab2faf7475d03128
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-03-10 20:26:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 121d365db7a9aba3915641185d93b963
cdn-cache: HIT
cf-cache-status: HIT
age: 18909144
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 770f45c7181a0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.onesignal.com/sdks/OneSignalSDK.js
104.18.225.52200 OK 3.1 kB URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP 104.18.225.52:0
File type ASCII text, with very long lines (9097)
Hash 9a02c7300c6aa269c1e6f3a32a44481a
e18f957ce14a5dfa04dafcac9168e25382090910
cde8547048784ffe04261c93af9d4733603c43d993c710991331d0dbc44f66dd
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 384
expires: Thu, 01 Dec 2022 01:18:57 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 770f45c72e96b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
216.58.211.10200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (32058)
Hash fc3fc31e5e7c0933dc18e562c1c071bf
a44c31323f6bd29e583cc585036e6eb39f7014a6
ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 14:19:00 GMT
expires: Wed, 22 Nov 2023 14:19:00 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 471597
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lpmedia.servefilesonly.com/style/templates/WhatsFriends2/style.css?963054
104.18.11.149200 OK 3.5 kB URL HTTP/2 lpmedia.servefilesonly.com/style/templates/WhatsFriends2/style.css?963054
IP 104.18.11.149:0
Hash 4d5b0101ea280e373276e345111bcf35
0b3d5e1ba50da1f85df2b2ce55dec470827f2258
18dd2cfabc312ea83230ce93661b3940043aedc2f80b70dc9021cb0bc6bfd956
GET /style/templates/WhatsFriends2/style.css?963054 HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=15833
access-control-allow-origin: *
cache-control: public, max-age=691200
etag: W/"637f3b7f-3dd9"
last-modified: Thu, 24 Nov 2022 09:38:07 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 313648
expires: Tue, 06 Dec 2022 01:18:57 GMT
set-cookie: __cf_bm=JENNkkd4g5eAt.5I2W9yUf8B.bV0nGFe4r..T7HFauA-1669598337-0-AQevcTL3qxWonq+r3GYpSsGVZL7Ex9IDn5WqMrpekYOUL6ED6SDpZnzf3h0thrL9MQZM2HPdWJXRoSbBJXmmxxo=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 770f45c71b3ab521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
lpmedia.servefilesonly.com/img/_patterns/tp-colum-center.jpg
104.18.11.149200 OK 47 kB URL HTTP/2 lpmedia.servefilesonly.com/img/_patterns/tp-colum-center.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x1153, components 3\012- data
Hash bd6f82b554c76c63e48e45cecd07ba8a
1f66ef6f98742fea6fe89fd4ebce1e9bf7f99a82
be4f24e78e1668c6bb75e99bd83ad6742bd73fa07cc21fa88431560b93d65ee4
GET /img/_patterns/tp-colum-center.jpg HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Cookie: __cf_bm=xdNg1wyEoJXragWY1scGP45rSrsZ9Ht4avaLNXpl7C8-1669598337-0-ASZ/Vq0M5uajCYzyL2pcY4Q5gArBjgaTJwqKHHHya1RZn+dFfdTLPCYzz99k8VfEbJW2PgHEnKU/Q5ggtXzJdbI=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 47331
cf-bgj: h2pri
access-control-allow-origin: *
cache-control: public, max-age=691200
etag: "637b29af-b8e3"
last-modified: Mon, 21 Nov 2022 07:33:03 GMT
cf-cache-status: HIT
age: 426171
expires: Tue, 06 Dec 2022 01:18:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c7fb97b521-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:400,400i,700
142.250.74.10200 OK 3.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:400,400i,700
IP 142.250.74.10:0
Hash 5e252001803c404f7d640c58adaf1c5b
0a856819882f71768602a9dbf3dd744cc431c82e
e2ede513757460c10ac66e54d6fa67ff8158e0fcb6028b29f3c441892ec4546f
GET /css?family=Lato:400,400i,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 01:18:57 GMT
date: Mon, 28 Nov 2022 01:18:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lpmedia.servefilesonly.com/build/widgets/loginFormBuilder/styles-1.min.css?963054
104.18.11.149200 OK 1.6 kB URL HTTP/2 lpmedia.servefilesonly.com/build/widgets/loginFormBuilder/styles-1.min.css?963054
IP 104.18.11.149:0
Hash b16bf5448bbfab984d66b674525b69db
209923ed034d7ca975994774874410f6986226b7
1358ff99b38d143c9420fc90d592558af31ec4b45cf97d420755380e5438f774
GET /build/widgets/loginFormBuilder/styles-1.min.css?963054 HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 09:21:17 GMT
vary: Accept-Encoding
etag: W/"637f378d-1313"
access-control-allow-origin: *
cache-control: public, max-age=691200
content-encoding: gzip
cf-cache-status: HIT
age: 313924
expires: Tue, 06 Dec 2022 01:18:57 GMT
set-cookie: __cf_bm=adxUBUTUc0mVVETri9nCAwLn1ao4Cvor1FlV2nO75lE-1669598337-0-ASXLWd775VSnDUqmhNmMoI/eTQO5H5ShxkwYRvL/tpzteoMdo93v9LEJBDNzU/bjQlDp5tuE/AZGK34WfUr8b+o=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 770f45c71b39b521-OSL
X-Firefox-Spdy: h2
lpmedia.servefilesonly.com/img/_patterns/tp-colum-right.jpg
104.18.11.149200 OK 19 kB URL HTTP/2 lpmedia.servefilesonly.com/img/_patterns/tp-colum-right.jpg
IP 104.18.11.149:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 768x1000, components 3\012- data
Hash 20064a945ef3c72d0df8107d027a392f
2f917d76b10b04aba20d5a7f677bdfaa464f1547
af10a1262faf663357679267effb31a78ddb3b70510b466ea990e2bc37017db4
GET /img/_patterns/tp-colum-right.jpg HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lpmedia.servefilesonly.com/style/templates/WhatsFriends2/style.css?963054
Cookie: __cf_bm=xdNg1wyEoJXragWY1scGP45rSrsZ9Ht4avaLNXpl7C8-1669598337-0-ASZ/Vq0M5uajCYzyL2pcY4Q5gArBjgaTJwqKHHHya1RZn+dFfdTLPCYzz99k8VfEbJW2PgHEnKU/Q5ggtXzJdbI=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/jpeg
content-length: 18890
cf-bgj: h2pri
access-control-allow-origin: *
cache-control: public, max-age=691200
etag: "637b29af-49ca"
last-modified: Mon, 21 Nov 2022 07:33:03 GMT
cf-cache-status: HIT
age: 454392
expires: Tue, 06 Dec 2022 01:18:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 770f45c84bb5b521-OSL
X-Firefox-Spdy: h2
lpmedia.servefilesonly.com/widgets/corner/corner.css?963054
104.18.11.149200 OK 70 kB URL HTTP/2 lpmedia.servefilesonly.com/widgets/corner/corner.css?963054
IP 104.18.11.149:0
Hash 1e45a562f90018ed24b0d95c6bf5f727
31824b0723ab24b92ea70c525c336f5cd0014880
554d1670b80f63e6347de0a2e5c3ee1365884f9f3cc24029667a99d39d956c38
GET /widgets/corner/corner.css?963054 HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=246
access-control-allow-origin: *
cache-control: public, max-age=691200
etag: W/"637f3b7f-f6"
last-modified: Thu, 24 Nov 2022 09:38:07 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 314096
expires: Tue, 06 Dec 2022 01:18:57 GMT
set-cookie: __cf_bm=fSmYEe9PANVQjXcnkGoYlTKnRvzXDZhZPm9Ls1fIH7o-1669598337-0-AU9oEQYGpuY1iF1B3ivlLqp+Kb1KjnxwPzCy0RSR+U+abcpU99rCupDEgqTu1NReuzELZ/9bAAb7xkMg0D93dWI=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 770f45c69af0b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 01:18:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 01:18:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dirtydating.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 461316
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 24408, version 1.0\012- data
Hash efee2d080d7bebdd2e0aeb2e030813a0
f8d38f9f9584e48c2e469877ebd94232265585f1
bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dirtydating.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 20:02:02 GMT
expires: Tue, 21 Nov 2023 20:02:02 GMT
cache-control: public, max-age=31536000
age: 537415
last-modified: Tue, 26 Apr 2022 15:50:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dirtydating.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 21:11:39 GMT
expires: Sun, 26 Nov 2023 21:11:39 GMT
cache-control: public, max-age=31536000
age: 101238
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 01:18:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lpmedia.servefilesonly.com/js/popwin.js?963054
104.18.11.149200 OK 521 B URL HTTP/2 lpmedia.servefilesonly.com/js/popwin.js?963054
IP 104.18.11.149:0
Hash 20b91978cb91c841a3b61348e7f5dac6
87d328b6ed966daf45f354d362018fbf64149c72
4f20c932dbb60ef1358786b58bed885c953a4c43381e67e98e1a0208e2cea7c3
GET /js/popwin.js?963054 HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1177
access-control-allow-origin: *
cache-control: public, max-age=691200
etag: W/"637f3b6a-499"
last-modified: Thu, 24 Nov 2022 09:37:46 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 314096
expires: Tue, 06 Dec 2022 01:18:57 GMT
set-cookie: __cf_bm=DQThffm8bvTzPsEiF.wFA25GTRPH71g6RWppOt34hkI-1669598337-0-AXUuLP8yoRjqJjLB9hSPNVea6fdMhXzsEmTonPNgWzVrNiI3gvjaiXcwiZ3vTg466DTzfboQXDvmCuJ9+Tj8XX0=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 770f45c67adcb521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
lpmedia.servefilesonly.com/img/_favicons/favicon_dirtydating.svg?963054
104.18.11.149200 OK 0 B URL HTTP/2 lpmedia.servefilesonly.com/img/_favicons/favicon_dirtydating.svg?963054
IP 104.18.11.149:0
GET /img/_favicons/favicon_dirtydating.svg?963054 HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Cookie: __cf_bm=xdNg1wyEoJXragWY1scGP45rSrsZ9Ht4avaLNXpl7C8-1669598337-0-ASZ/Vq0M5uajCYzyL2pcY4Q5gArBjgaTJwqKHHHya1RZn+dFfdTLPCYzz99k8VfEbJW2PgHEnKU/Q5ggtXzJdbI=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Nov 2022 09:22:08 GMT
vary: Accept-Encoding
etag: W/"637f37c0-3b830"
content-encoding: gzip
cf-cache-status: HIT
age: 313924
expires: Tue, 06 Dec 2022 01:18:57 GMT
cache-control: public, max-age=691200
server: cloudflare
cf-ray: 770f45c9ec76b521-OSL
X-Firefox-Spdy: h2
lpmedia.servefilesonly.com/build/widgets/loginFormBuilder/scripts.min.js?963054
104.18.11.149200 OK 0 B URL HTTP/2 lpmedia.servefilesonly.com/build/widgets/loginFormBuilder/scripts.min.js?963054
IP 104.18.11.149:0
GET /build/widgets/loginFormBuilder/scripts.min.js?963054 HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 09:21:17 GMT
vary: Accept-Encoding
etag: W/"637f378d-c99"
access-control-allow-origin: *
cache-control: public, max-age=691200
content-encoding: gzip
cf-cache-status: HIT
age: 314043
expires: Tue, 06 Dec 2022 01:18:57 GMT
set-cookie: __cf_bm=xdNg1wyEoJXragWY1scGP45rSrsZ9Ht4avaLNXpl7C8-1669598337-0-ASZ/Vq0M5uajCYzyL2pcY4Q5gArBjgaTJwqKHHHya1RZn+dFfdTLPCYzz99k8VfEbJW2PgHEnKU/Q5ggtXzJdbI=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 770f45c72b41b521-OSL
X-Firefox-Spdy: h2
lpmedia.servefilesonly.com/build/widgets/registrationFormBuilder/scripts.min.js?963054
104.18.11.149200 OK 0 B URL HTTP/2 lpmedia.servefilesonly.com/build/widgets/registrationFormBuilder/scripts.min.js?963054
IP 104.18.11.149:0
GET /build/widgets/registrationFormBuilder/scripts.min.js?963054 HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 09:21:17 GMT
vary: Accept-Encoding
etag: W/"637f378d-5375"
access-control-allow-origin: *
cache-control: public, max-age=691200
content-encoding: gzip
cf-cache-status: HIT
age: 314096
expires: Tue, 06 Dec 2022 01:18:57 GMT
set-cookie: __cf_bm=SGUTIlbxgZap6hy3DRIsE1ofovDrvA7IpwVqejMPT4g-1669598337-0-AXq/xUMSLydIu3oEHKGiBDpage0Py6UiNhG9rcJkvQVDOOun2H4bVzTiash+rET96WC7/rBjVX6rURlTNgiE0lU=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 770f45c67adbb521-OSL
X-Firefox-Spdy: h2
lpmedia.servefilesonly.com/style/layout/animation.css?963054
104.18.11.149200 OK 0 B URL HTTP/2 lpmedia.servefilesonly.com/style/layout/animation.css?963054
IP 104.18.11.149:0
GET /style/layout/animation.css?963054 HTTP/1.1
Host: lpmedia.servefilesonly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dirtydating.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 01:18:57 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=2320
access-control-allow-origin: *
cache-control: public, max-age=691200
etag: W/"637f3b7f-910"
last-modified: Thu, 24 Nov 2022 09:38:07 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 314096
expires: Tue, 06 Dec 2022 01:18:57 GMT
set-cookie: __cf_bm=4HE89aglz4insY5Pk_g57ujA9Tr_YQOxw9PJMwimUfE-1669598337-0-Ac0+vFFTyFi848iD4uWHBrSy5R36cS0k7MkArRUt+/BACuZdygSiHqwykK/faI7WmwT9O+l1nntTOQHBdAXeHb4=; path=/; expires=Mon, 28-Nov-22 01:48:57 GMT; domain=.servefilesonly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 770f45c70b30b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2