a-dot-captchafine.lm.r.appspot.com/tl?pl=WENkLTmr5ka9cjctRoy9BA&sm=robot-edge&appspot=true
3.7 kB URL a-dot-captchafine.lm.r.appspot.com/tl?pl=WENkLTmr5ka9cjctRoy9BA&sm=robot-edge&appspot=true
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (470)
Hash 30a9f5772e47d849674089e7199e93fe
d533e5c8a06203d45d594658b905e222a50c2977
2dd7456366474357af1b907225325dcf4620423b463ff5eb27c6e60b184d1c90
GET /tl?pl=WENkLTmr5ka9cjctRoy9BA&sm=robot-edge&appspot=true HTTP/1.1
Host: a-dot-captchafine.lm.r.appspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-cloud-trace-context: 28ba1dee3c4e3742b63bb8a5943121b6
content-encoding: gzip
server: Google Frontend
date: Wed, 08 Nov 2023 09:23:00 GMT
expires: Wed, 08 Nov 2023 09:33:00 GMT
cache-control: public, max-age=600
etag: "NMiFBQ"
content-type: text/html
content-length: 3684
age: 519
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
code.jquery.com/jquery-2.1.4.min.js
30 kB URL code.jquery.com/jquery-2.1.4.min.js
IP
File type ASCII text, with very long lines (32025)
Hash f9c7afd05729f10f55b689f36bb20172
43dc554608df885a59ddeece1598c6ace434d747
f16ab224bb962910558715c82f58c10c3ed20f153ddfaa199029f141b5b0255c
GET /jquery-2.1.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a-dot-captchafine.lm.r.appspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-14979"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 08 Nov 2023 09:31:40 GMT
age: 4635248
x-served-by: cache-lga21971-LGA, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 80, 47979
x-timer: S1699435900.133196,VS0,VE0
vary: Accept-Encoding
content-length: 29519
X-Firefox-Spdy: h2
psh-static.b-cdn.net/corner.png
300 B URL psh-static.b-cdn.net/corner.png
IP
ASN #34989 ServeTheWorld AS
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced\012- data
Hash f66c38fa2cd7c50bd1989d41da28fb80
e1de333eca72647f3c1831083fe678cfa8fe9eab
3059be4046e0315ad1c0d1cb163d9daaf759bdf16e906e908842fac07e5608a2
GET /corner.png HTTP/1.1
Host: psh-static.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a-dot-captchafine.lm.r.appspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Nov 2023 09:31:40 GMT
content-type: image/png
content-length: 300
server: BunnyCDN-NO1-830
cdn-pullzone: 1328726
cdn-uid: 22fe961b-dbb1-4712-9a2e-907a4e9a1638
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Mon, 10 Apr 2023 12:45:03 GMT
cdn-storagebalancer: SE-344
cdn-storageserver: DE-167
cdn-fileserver: 588
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/07/2023 00:17:08
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 28046b226c35e76dc4670faa16ed4481
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
16 kB URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://a-dot-captchafine.lm.r.appspot.com
DNT: 1
Connection: keep-alive
Referer: https://psh-static.b-cdn.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Nov 2023 22:20:01 GMT
expires: Sat, 02 Nov 2024 22:20:01 GMT
cache-control: public, max-age=31536000
age: 385899
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a-dot-captchafine.lm.r.appspot.com/favicon.ico
288 B URL a-dot-captchafine.lm.r.appspot.com/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 7611bba28f0f82eef84a5f825c4a4575
7ab71167ee6e76b6a3510deda3c1d9dd71c2244d
cb30b9c1a014d9f9a3cff37a9701eefbe566702223a68d331561b50af6cd333a
GET /favicon.ico HTTP/1.1
Host: a-dot-captchafine.lm.r.appspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a-dot-captchafine.lm.r.appspot.com/tl?pl=WENkLTmr5ka9cjctRoy9BA&sm=robot-edge&appspot=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
x-cloud-trace-context: 8796460390f2ced313b4658c41535602;o=1
date: Wed, 08 Nov 2023 09:31:40 GMT
content-type: text/html; charset=UTF-8
server: Google Frontend
content-length: 288
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/firebasejs/8.4.1/firebase-app.js
6.8 kB URL www.gstatic.com/firebasejs/8.4.1/firebase-app.js
IP
File type ASCII text, with very long lines (21158)
Hash e20da9cfaabf0b23d89c2335c06e2b03
b1af5616825acaba44bd714bd2685327abe896fd
d4d5669220045e130b79770e93dc7dca5fdfa00c9d7047639dbb15c4f28eb2e2
GET /firebasejs/8.4.1/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a-dot-captchafine.lm.r.appspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 6763
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 Nov 2023 18:25:18 GMT
expires: Sun, 03 Nov 2024 18:25:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Apr 2021 06:56:11 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 313583
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js
11 kB URL www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js
IP
File type ASCII text, with very long lines (40976)
Hash a498cb0f91ef52cc08969e1737b34638
c0e12b338ca7adea31b105546fde021edecbfc3c
a8d6389e6811b9fea7ff683cb31a57a6e0b29781407d7f5d45994aae1b5725b7
GET /firebasejs/8.4.1/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a-dot-captchafine.lm.r.appspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Nov 2023 17:50:51 GMT
expires: Wed, 06 Nov 2024 17:50:51 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Apr 2021 06:56:17 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 56450
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
news-zocizi.com/?id=8042811&p1=sub1&p2=sub2&p3=sub3&p4=sub4
0 B URL news-zocizi.com/?id=8042811&p1=sub1&p2=sub2&p3=sub3&p4=sub4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?id=8042811&p1=sub1&p2=sub2&p3=sub3&p4=sub4 HTTP/1.1
Host: news-zocizi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a-dot-captchafine.lm.r.appspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 08 Nov 2023 09:31:44 GMT
content-length: 0
location: https://news-sufuba.com/?id=8042811&p1=sub1&p2=sub2&p3=sub3&p4=sub4
vary: Origin
X-Firefox-Spdy: h2
news-sufuba.com/revopush.js
18 kB URL news-sufuba.com/revopush.js
IP
File type Unicode text, UTF-8 text, with very long lines (17668), with no line terminators
Hash 9dffc46e0e3c75c76ed592883a90379b
5898652f4bf2e2d699d4fba3ca7052368aa1b103
dd12c36d518c708d72a7639ef5e549420f054008a7ed146a9e118c447fa72014
GET /revopush.js HTTP/1.1
Host: news-sufuba.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news-sufuba.com/?id=8042811&p1=sub1&p2=sub2&p3=sub3&p4=sub4
Cookie: clickdata=eyJzdWJhY2MiOjgwNDI4MTEsImxhbmQiOjQyfQ==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Nov 2023 09:31:44 GMT
content-type: application/javascript; charset=utf-8
content-length: 17714
last-modified: Mon, 16 Oct 2023 10:48:04 GMT
etag: "652d14e4-4532"
accept-ranges: bytes
X-Firefox-Spdy: h2
errors.house/js-sdk-loader/c682bf15f58a4ecea9ff491233690e22.min.js
167 B URL errors.house/js-sdk-loader/c682bf15f58a4ecea9ff491233690e22.min.js
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 2a97407d210d6d20afb6e66a8b10deb8
08ae671ed1d8c5f3e9eccf95efeba4d401f68818
9069d7d570306d50c6c80939cc5ddb4e6bf11c1ef40607204a5a9741a0ae1f7c
GET /js-sdk-loader/c682bf15f58a4ecea9ff491233690e22.min.js HTTP/1.1
Host: errors.house
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://news-sufuba.com
DNT: 1
Connection: keep-alive
Referer: https://news-sufuba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 504 Gateway Time-out
Server: nginx/1.22.1
Date: Wed, 08 Nov 2023 09:31:49 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
news-sufuba.com/tb?id=8042811&monetization=user&p1=sub1&p2=sub2&p3=sub3&p4=sub4&type=subscribed
302 Found 0 B URL User Request GET HTTP/2 news-sufuba.com/tb?id=8042811&monetization=user&p1=sub1&p2=sub2&p3=sub3&p4=sub4&type=subscribed
IP
Certificate IssuerLet's Encrypt
Subject*.news-sufuba.com
FingerprintBA:F0:1E:0E:17:48:E2:B2:9E:A5:E7:F0:40:04:B7:FE:3D:D1:B3:A7
ValidityThu, 12 Oct 2023 19:57:14 GMT - Wed, 10 Jan 2024 19:57:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tb?id=8042811&monetization=user&p1=sub1&p2=sub2&p3=sub3&p4=sub4&type=subscribed HTTP/1.1
Host: news-sufuba.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news-sufuba.com/?id=8042811&p1=sub1&p2=sub2&p3=sub3&p4=sub4
Cookie: clickdata=eyJzdWJhY2MiOjgwNDI4MTEsImxhbmQiOjQyfQ==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 08 Nov 2023 09:31:49 GMT
content-length: 0
location: https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
vary: Origin
X-Firefox-Spdy: h2
p-analytics.life/pxl.png
200 OK 0 B IP
ASN #6898 SERVER.swiss Sagl
Requested by https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Certificate IssuerLet's Encrypt
Subjectp-analytics.life
Fingerprint99:2D:F1:F5:79:1D:0A:88:FF:E8:61:8E:1E:A9:53:54:5F:69:56:49
ValidityMon, 23 Oct 2023 21:22:22 GMT - Sun, 21 Jan 2024 21:22:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pxl.png HTTP/1.1
Host: p-analytics.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datingsphere.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Nov 2023 09:31:50 GMT
Content-Type: image/png
Content-Length: 0
Connection: keep-alive
Expires: Wed, 08 Nov 2023 09:31:49 GMT
ETag: "5ec29735-0"
Last-Modified: Mon, 18 May 2020 14:09:57 GMT
Cache-Control: no-cache, no-store
datingsphere.top/favicon.ico
204 No Content 0 B URL GET HTTP/3 datingsphere.top/favicon.ico
IP
Requested by https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Certificate IssuerGoogle Trust Services LLC
Subjectdatingsphere.top
FingerprintB4:7D:B6:6E:FD:D7:8A:A9:E6:36:EF:FB:3E:2E:44:B1:14:F6:F2:2E
ValidityWed, 01 Nov 2023 10:14:19 GMT - Tue, 30 Jan 2024 10:14:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: datingsphere.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Wed, 08 Nov 2023 09:31:50 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1867
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fy4J22RMsLruOl0KNjnly5qzhNMxhQeHYRaJ8TvhOguwkC6f2sbVQn%2BG4W8aKfXNhnEvHF37RE36E7bfeGoYiFVuPM3t0CXCBaCAc3aS7deRJk%2Fam4eQWz%2BzN08foeDK2jhm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 822cce2818767128-OSL
alt-svc: h3=":443"; ma=86400
www.gstatic.com/firebasejs/10.3.1/firebase-app-compat.js
200 OK 9.3 kB URL GET HTTP/2 www.gstatic.com/firebasejs/10.3.1/firebase-app-compat.js
IP
Requested by https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type ASCII text, with very long lines (28368)
Hash 9900403b65514fad7df39a4e788a6e45
75f9ba061ef4e72bb23528c700f2a11c56d637e9
a202b2051ea9810cd9ba592b3f9418a89e2062f5c185e29e288080b28eb64fe5
GET /firebasejs/10.3.1/firebase-app-compat.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datingsphere.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 9308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Nov 2023 17:25:23 GMT
expires: Sat, 02 Nov 2024 17:25:23 GMT
cache-control: public, max-age=31536000
age: 403587
last-modified: Thu, 31 Aug 2023 15:20:38 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js
200 OK 9.9 kB URL GET HTTP/3 www.gstatic.com/firebasejs/10.3.1/firebase-messaging-compat.js
IP
Requested by https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type ASCII text, with very long lines (38231)
Hash 0541b823dfaf39162ef84cf075c9951b
e0934726455558cc1a59823efada9651e33aafaa
21f1d62f222007068c793f0947d98f4ccb7c1595adb68efeb783390fdd8b5522
GET /firebasejs/10.3.1/firebase-messaging-compat.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datingsphere.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 9934
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Nov 2023 18:28:42 GMT
expires: Tue, 05 Nov 2024 18:28:42 GMT
cache-control: public, max-age=31536000
age: 140588
last-modified: Thu, 31 Aug 2023 15:20:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pushbizapi.com/api/errors/install?message=TypeError:%20can%27t%20access%20property%20%22register%22,%20navigator[_0x1d5efb(...)]%20is%20undefined
200 OK 0 B URL GET HTTP/2 pushbizapi.com/api/errors/install?message=TypeError:%20can%27t%20access%20property%20%22register%22,%20navigator[_0x1d5efb(...)]%20is%20undefined
IP
ASN #24940 Hetzner Online GmbH
Requested by https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Certificate IssuerLet's Encrypt
Subjectpushbizapi.com
Fingerprint28:3A:4F:5E:9C:F8:1B:DC:D4:86:7C:92:CF:26:1E:4E:6D:9A:2B:C5
ValiditySun, 17 Sep 2023 05:18:52 GMT - Sat, 16 Dec 2023 05:18:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/errors/install?message=TypeError:%20can%27t%20access%20property%20%22register%22,%20navigator[_0x1d5efb(...)]%20is%20undefined HTTP/1.1
Host: pushbizapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datingsphere.top/
Origin: https://datingsphere.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 08 Nov 2023 09:31:50 GMT
content-length: 0
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
200 OK 2.4 kB URL User Request GET HTTP/2 datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
IP
Certificate IssuerGoogle Trust Services LLC
Subjectdatingsphere.top
FingerprintB4:7D:B6:6E:FD:D7:8A:A9:E6:36:EF:FB:3E:2E:44:B1:14:F6:F2:2E
ValidityWed, 01 Nov 2023 10:14:19 GMT - Tue, 30 Jan 2024 10:14:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2524), with no line terminators
Hash cd96ff04ddd5b125198e55b1553bb65a
7ac10c136b2c8c23fddc7dc94a5134f4851c3eb2
5042e37499337b41a85a95366df396fea32bbdb2538bb2f91d69e0d7f7542815
GET /18plus/?u=ha8p60a&o=l1tkqpn&t=click HTTP/1.1
Host: datingsphere.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://news-sufuba.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 Nov 2023 09:31:49 GMT
content-type: text/html
last-modified: Wed, 10 May 2023 20:24:47 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sj5vu0tayeT5lyn0bKmqnggZrvURHH1siCKif3ii%2FBTWsbEuD%2FJMEryM1OfICxoK91%2Bt0aGCjmw3QMuLl28LJLtxmVHzR2AKkqbD12NsIWkeEAg8vTR6Wz7mV1TvfAZhNaJ8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 822cce24e94c7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
datingsphere.top/18plus/js/settings.js
200 OK 71 B URL GET HTTP/3 datingsphere.top/18plus/js/settings.js
IP
Requested by https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Certificate IssuerGoogle Trust Services LLC
Subjectdatingsphere.top
FingerprintB4:7D:B6:6E:FD:D7:8A:A9:E6:36:EF:FB:3E:2E:44:B1:14:F6:F2:2E
ValidityWed, 01 Nov 2023 10:14:19 GMT - Tue, 30 Jan 2024 10:14:18 GMT
File type ASCII text, with no line terminators
Hash d5ba1303144c90457d4445aa88171d7c
f0857a527b04f31cb03fb28040ac3d12bc59d096
603cbaabde56644087c5067cea94834c51e5cadc4ed5520810079a2c25236e13
GET /18plus/js/settings.js HTTP/1.1
Host: datingsphere.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 09:31:50 GMT
content-type: application/javascript
last-modified: Fri, 25 Oct 2019 06:42:33 GMT
etag: W/"5db29959-47"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3916
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XgJYURE8PTHdyzRVY0diGWlNlqi24d7sMDSYqPcbVdHOHv6icYRg1%2B7citUzsJ9go4mtw2tPUlJcIaz7DRKrLWBnnN1hWzFRxmu%2BjqF8dlUp1IyQS5upFToFSHOhoDMFbsEz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 822cce263eac7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
datingsphere.top/18plus/js/trls.js
200 OK 7.8 kB URL GET HTTP/3 datingsphere.top/18plus/js/trls.js
IP
Requested by https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Certificate IssuerGoogle Trust Services LLC
Subjectdatingsphere.top
FingerprintB4:7D:B6:6E:FD:D7:8A:A9:E6:36:EF:FB:3E:2E:44:B1:14:F6:F2:2E
ValidityWed, 01 Nov 2023 10:14:19 GMT - Tue, 30 Jan 2024 10:14:18 GMT
File type Unicode text, UTF-8 text, with very long lines (7628), with no line terminators
Hash 2de1a69dd6cf155a48f248e6bd3e3c06
c5cd3a4a691d5e3f60f41292fde9570622eca6c9
cae82e42655bc2cc3fd6fcb492f52a78abbcc8222287362001c11119cb9cf06b
GET /18plus/js/trls.js HTTP/1.1
Host: datingsphere.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 09:31:50 GMT
content-type: application/javascript
last-modified: Sat, 19 Dec 2020 01:38:12 GMT
etag: W/"5fdd5984-1e53"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3916
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y91F%2FSb7sWWnBhPXYLM1Q23IBwG%2FMV7Q4tkVLxo1p7uYCuniBeR8ypN4Ma%2FjQg8Ohc4wmn3jqpXtknIuii2VtB9LtOUXh1tEPYTt9xMKnzV%2BDSs3Gp9L3pvVi0Nyd%2FzmmR%2F1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 822cce263ea97128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
datingsphere.top/js/ps-new.js?6
200 OK 48 kB URL GET HTTP/3 datingsphere.top/js/ps-new.js?6
IP
Requested by https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Certificate IssuerGoogle Trust Services LLC
Subjectdatingsphere.top
FingerprintB4:7D:B6:6E:FD:D7:8A:A9:E6:36:EF:FB:3E:2E:44:B1:14:F6:F2:2E
ValidityWed, 01 Nov 2023 10:14:19 GMT - Tue, 30 Jan 2024 10:14:18 GMT
File type ASCII text, with very long lines (48196), with no line terminators
Hash 235c17f1858f09ed4a64be30b2b100c8
56f9de0fec57064b366a597547cb02f0a1407619
b1e6622776775b46db33848b20fb144b7aaad3477b3caf540561f59213b6679c
GET /js/ps-new.js?6 HTTP/1.1
Host: datingsphere.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datingsphere.top/18plus/?u=ha8p60a&o=l1tkqpn&t=click
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 09:31:50 GMT
content-type: application/javascript
last-modified: Wed, 11 Oct 2023 18:46:58 GMT
etag: W/"6526eda2-bc44"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3916
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OtMhgIeueS916FoC0makwYEKrIhK6akbtcFvt0gbuoU%2FGcnCm8YwriWpC1wMoXWjxrNcAY84kVNd5VwN%2BzWwk3uuFGh5dAFbSpk1hjqEjo4ZFHzI%2BBiwcgg1e4V8uLHZekLd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 822cce263eb57128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
142.250.74.148
23.158.56.201
144.76.158.184
185.155.184.249
194.242.11.186