Report - s.viiyhwln.com/h/735/m27euqoxxv7fvwnkxo2hes7c5clyuuddqgj535lyljqga4lspydfggcidgcjfp7qjy7clwtsrqz6kwoj2ff4c5gbufymu6me2wc2buno56svpklw5zf2av7666ejomv5lhzofofvohrdbtfl5txi5nmrxgjvdw2lmplw6qhckrfamnxdgrm6arssrzzxkyx2gojhusmajbx343srznflr3nljpafl7eu3vjjwtsssp2hrmlwto6j3m3zqjzuwz46n626lifhosgutxsuubaxfizvjtmebmvguphwjitwopnfi2t3lf2v6zt3pviucvd3p5rhq42bmihxuydxmr5eor2qqj3hhmcur2pnbj3pvbhvt2lsntne2v7ii7pnvlg4lrlcus7t3potcywk5bqgqs2okjcesa2lhf6q3l2ah2qulw2stoufb5cwz33x3crt36lxbktrnegsqgtbpj7akfk2pr6tildwcbqfi7tlpvxxgequkjirarkmmakcsdjhbdiesshjoxx6j52v2bagp3ru5lz2i3mgoo4k47sou55ppw5kks3g5ymhrkjozau33bwy2ql6qqkxoqt6lvjumq2safbuusdcir7fm522m55h24p2zps3hgxlrhw56n3f3dnn5ddzexipjuo2puepbggfu5ttbro6w2dznnnxvg3ugukvh2vva5f6irmxouwxs6qmevskknteo5h5vzaud6xliiaeegcwdnduou65v4dpw35alu======?u=https://kw2n.deloresecret.com/ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad&sub1=1126&sub2=RWTH+Aachen+University&sub3=7329538&sub4=0&sub5=788536&usid=2834297712

Report Overview

Visited public
2024-12-07 20:43:12
Tags
URL
s.viiyhwln.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====?u=https://kw2n.deloresecret.com/ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad&sub1=1126&sub2=RWTH+Aachen+University&sub3=7329538&sub4=0&sub5=788536&usid=2834297712
Finishing URL
dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
IP / ASN
31.220.27.134
#39572 DataWeb Global Group B.V.
Title
Webangocams

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
metatrckpixel.com	unknown	2023-08-07	2023-08-17	2024-12-07	784 B	14 kB	188.114.97.1
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2024-12-04	806 B	40 kB	142.250.74.106
o4507100984967168.ingest.de.sentry.io	unknown	2012-04-07	2024-04-30	2024-12-07	644 B	972 B	34.120.62.213
s.viiyhwln.com	unknown	unknown	No data	No data	2.8 kB	467 B	31.220.27.135
js-de.sentry-cdn.com	unknown	2018-05-30	2024-04-30	2024-12-07	905 B	6.3 kB	151.101.2.217
browser.sentry-cdn.com	4393	2018-05-30	2018-07-13	2024-12-04	931 B	147 kB	151.101.2.217
dateexotics.com	unknown	2023-02-03	2023-02-03	2024-12-07	9.6 kB	10 MB	188.114.97.1
ajax.googleapis.com	12905	2005-01-25	2012-05-22	2024-12-04	395 B	31 kB	142.250.74.74
kw2n.deloresecret.com	unknown	2022-04-28	2024-12-07	2024-12-07	1.6 kB	4.9 kB	188.114.96.1
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2024-12-04	1.1 kB	52 kB	216.58.207.227
www2-eu.deloresecret.com	unknown	2022-04-28	2024-12-07	2024-12-07	1.3 kB	11 kB	188.114.96.1
app.api-push.com	307671	2021-02-23	2021-12-06	2024-12-03	461 B	11 kB	104.21.32.1
cdn-static3.com	unknown	2022-01-27	2022-03-02	2024-12-03	372 B	37 kB	172.67.180.212

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-12-07	medium	viiyhwln.com	Sinkholed
2024-12-07	medium	viiyhwln.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500	ScriptElement	541 B	2023-05-22	2025-02-12
Pretty URL dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 18:12 Last Seen2025-02-12 19:11 Times Seen18 Hash 8f660bd81abfe9ad6ee5ca8da1242172 d16d42ae9b980a1fcc799f73c6209f3084b21625 37445f8532467e9b381799af9fdf77371b1844d291dc1597912bc9245117cf40 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js	ScriptElement	88 kB	2023-08-31	2025-06-15
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-31 16:03 Last Seen2025-06-15 11:10 Times Seen39108 Hash 2c872dbe60f4ba70fb85356113d8b35e ee48592d1fff952fcf06ce0b666ed4785493afdc fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a Loading...

	js-de.sentry-cdn.com/719c993840e43adc0c63d55ce2044c87.min.js	ScriptElement	2.8 kB	2024-12-07	2024-12-12
Pretty URL js-de.sentry-cdn.com/719c993840e43adc0c63d55ce2044c87.min.js IP 151.101.66.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-07 20:43 Last Seen2024-12-12 07:23 Times Seen3 Hash a5684004cbf108d716f1b54a0aca45bb d402ab62a6b0518b44f24855860fff7d86444e10 90f73533454faeca6718c67f5ae2d806cca69af844c3baccb093ebb0ccbb8e62 Loading...

	browser.sentry-cdn.com/7.120.1/bundle.tracing.replay.min.js	ScriptElement	229 kB	2024-12-05	2024-12-12
Pretty URL browser.sentry-cdn.com/7.120.1/bundle.tracing.replay.min.js IP 151.101.2.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-05 17:11 Last Seen2024-12-12 08:21 Times Seen8 Hash 9c228b16df2c9c82e02b13947494c002 d1c2164ef4c66b1b610654bf9779ebf91c701a47 032371bc4bf2b950bb500221e1cf08b4edc891a0b486f7a2241729bc3e68bdfd Loading...

	metatrckpixel.com/pixel.js	ScriptElement	256 B	2024-12-07	2024-12-07
Pretty URL metatrckpixel.com/pixel.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-07 20:43 Last Seen2024-12-07 20:43 Times Seen1 Hash d1d38067ec500363d9ea0f63a96d0dc6 d163a5f1155c488c9fab4bf20d7563bb5160859f 777e928e6de6013b43daa4074b73cb703ed636592ef489be6e731712b2c58ecb Loading...

	dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500	ScriptElement	29 kB	2024-10-16	2024-12-10
Pretty URL dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-16 15:50 Last Seen2024-12-10 11:57 Times Seen4 Hash a3a365c462a3e1d7037c7fbc18eaa25d 204cc6749952f8bef1d9f2078277e3d1d3a26a0c fcf7e57d40305f054d6f01c9bdefd771152e00e8cd55ddc2e5e551153b61220b Loading...

	cdn-static3.com/cdn/push.min.js	ScriptElement	36 kB	2023-03-07	2025-06-14
Pretty URL cdn-static3.com/cdn/push.min.js IP 172.67.180.212 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-06-14 16:56 Times Seen200 Hash 44c9e373bc246e347c8420a2eb8f54d4 5eb6010833c0c873766407c7a51ea5eafe69dbdf 2dac93602a4e47e156b8b54455dfdcd7a7a4901ab33f2a0c2c416a395e1ebda5 Loading...

HTTP Transactions (42)

URL IP Response Size

s.viiyhwln.com/favicon.ico

31.220.27.135

204 No Content

0 B

URL
s.viiyhwln.com/favicon.ico
IP
31.220.27.135:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: s.viiyhwln.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s.viiyhwln.com/h/735/m27euqoxxv7fvwnkxo2hes7c5clyuuddqgj535lyljqga4lspydfggcidgcjfp7qjy7clwtsrqz6kwoj2ff4c5gbufymu6me2wc2buno56svpklw5zf2av7666ejomv5lhzofofvohrdbtfl5txi5nmrxgjvdw2lmplw6qhckrfamnxdgrm6arssrzzxkyx2gojhusmajbx343srznflr3nljpafl7eu3vjjwtsssp2hrmlwto6j3m3zqjzuwz46n626lifhosgutxsuubaxfizvjtmebmvguphwjitwopnfi2t3lf2v6zt3pviucvd3p5rhq42bmihxuydxmr5eor2qqj3hhmcur2pnbj3pvbhvt2lsntne2v7ii7pnvlg4lrlcus7t3potcywk5bqgqs2okjcesa2lhf6q3l2ah2qulw2stoufb5cwz33x3crt36lxbktrnegsqgtbpj7akfk2pr6tildwcbqfi7tlpvxxgequkjirarkmmakcsdjhbdiesshjoxx6j52v2bagp3ru5lz2i3mgoo4k47sou55ppw5kks3g5ymhrkjozau33bwy2ql6qqkxoqt6lvjumq2safbuusdcir7fm522m55h24p2zps3hgxlrhw56n3f3dnn5ddzexipjuo2puepbggfu5ttbro6w2dznnnxvg3ugukvh2vva5f6irmxouwxs6qmevskknteo5h5vzaud6xliiaeegcwdnduou65v4dpw35alu======?u=https://kw2n.deloresecret.com/ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad&sub1=1126&sub2=RWTH+Aachen+University&sub3=7329538&sub4=0&sub5=788536&usid=2834297712
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
server: nginx/1.23.2
date: Sat, 07 Dec 2024 20:42:44 GMT
X-Firefox-Spdy: h2

s.viiyhwln.com/cnt/api/index

31.220.27.135

200 OK

0 B

URL
s.viiyhwln.com/cnt/api/index
IP
31.220.27.135:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cnt/api/index HTTP/1.1
Host: s.viiyhwln.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3186
Origin: https://s.viiyhwln.com
DNT: 1
Connection: keep-alive
Referer: https://s.viiyhwln.com/h/735/m27euqoxxv7fvwnkxo2hes7c5clyuuddqgj535lyljqga4lspydfggcidgcjfp7qjy7clwtsrqz6kwoj2ff4c5gbufymu6me2wc2buno56svpklw5zf2av7666ejomv5lhzofofvohrdbtfl5txi5nmrxgjvdw2lmplw6qhckrfamnxdgrm6arssrzzxkyx2gojhusmajbx343srznflr3nljpafl7eu3vjjwtsssp2hrmlwto6j3m3zqjzuwz46n626lifhosgutxsuubaxfizvjtmebmvguphwjitwopnfi2t3lf2v6zt3pviucvd3p5rhq42bmihxuydxmr5eor2qqj3hhmcur2pnbj3pvbhvt2lsntne2v7ii7pnvlg4lrlcus7t3potcywk5bqgqs2okjcesa2lhf6q3l2ah2qulw2stoufb5cwz33x3crt36lxbktrnegsqgtbpj7akfk2pr6tildwcbqfi7tlpvxxgequkjirarkmmakcsdjhbdiesshjoxx6j52v2bagp3ru5lz2i3mgoo4k47sou55ppw5kks3g5ymhrkjozau33bwy2ql6qqkxoqt6lvjumq2safbuusdcir7fm522m55h24p2zps3hgxlrhw56n3f3dnn5ddzexipjuo2puepbggfu5ttbro6w2dznnnxvg3ugukvh2vva5f6irmxouwxs6qmevskknteo5h5vzaud6xliiaeegcwdnduou65v4dpw35alu======?u=https://kw2n.deloresecret.com/ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad&sub1=1126&sub2=RWTH+Aachen+University&sub3=7329538&sub4=0&sub5=788536&usid=2834297712
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Sat, 07 Dec 2024 20:42:44 GMT
content-type: application/json
content-length: 0
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://s.viiyhwln.com
X-Firefox-Spdy: h2

js-de.sentry-cdn.com/2b43d4f364cac2a0871282091e61c78e.min.js

151.101.2.217

200 OK

1.4 kB

URL
js-de.sentry-cdn.com/2b43d4f364cac2a0871282091e61c78e.min.js
IP
151.101.2.217:0
ASN
#54113 FASTLY

File type
JavaScript source, ASCII text, with very long lines (2845)
Size
1.4 kB (1359 bytes)
Hash
3425cc5407a747e7d09c64f4b4d1bef9
8447a3aa882c745cb0d5dd72e93db71b2caf3654
d0fc12bb22d4f60433a03158e7233a1a564bb4ed4f595de640f5d9176ada975c

HTTP Headers

GET /2b43d4f364cac2a0871282091e61c78e.min.js HTTP/1.1
Host: js-de.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kw2n.deloresecret.com
DNT: 1
Connection: keep-alive
Referer: https://kw2n.deloresecret.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: img-src * blob: data:; base-uri 'none'; media-src *; font-src * data:; frame-src app.pendo.io demo.arcade.software js.stripe.com sentry.io; object-src 'none'; worker-src blob:; style-src * 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'report-sample' s1.sentry-cdn.com js.sentry-cdn.com browser.sentry-cdn.com statuspage-production.s3.amazonaws.com static.zdassets.com aui-cdn.atlassian.com connect-cdn.atl-paas.net js.stripe.com 'strict-dynamic' cdn.pendo.io data.pendo.io pendo-io-static.storage.googleapis.com pendo-static-5634074999128064.storage.googleapis.com; frame-ancestors 'self' *.sentry.io; connect-src 'self' *.algolia.net *.algolianet.com *.algolia.io sentry.io *.sentry.io s1.sentry-cdn.com o1.ingest.sentry.io api2.amplitude.com app.pendo.io data.pendo.io reload.getsentry.net t687h3m0nh65.statuspage.io sentry.zendesk.com ekr.zdassets.com maps.googleapis.com; default-src 'none'; report-uri https://o1.ingest.sentry.io/api/54785/security/?sentry_key=f724a8a027db45f5b21507e7142ff78e&sentry_release=8f767d67e8178a017fd01e42eff7a2b971951391
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 20
content-encoding: gzip
accept-ranges: bytes
date: Sat, 07 Dec 2024 20:42:44 GMT
age: 47
x-served-by: getsentry-web-default-profiling-production-56c4dfd75c-bkjv6, cache-chi-klot8100139-CHI, cache-hel1410025-HEL
vary: Accept-Encoding
timing-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1359
X-Firefox-Spdy: h2

kw2n.deloresecret.com/beacon

188.114.96.1

200 OK

2 B

URL
kw2n.deloresecret.com/beacon
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /beacon HTTP/1.1
Host: kw2n.deloresecret.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------24020843204107671436384558509
Content-Length: 681
Origin: https://kw2n.deloresecret.com
DNT: 1
Connection: keep-alive
Referer: https://kw2n.deloresecret.com/ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:44 GMT
content-type: text/plain;charset=UTF-8
content-length: 2
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dyXqNR7zJAmmkpBweES%2FUGXGDNBTise0CRrT1Q3azEi%2FI8PyKgoTVwZZjEENrd5R7YCpANsT%2Bbb7TORR%2Fddz2erNLpYD3iVM8SXwbY7lg5P5QY6eg1u2krYJ0pQIQSN%2BrgfxwJiA9yE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee7580e8a7e0b49-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12200&min_rtt=9054&rtt_var=4560&sent=16&recv=8&lost=0&retrans=0&sent_bytes=8430&recv_bytes=2214&delivery_rate=25971&cwnd=12000&unsent_bytes=0&cid=75af13a9992ef2ad&ts=314&x=1", cfExtPri, cfHdrFlush;dur=0

browser.sentry-cdn.com/7.120.1/bundle.tracing.replay.min.js

151.101.2.217

200 OK

73 kB

URL GET HTTP/2
browser.sentry-cdn.com/7.120.1/bundle.tracing.replay.min.js
IP
151.101.2.217:443
ASN
#54113 FASTLY

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGlobalSign nv-sa
Subject*.sentry-cdn.com
Fingerprint6B:55:47:10:A0:BA:70:7D:F4:70:A4:7C:67:AC:34:37:2F:54:BA:FA
ValidityTue, 04 Jun 2024 18:46:04 GMT - Sun, 06 Jul 2025 18:46:03 GMT

File type
JavaScript source, ASCII text, with very long lines (65411)
Size
73 kB (72836 bytes)
Hash
9c228b16df2c9c82e02b13947494c002
d1c2164ef4c66b1b610654bf9779ebf91c701a47
032371bc4bf2b950bb500221e1cf08b4edc891a0b486f7a2241729bc3e68bdfd

HTTP Headers

GET /7.120.1/bundle.tracing.replay.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kw2n.deloresecret.com
DNT: 1
Connection: keep-alive
Referer: https://kw2n.deloresecret.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 05 Dec 2025 11:29:28 GMT
last-modified: Thu, 05 Dec 2024 10:17:54 GMT
etag: "7d30701dc407b8fb7ae4c1c1853cef23"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sat, 07 Dec 2024 20:42:44 GMT
age: 205997
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 72836
X-Firefox-Spdy: h2

kw2n.deloresecret.com/favicon.ico

188.114.96.1

200 OK

47 B

URL
kw2n.deloresecret.com/favicon.ico
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 1 x 1
Size
47 B (47 bytes)
Hash
2f3ca1d38e8b18ef00c4a0eff0889cfc
2f28ed1ccf7c08cf22491757fe20385249db162e
af9dbf02c85319fda5ed6e97828a8328ce87a4a11e2a95d506654bf7dee244f4

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: kw2n.deloresecret.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kw2n.deloresecret.com/ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:44 GMT
content-type: image/gif
content-length: 47
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zBkTe6YgcJk3p1t4FMfAQ5Di647PPu8XyXr1EpUbOQuPWXsAo%2BTqtXD3Js9JF9JizNoZo1GT0teuTBPO5FIA10K8USa3RwBJ80Wgp0MubIVIwgnHUeRwCWmiKzzDYT6pBeqR7elMU2o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee7580edaed0b49-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12701&min_rtt=9054&rtt_var=4421&sent=18&recv=10&lost=0&retrans=0&sent_bytes=9113&recv_bytes=2570&delivery_rate=18120&cwnd=12000&unsent_bytes=0&cid=75af13a9992ef2ad&ts=363&x=1", cfExtPri, cfHdrFlush;dur=0

kw2n.deloresecret.com/ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad

188.114.96.1

200 OK

2.4 kB

URL
kw2n.deloresecret.com/ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text
Size
2.4 kB (2445 bytes)
Hash
8ef836024c58db535eae86891da6b931
22e9cf9a7f3d24668a0278eba70747faaa48a0f6
b95d76de1d1a4ade6697b6f64f1a265b67f0c0227a47b9a05b760eb5da8d52fe

HTTP Headers

GET /ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad HTTP/1.1
Host: kw2n.deloresecret.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 20:42:44 GMT
content-type: text/html
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z2cxVqFdD2PgprIKYdk9an%2FTYz7Zv79M%2BR46gRiPTjGye6OvFNKLPOI4nRqp7HI4FmvryENsuna1MdjL63sTj6hBX9D%2FcVcUZErpDdJpVxjygw1Pxw%2Fl%2B9SEgz1MmVwlI41o8SzvbOk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee7580bc9f4569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=13591&min_rtt=8069&rtt_var=11957&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3212&recv_bytes=1154&delivery_rate=530402&cwnd=254&unsent_bytes=0&cid=dfa3c9d2d921a0c3&ts=151&x=0"
X-Firefox-Spdy: h2

dateexotics.com/static/BwAA/pics-for-bg/pic-33.webp

188.114.97.1

200 OK

30 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/pic-33.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
30 kB (30368 bytes)
Hash
57202a93e46a6a25f4a77d6fa7ba96b5
b185f52e218c63b3313a14dd129a45e971c14ae6
1a46ce827393f6f4c2d25df09c3473cf633f309021aa0866bcdec7d7d5f86e57

HTTP Headers

GET /static/BwAA/pics-for-bg/pic-33.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:45 GMT
content-type: image/webp
content-length: 30368
last-modified: Tue, 07 Jul 2020 07:03:34 GMT
etag: "5f041e46-76a0"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 675
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CXuRjDfkyYKfwLvBJgR3CY6iRcMC50nRUDOzhj87tditBG5atH5YWx1d29F7Jrmcm189zQ1lYoub5uQUG5J%2BEJzDxM%2BQDrmnxBaq7tFkMZ%2BqKLZeNx14quqgknuWYM1xifQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758156b78b4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11267&min_rtt=9158&rtt_var=3110&sent=52&recv=17&lost=0&retrans=0&sent_bytes=42258&recv_bytes=4545&delivery_rate=162359&cwnd=28800&unsent_bytes=0&cid=81aa31413633a335&ts=133&x=1", cfExtPri, cfHdrFlush;dur=11

dateexotics.com/static/BwAA/pics-for-bg/pic-31.webp

188.114.97.1

200 OK

48 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/pic-31.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
48 kB (48456 bytes)
Hash
73a7deb5985445582d1fae0b3d21b6df
4c3b7494e1fa86ebc252a3b398c562761447620e
1493804ee5f71b20073960d1c51014f84f97633451ac393d5c4ac94ff10f4f90

HTTP Headers

GET /static/BwAA/pics-for-bg/pic-31.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:45 GMT
content-type: image/webp
content-length: 48456
last-modified: Tue, 07 Jul 2020 07:03:34 GMT
etag: "5f041e46-bd48"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 675
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rLkUPuoVQMxtpdE%2FXzwglnO1kSgKVFxPmaGomDTkpg5yPx%2FzQlrl%2B19JI8jBHkPv0tfG6Cv1N8rDtoRnirHi%2BIBmswbAde%2B2MHS303l0MmZ5P6WR9Vedlw6pFU52mBAhHEc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758156b83b4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11267&min_rtt=9158&rtt_var=3110&sent=59&recv=17&lost=0&retrans=0&sent_bytes=50417&recv_bytes=4545&delivery_rate=162359&cwnd=28800&unsent_bytes=0&cid=81aa31413633a335&ts=134&x=1", cfExtPri, cfHdrFlush;dur=22

dateexotics.com/static/BwAA/pics-for-bg/pic-5.webp

188.114.97.1

200 OK

21 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/pic-5.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
21 kB (20640 bytes)
Hash
09ce2a659b023468211d269738eb98a4
53bff0b606a9118fdfb7ec0330d5687ca81374a4
c26d2443c1efb7dc23c13e829e11b7268fc4b62d4f7713d5f4e2756303eed5ac

HTTP Headers

GET /static/BwAA/pics-for-bg/pic-5.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: image/webp
content-length: 20640
last-modified: Fri, 03 Jul 2020 10:31:26 GMT
etag: "5eff08fe-50a0"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 676
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IMGRBPCz7aZWtQ1R4VAymwGGE9dH1BSBroYYO9DEZOM8gqjYdpJ%2B2A9DVVEN0Q1ZIx8kYClWlF4v8F6EtV9peRLlOvQggy5OWKUYrNxH7YLCASReAya6bU5UbwGYjV3KBFc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758157b94b4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11267&min_rtt=9158&rtt_var=3110&sent=59&recv=17&lost=0&retrans=0&sent_bytes=50417&recv_bytes=4545&delivery_rate=162359&cwnd=28800&unsent_bytes=0&cid=81aa31413633a335&ts=140&x=1", cfExtPri, cfHdrFlush;dur=31

js-de.sentry-cdn.com/719c993840e43adc0c63d55ce2044c87.min.js

151.101.66.217

200 OK

1.4 kB

URL GET HTTP/2
js-de.sentry-cdn.com/719c993840e43adc0c63d55ce2044c87.min.js
IP
151.101.66.217:443
ASN
#54113 FASTLY

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGlobalSign nv-sa
Subject*.sentry-cdn.com
Fingerprint6B:55:47:10:A0:BA:70:7D:F4:70:A4:7C:67:AC:34:37:2F:54:BA:FA
ValidityTue, 04 Jun 2024 18:46:04 GMT - Sun, 06 Jul 2025 18:46:03 GMT

File type
JavaScript source, ASCII text, with very long lines (2845)
Size
1.4 kB (1359 bytes)
Hash
a5684004cbf108d716f1b54a0aca45bb
d402ab62a6b0518b44f24855860fff7d86444e10
90f73533454faeca6718c67f5ae2d806cca69af844c3baccb093ebb0ccbb8e62

HTTP Headers

GET /719c993840e43adc0c63d55ce2044c87.min.js HTTP/1.1
Host: js-de.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dateexotics.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.sentry.io; default-src 'none'; font-src * data:; connect-src 'self' *.algolia.net *.algolianet.com *.algolia.io sentry.io *.sentry.io s1.sentry-cdn.com o1.ingest.sentry.io api2.amplitude.com app.pendo.io data.pendo.io reload.getsentry.net t687h3m0nh65.statuspage.io sentry.zendesk.com ekr.zdassets.com maps.googleapis.com; img-src * blob: data:; media-src *; script-src 'self' 'unsafe-inline' 'report-sample' s1.sentry-cdn.com js.sentry-cdn.com browser.sentry-cdn.com statuspage-production.s3.amazonaws.com static.zdassets.com aui-cdn.atlassian.com connect-cdn.atl-paas.net js.stripe.com 'strict-dynamic' cdn.pendo.io data.pendo.io pendo-io-static.storage.googleapis.com pendo-static-5634074999128064.storage.googleapis.com; object-src 'none'; style-src * 'unsafe-inline'; worker-src blob:; frame-src app.pendo.io demo.arcade.software js.stripe.com sentry.io; base-uri 'none'; report-uri https://o1.ingest.sentry.io/api/54785/security/?sentry_key=f724a8a027db45f5b21507e7142ff78e&sentry_release=8f767d67e8178a017fd01e42eff7a2b971951391
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 28
content-encoding: gzip
accept-ranges: bytes
date: Sat, 07 Dec 2024 20:42:46 GMT
age: 58
x-served-by: getsentry-web-default-profiling-production-canary-5dd697f8zbq4n, cache-chi-kigq8000118-CHI, cache-hel1410027-HEL
vary: Accept-Encoding
timing-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1359
X-Firefox-Spdy: h2

dateexotics.com/static/BwAA/pics-for-bg/pic-24.webp

188.114.97.1

200 OK

23 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/pic-24.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
23 kB (22614 bytes)
Hash
85d5a31870fd8b6dc2818bfa924503cd
a8f28209e938c2ad9e17a7b6861a81a7c75896e9
bdb225df5cdef4a9e71987199d9332569b4b6226325e15aa0e65f121b33ac54b

HTTP Headers

GET /static/BwAA/pics-for-bg/pic-24.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: image/webp
content-length: 22614
last-modified: Mon, 06 Jul 2020 14:19:32 GMT
etag: "5f0332f4-5856"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 676
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5Ezb%2B1tqsZ%2B%2B8WboxWZ%2BwXkuefQ9Oqfy7fk9FDUsvOW9JH0FzXKdEhLXpDIZA%2Bpnz8pA0s6ADFahKZcaNK3V8%2FsWQkEHsI94rHqMaV%2BSTHvLGbLpqphHJP%2FpPciNp0pZR%2Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758157b9cb4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11267&min_rtt=9158&rtt_var=3110&sent=59&recv=17&lost=0&retrans=0&sent_bytes=50417&recv_bytes=4545&delivery_rate=162359&cwnd=28800&unsent_bytes=0&cid=81aa31413633a335&ts=140&x=1", cfExtPri, cfHdrFlush;dur=45

dateexotics.com/static/BwAA/pics-for-bg/pic-29.webp

188.114.97.1

200 OK

29 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/pic-29.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (28848 bytes)
Hash
0e31cfe67a0d9096a9509dbd0789e2dd
536cc6f42b8b2c4ee600d799b5d841c804bdcb0a
e9294f68bf5e7b1847a4274721ec5d7d812551687c691356909dc6d22afdd8fb

HTTP Headers

GET /static/BwAA/pics-for-bg/pic-29.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: image/webp
content-length: 28848
last-modified: Tue, 07 Jul 2020 07:03:34 GMT
etag: "5f041e46-70b0"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5353
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GYxySjEGriZm6l0lC6IF2g30H2wgEUw2LDfyLNeovVBrtMtoJQiNXDucr8cInA7hBTTYiXHT%2Bkd874o34Xau75CsAiH%2BGwfln86Y%2FU%2BX62xpDD%2BTyhRe18WUodsrlOU85N8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758157ba3b4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11267&min_rtt=9158&rtt_var=3110&sent=59&recv=17&lost=0&retrans=0&sent_bytes=50417&recv_bytes=4545&delivery_rate=162359&cwnd=28800&unsent_bytes=0&cid=81aa31413633a335&ts=142&x=1", cfExtPri, cfHdrFlush;dur=56

ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js

142.250.74.74

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintE8:18:86:79:89:2E:F0:7C:66:1F:C3:43:81:D2:6D:9E:0C:9C:AB:05
ValidityMon, 21 Oct 2024 08:38:00 GMT - Mon, 13 Jan 2025 08:37:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
30 kB (30462 bytes)
Hash
2c872dbe60f4ba70fb85356113d8b35e
ee48592d1fff952fcf06ce0b666ed4785493afdc
fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a

HTTP Headers

GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30462
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Dec 2024 18:51:34 GMT
expires: Sat, 06 Dec 2025 18:51:34 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 93072
last-modified: Tue, 12 Sep 2023 02:38:22 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dateexotics.com/static/BwAA/pics-for-bg/gif-left-top-2.webp

188.114.97.1

200 OK

935 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/gif-left-top-2.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
935 kB (935074 bytes)
Hash
7891e8b8d59edd59501d353959fa73c1
6af45edf166fd37acd0effb1a8abc3d7cb6e310c
b7d96199e347f5f98f9e4deb782f16a74c3c3891839f19f766dcd671fdc590c5

HTTP Headers

GET /static/BwAA/pics-for-bg/gif-left-top-2.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:45 GMT
content-type: image/webp
content-length: 935074
last-modified: Tue, 07 Jul 2020 10:09:12 GMT
etag: "5f0449c8-e44a2"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 675
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u2zkfDTkYUcinjRGAO%2BYkfa7kWdKvaSwt7PVoMoqH2Te0%2BOLSvszstOhJwlB0iISiggFfuM7CDySYreGsT1VK3EhoaqPaK7W11Od%2Bvqjw2DuqU6yUP7F1wIit%2F6%2BXg8G3Ss%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758155b6cb4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11848&min_rtt=9495&rtt_var=5241&sent=18&recv=10&lost=0&retrans=0&sent_bytes=7164&recv_bytes=2628&delivery_rate=62558&cwnd=12000&unsent_bytes=0&cid=81aa31413633a335&ts=123&x=1", cfExtPri, cfHdrFlush;dur=0

dateexotics.com/static/BwAA/pics-for-bg/pic-21.webp

188.114.97.1

200 OK

27 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/pic-21.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
27 kB (27432 bytes)
Hash
7f36e413a7c14f2da3a5c0ffa3b1f0bf
cc82c98b5549c2529afb237a7d0eeabc1d2240f6
24e77949209d0278fe0fbee90a3135a3d55284c246b15631b01a004413bdd6e6

HTTP Headers

GET /static/BwAA/pics-for-bg/pic-21.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:45 GMT
content-type: image/webp
content-length: 27432
last-modified: Mon, 06 Jul 2020 14:10:04 GMT
etag: "5f0330bc-6b28"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 675
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RJay%2BfqDf5lGkFsRvXmvRLlVeTBJF2vGxR%2F7sQPEwM7hkwhYceoF8kusFRMxNl5Dw5mQGta046XvDI2cwlwnItiBI5EybNgklmH0Zbvyfcn4QGkbTdCU%2Ba48wYcJrOHr%2Bqg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758156b7fb4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11732&min_rtt=9495&rtt_var=4162&sent=33&recv=14&lost=0&retrans=0&sent_bytes=21617&recv_bytes=4183&delivery_rate=33164&cwnd=14400&unsent_bytes=0&cid=81aa31413633a335&ts=131&x=1", cfExtPri, cfHdrFlush;dur=2

dateexotics.com/static/BwAA/pics-for-bg/gif-right-top-2.webp

188.114.97.1

200 OK

421 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/gif-right-top-2.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
421 kB (420602 bytes)
Hash
f1824fd01c2609f5658db8c493c7b4a1
e69e10d2b119a8f2eb04d2ce6c437cdb9635bd65
36cfced4b800c108c2d145fd472d89dc97719d1e1a2ae3b3de44fcd49df192dc

HTTP Headers

GET /static/BwAA/pics-for-bg/gif-right-top-2.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:45 GMT
content-type: image/webp
content-length: 420602
last-modified: Tue, 07 Jul 2020 06:37:18 GMT
etag: "5f04181e-66afa"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5690
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZpMbw4eLRDHnOs5tB5osS6Qyc09qgBJfWYmwWzlJPY01Ep7526HzemibDrf9eCeEhwGily8C2ufvDsdXD90prtHLvyWjmZI%2Fh5h9f3FdKRQhq4TvTMLEvWmME0sEybB%2Fnys%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758156b82b4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11732&min_rtt=9495&rtt_var=4162&sent=33&recv=14&lost=0&retrans=0&sent_bytes=21617&recv_bytes=4183&delivery_rate=33164&cwnd=14400&unsent_bytes=0&cid=81aa31413633a335&ts=131&x=1", cfExtPri, cfHdrFlush;dur=13

dateexotics.com/static/BwAA/pics-for-bg/gif-top-center.webp

188.114.97.1

200 OK

1.0 MB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/gif-top-center.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.0 MB (1026914 bytes)
Hash
2b12e195c623432fa8dca7804e325efc
7a89221d2124a9ba627134ebfbba28b52183bd86
0e2b6d1a962e8c82fa7c26a2002509e8e29acf0be5660c76fd0c930f4572ea4b

HTTP Headers

GET /static/BwAA/pics-for-bg/gif-top-center.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:45 GMT
content-type: image/webp
content-length: 1026914
last-modified: Thu, 09 Jul 2020 14:40:08 GMT
etag: "5f072c48-fab62"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5690
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dj%2FCRoOK0b%2Fu%2FDpHiJlQBjsk5yShVIO2axqA%2BPTYSh1BvorRxVMTQMPx2g7268DbltM%2Fu%2FeIEWkvXLbJjtf2dXx%2FrXx9yhmANxRSfWBGPjk%2FjrCz039Z3hKtxdlREOvAxos%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758156b7bb4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11732&min_rtt=9495&rtt_var=4162&sent=32&recv=12&lost=0&retrans=0&sent_bytes=21591&recv_bytes=3411&delivery_rate=33164&cwnd=14400&unsent_bytes=0&cid=81aa31413633a335&ts=127&x=1", cfExtPri, cfHdrFlush;dur=5

metatrckpixel.com/pixel.js?tbsession=

188.114.97.1

200 OK

12 kB

URL
metatrckpixel.com/pixel.js?tbsession=
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
12 kB (11679 bytes)
Hash
9b5fc5b45b030f45461a2b0cf759a984
0fa25a9102869ded9b78eda5be082587a0120a94
47405eefc86ee293c153d5ea86548bfe88353a3981a33bffca35ec4a59f4ea50

HTTP Headers

GET /pixel.js?tbsession= HTTP/1.1
Host: metatrckpixel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kw2n.deloresecret.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 20:42:44 GMT
content-type: application/javascript;charset=UTF-8
set-cookie: trbarid=8673504418111730500;expires=Mon, 07 Dec 2026 20:42:44 GMT;secure;HttpOnly;SameSite=None;path=/;Domain=metatrckpixel.com
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oQiRYRNZyJuMp7hAHTkrAjKvMg4F%2FD8Z36Cj9I8O2t37bbu3cvk08PkVqYzNM15OixNYmTRwJYnYrbIFiU8q0b3kqnE5BJ6Cl0qa3KJR7upH9OhE7x1dUtZYtZwreoZ9rs7cGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee7580e0dd956b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=8104&min_rtt=7929&rtt_var=1392&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3290&recv_bytes=1200&delivery_rate=546483&cwnd=250&unsent_bytes=0&cid=cb3baa216edaf1d0&ts=39&x=0"
X-Firefox-Spdy: h2

dateexotics.com/static/BwAA/pics-for-bg/gif-left-center.webp

188.114.97.1

200 OK

1.6 MB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/gif-left-center.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.6 MB (1571430 bytes)
Hash
573cd3891b56c99137476f24af48568c
f009f50ea6256c4891b402b9302a98e47e858632
4b24c8599b2889bf8ebc092d4ea5e33a46f0398faead4ccca30aae237c36c59f

HTTP Headers

GET /static/BwAA/pics-for-bg/gif-left-center.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: image/webp
content-length: 1571430
last-modified: Tue, 07 Jul 2020 10:19:20 GMT
etag: "5f044c28-17fa66"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 676
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ob%2BwgxogjZsWCew0Qvl4V4IiCnxDTPu1Vgt6W4gjkkhGqR1McrHLj0MLmqSPZBxiF%2FYaXNkp5mrXM%2By0XBIgxPcjprOdOeY3cbcUI2WuH2ZSUvurOFgshr3IHazJ4JM%2FLSw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758157b93b4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11267&min_rtt=9158&rtt_var=3110&sent=59&recv=17&lost=0&retrans=0&sent_bytes=50417&recv_bytes=4545&delivery_rate=162359&cwnd=28800&unsent_bytes=0&cid=81aa31413633a335&ts=137&x=1", cfExtPri, cfHdrFlush;dur=19

browser.sentry-cdn.com/7.120.1/bundle.tracing.replay.min.js

151.101.66.217

200 OK

73 kB

URL GET HTTP/2
browser.sentry-cdn.com/7.120.1/bundle.tracing.replay.min.js
IP
151.101.66.217:443
ASN
#54113 FASTLY

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGlobalSign nv-sa
Subject*.sentry-cdn.com
Fingerprint6B:55:47:10:A0:BA:70:7D:F4:70:A4:7C:67:AC:34:37:2F:54:BA:FA
ValidityTue, 04 Jun 2024 18:46:04 GMT - Sun, 06 Jul 2025 18:46:03 GMT

File type
JavaScript source, ASCII text, with very long lines (65411)
Size
73 kB (72836 bytes)
Hash
9c228b16df2c9c82e02b13947494c002
d1c2164ef4c66b1b610654bf9779ebf91c701a47
032371bc4bf2b950bb500221e1cf08b4edc891a0b486f7a2241729bc3e68bdfd

HTTP Headers

GET /7.120.1/bundle.tracing.replay.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dateexotics.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 05 Dec 2025 11:29:28 GMT
last-modified: Thu, 05 Dec 2024 10:17:54 GMT
etag: "7d30701dc407b8fb7ae4c1c1853cef23"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sat, 07 Dec 2024 20:42:46 GMT
age: 205998
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 72836
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2

216.58.207.227

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52
ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12648, version 1.0
Size
13 kB (12648 bytes)
Hash
5e79fc3b5fbdec47c02942523ae2bdbd
fdb96db25dc07b7c0573bf5a66966d12dfbb41bd
6ecd2a103a7260474c3239da5f32a2f7cb999765d9ab12161f3e4abe3906316f

HTTP Headers

GET /s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dateexotics.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12648
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Dec 2024 21:58:01 GMT
expires: Sat, 06 Dec 2025 21:58:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Aug 2023 18:38:40 GMT
content-type: font/woff2
age: 81885
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

38 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52
ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37828, version 1.0
Size
38 kB (37828 bytes)
Hash
50b140b1e97d859d6d0603414f4298ee
500e4872ee1ba9cf89f1ba626d64987b0f9ab5c9
fdc9964050bfa24c27a3c76c6791b3674292a5f352cbc83d7a4dc49595bc3fb1

HTTP Headers

GET /s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dateexotics.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Dec 2024 22:43:22 GMT
expires: Sat, 06 Dec 2025 22:43:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 06 Nov 2024 17:30:37 GMT
content-type: font/woff2
age: 79164
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Oswald:700

142.250.74.106

200 OK

38 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Oswald:700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintE8:18:86:79:89:2E:F0:7C:66:1F:C3:43:81:D2:6D:9E:0C:9C:AB:05
ValidityMon, 21 Oct 2024 08:38:00 GMT - Mon, 13 Jan 2025 08:37:59 GMT

File type
gzip compressed data, max compression
Size
38 kB (38377 bytes)
Hash
3bb7c05841f45c4ea8ea6668f31f9b99
eb5462a20555f585e44dc443c15ed36fac55fba7
7cd0d0e97571a7c7a03d3d15b81b09fe32ed9e47d093abf20ce76ae98a5d2739

HTTP Headers

GET /css?family=Oswald:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 07 Dec 2024 20:42:46 GMT
date: Sat, 07 Dec 2024 20:42:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dateexotics.com/static/BwAA/pics-for-bg/gif-right-middle.webp

188.114.97.1

200 OK

914 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/gif-right-middle.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
914 kB (913916 bytes)
Hash
63f9c3601f28324a493b048946dc24e8
206aaf15d77bc7d44227fba8de7f70e27423fc7b
0ed339e681ac9951edef7384640ee2400ba549a1f2650d9d8392de9fb9f66f19

HTTP Headers

GET /static/BwAA/pics-for-bg/gif-right-middle.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: image/webp
content-length: 913916
last-modified: Thu, 09 Jul 2020 14:40:08 GMT
etag: "5f072c48-df1fc"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 676
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XHvPkGEgKJpIyMkDXk4TO8xYzpXWG%2BuY9JnaZTU6AE7zn0BF%2FP3AD%2FK2atQkrOuUwUgg9B15xhRKq4jasRUIJp%2BjLNeLJc1iOFkt24mW0y1ZtL95KA8EWCv9VlDoH%2B751Qw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758157b95b4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11267&min_rtt=9158&rtt_var=3110&sent=59&recv=17&lost=0&retrans=0&sent_bytes=50417&recv_bytes=4545&delivery_rate=162359&cwnd=28800&unsent_bytes=0&cid=81aa31413633a335&ts=138&x=1", cfExtPri, cfHdrFlush;dur=33

fonts.googleapis.com/css?family=Montserrat:100,400,700,900

142.250.74.106

200 OK

628 B

URL GET HTTP/2
fonts.googleapis.com/css?family=Montserrat:100,400,700,900
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintE8:18:86:79:89:2E:F0:7C:66:1F:C3:43:81:D2:6D:9E:0C:9C:AB:05
ValidityMon, 21 Oct 2024 08:38:00 GMT - Mon, 13 Jan 2025 08:37:59 GMT

File type
ASCII text
Size
628 B (628 bytes)
Hash
589b933e396b8300006d4bc1314ba9ac
164233e955aaf7abd4dfef1903fc615676938066
bb18fec3be780e19ce3a665efb57df398e62a5fd9864d2de06ba5ac587614129

HTTP Headers

GET /css?family=Montserrat:100,400,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 07 Dec 2024 20:42:46 GMT
date: Sat, 07 Dec 2024 20:42:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dateexotics.com/static/BwAA/pics-for-bg/gif-left-bottom.webp

188.114.97.1

200 OK

1.8 MB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/gif-left-bottom.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.8 MB (1759974 bytes)
Hash
9bb38325b4b67332f3f606fa060e12b1
d362bdf5ca2e0e5ef531bc90bd915b43a31a079f
ca0322669fa8ebda1511487249f98f00ada1d69b713a706776a721b615dd712d

HTTP Headers

GET /static/BwAA/pics-for-bg/gif-left-bottom.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: image/webp
content-length: 1759974
last-modified: Tue, 07 Jul 2020 09:58:14 GMT
etag: "5f044736-1adae6"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5353
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vJx%2BIBCsTq5j1Xx1k9DZAd97yMSCuXYyfW66e5UJrkOhq9d9iFticTw0WnaY1ojdlxzzmeE%2BnJltBzuLeT1BvaMK5TKmcUhRWpYvebxCX7ozGBZZvF7oi6BMZ9P3kHKydpo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758157ba1b4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11371&min_rtt=9158&rtt_var=2539&sent=109&recv=19&lost=0&retrans=0&sent_bytes=108044&recv_bytes=5094&delivery_rate=2608065&cwnd=57600&unsent_bytes=0&cid=81aa31413633a335&ts=152&x=1", cfExtPri, cfHdrFlush;dur=33

dateexotics.com/static/BwAA/pics-for-bg/gif-center-bottom.webp

188.114.97.1

200 OK

1.3 MB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/gif-center-bottom.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.3 MB (1315814 bytes)
Hash
d8c900530a23c17c7c2977e14b610a0d
cb5e48b62e6d8c963d7888a7856c7d0476853936
53fbf1054333d83a2f705017b344baeec90bcded6ab765bccbf4efc6e2af1766

HTTP Headers

GET /static/BwAA/pics-for-bg/gif-center-bottom.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: image/webp
content-length: 1315814
last-modified: Thu, 09 Jul 2020 14:40:08 GMT
etag: "5f072c48-1413e6"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5368
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rubfMFatEHvWJRAh7JJKRIo55dYh9HboZoPDWavdecX7VCEOmbtZ7WaQEekvylUzGaH5Ne39Rmc%2B%2FWgaSNdaP3t4FMdJq%2BylFdIHgh4jB3g9g01GGXzFCTrzzx2%2BtkBUmqs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758157ba8b4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11371&min_rtt=9158&rtt_var=2539&sent=109&recv=19&lost=0&retrans=0&sent_bytes=108044&recv_bytes=5094&delivery_rate=2608065&cwnd=57600&unsent_bytes=0&cid=81aa31413633a335&ts=148&x=1", cfExtPri, cfHdrFlush;dur=50

dateexotics.com/static/BwAA/pics-for-bg/pic-34.jpg

188.114.97.1

200 OK

30 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/pic-34.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 430x430, components 3
Size
30 kB (30172 bytes)
Hash
4098b8add8b5258252fd0cef6470d212
077a6920fa61a9d784bae160287c705dc921ec9b
1c48967bf5bde369568e17772b66cc16c4e40f33046f78fcb3e6b0929c9eed62

HTTP Headers

GET /static/BwAA/pics-for-bg/pic-34.jpg HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: image/jpeg
content-length: 30172
last-modified: Tue, 07 Jul 2020 07:03:34 GMT
etag: "5f041e46-75dc"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 6263
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Oih4R8nQP4nI%2Fsp9EhOwPaP2fcFtKQWVqBgq6xCZw%2FBJytQz%2FQeewupl5bmbBGWLSBkJGoTje%2Bo7%2F4bB314wTJ1CEadj1HNsfHMNJ6AmzkOsxepmqW2QvHqhFAbF8t%2F7bdc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758158bbfb4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11371&min_rtt=9158&rtt_var=2539&sent=109&recv=19&lost=0&retrans=0&sent_bytes=108044&recv_bytes=5094&delivery_rate=2608065&cwnd=57600&unsent_bytes=0&cid=81aa31413633a335&ts=155&x=1", cfExtPri, cfHdrFlush;dur=43

o4507100984967168.ingest.de.sentry.io/api/4507140689231952/envelope/?sentry_key=719c993840e43adc0c63d55ce2044c87&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.120.1

34.120.62.213

200 OK

473 B

URL POST HTTP/2
o4507100984967168.ingest.de.sentry.io/api/4507140689231952/envelope/?sentry_key=719c993840e43adc0c63d55ce2044c87&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.120.1
IP
34.120.62.213:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerDigiCert Inc
Subjectingest.de.sentry.io
FingerprintFF:FA:8B:D4:CF:26:2D:EC:BB:CC:C0:5D:D0:75:96:3B:19:67:08:4B
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT

File type
data
Size
473 B (473 bytes)
Hash
e22103ab5e0496b5374a79779cdd2a11
444e39980fac5fbef8f928f429f6e8a1f9019177
6d339afeb764fc0be2be55b27bff13acfcb1cb73f0d6a330b82ec7ae6e99c1be

HTTP Headers

POST /api/4507140689231952/envelope/?sentry_key=719c993840e43adc0c63d55ce2044c87&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.120.1 HTTP/1.1
Host: o4507100984967168.ingest.de.sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dateexotics.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 415
Origin: https://dateexotics.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 07 Dec 2024 20:42:47 GMT
content-type: application/json
vary: origin, access-control-request-method, access-control-request-headers
access-control-allow-origin: *
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dateexotics.com/static/BwAA/pics-for-bg/gif-right-center.webp

188.114.97.1

200 OK

2.0 MB

URL GET HTTP/3
dateexotics.com/static/BwAA/pics-for-bg/gif-right-center.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
RIFF (little-endian) data, Web/P image
Size
2.0 MB (1986440 bytes)
Hash
ad665a1e4713459f16b59785ab6da0f8
3fab7005ed12bb0eb7fdd69ca1a385b33759bdef
6d6db6dee0b23b48c71cb999f2909dc2be4ffe85eeb5b04b4e50b66c007f0978

HTTP Headers

GET /static/BwAA/pics-for-bg/gif-right-center.webp HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: image/webp
content-length: 1986440
last-modified: Tue, 07 Jul 2020 10:28:52 GMT
etag: "5f044e64-1e4f88"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5369
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yXq8PBX0VJ2Dc2KockBicbeoZ6UNfD36%2BEWTVnB2wlM%2Fg42twK%2Bq83XRxMNXKcxRxW1LV373euWeu2Nt1r9H6%2Fi09GoyiYcc8Sjyie7ovr20BcNJSwZ%2Bel9W8cXbqqucmr0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758158bc3b4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11371&min_rtt=9158&rtt_var=2539&sent=109&recv=19&lost=0&retrans=0&sent_bytes=108044&recv_bytes=5094&delivery_rate=2608065&cwnd=57600&unsent_bytes=0&cid=81aa31413633a335&ts=154&x=1", cfExtPri, cfHdrFlush;dur=49

dateexotics.com/static/BwAA/3-1.png

188.114.97.1

200 OK

480 B

URL GET HTTP/3
dateexotics.com/static/BwAA/3-1.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
PNG image data, 45 x 32, 8-bit/color RGBA, non-interlaced
Size
480 B (480 bytes)
Hash
37ad09484eb1a7e103c1bba69ec3408d
950c14767d959c154d2ba2ceaa7867b8809731e5
1a34fa1f236912eddc8817954583103dfb3ee754301a3745010fa09903c2f2a2

HTTP Headers

GET /static/BwAA/3-1.png HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dateexotics.com/static/BwAA/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: image/png
content-length: 480
last-modified: Fri, 03 Jul 2020 10:22:52 GMT
etag: "5eff06fc-1e0"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 6263
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2qOGuiFBxpwGS8Y7NBeu4oFauBGgJ914au7r6u7O%2FctT1H3Mo5gcjhEw%2FNrd2HjyeoQJCNOsPivHGCJ%2BMVW%2B3nqcjXteL8mDzer786FkRuAtWUxiWvDE9SuUbnYJSVwaetQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee75817ff1bb4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=30405&min_rtt=8337&rtt_var=33644&sent=3961&recv=45&lost=143&retrans=147&sent_bytes=4706889&recv_bytes=9165&delivery_rate=1636845&cwnd=494069&unsent_bytes=0&cid=81aa31413633a335&ts=543&x=1", cfExtPri, cfHdrFlush;dur=0

www2-eu.deloresecret.com/ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad&sub6=www2-eu&tbrid64=CKV4EWdUs0Q&bdata=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&bt=1733604164&bth=2589020012&tbsession=8673504418111730500&c=1817946541&tags=%7B%7D

188.114.96.1

302 Found

9.9 kB

URL User Request GET HTTP/3
www2-eu.deloresecret.com/ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad&sub6=www2-eu&tbrid64=CKV4EWdUs0Q&bdata=eyJkYXRhIjp7InBsYXRmb3JtIjoiTGludXggeDg2XzY0In0sImV4dHJhIjp7fSwiZXJyb3JzIjp7ImlmcmFtZSI6WyJjYW4ndCBhY2Nlc3MgcHJvcGVydHkgXCJhcHBlbmRDaGlsZFwiLCBkb2N1bWVudC5ib2R5IGlzIG51bGwiXSwiY2FudmFzX2NvbnRleHQiOlsiT2Zmc2NyZWVuQ2FudmFzLmdldENvbnRleHQ6ICdleHBlcmltZW50YWwtd2ViZ2wnICh2YWx1ZSBvZiBhcmd1bWVudCAxKSBpcyBub3QgYSB2YWxpZCB2YWx1ZSBmb3IgZW51bWVyYXRpb24gT2Zmc2NyZWVuUmVuZGVyaW5nQ29udGV4dElkLiIsIk9mZnNjcmVlbkNhbnZhcy5nZXRDb250ZXh0OiAnZXhwZXJpbWVudGFsLXdlYmdsMicgKHZhbHVlIG9mIGFyZ3VtZW50IDEpIGlzIG5vdCBhIHZhbGlkIHZhbHVlIGZvciBlbnVtZXJhdGlvbiBPZmZzY3JlZW5SZW5kZXJpbmdDb250ZXh0SWQuIiwiRmFpbGVkIHRvIGdldCBjYW52YXMgY29udGV4dCJdfSwiYm90U2NvcmUiOiIyNCJ9&bt=1733604164&bth=2589020012&tbsession=8673504418111730500&c=1817946541&tags=%7B%7D
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectdeloresecret.com
FingerprintE0:C3:63:29:5D:74:02:74:D4:AD:E4:17:5B:E1:48:95:AA:E5:C9:C0
ValidityThu, 07 Nov 2024 10:23:07 GMT - Wed, 05 Feb 2025 10:23:06 GMT

File type
data
Size
9.9 kB (9907 bytes)
Hash
0683f0c4bc0ec5d4b685933f6df7bc7b
6f4e0586a6234bd4a5f290246c2ba4f28e685d99
30555b26b7d8645808b5b6787aa381d0715247a418602c587d38341fa38364a9

HTTP Headers

GET /ewkA?prid=cnv117db765bd4c3b33980ca0cb740dccad&sub6=www2-eu&tbrid64=CKV4EWdUs0Q&bdata=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&bt=1733604164&bth=2589020012&tbsession=8673504418111730500&c=1817946541&tags=%7B%7D HTTP/1.1
Host: www2-eu.deloresecret.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kw2n.deloresecret.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Sat, 07 Dec 2024 20:42:45 GMT
content-type: text/html; charset=UTF-8
location: https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
set-cookie: PHPSESSID=5pliijqbn5guvk696o5ahpp8cf; path=/; HttpOnly
trbarid=c884e478aef5b510ac193c463f6769e54b7188ba066e22fa9f84697c87e64ae9a%3A2%3A%7Bi%3A0%3Bs%3A7%3A%22trbarid%22%3Bi%3A1%3Bs%3A19%3A%228673504418111730500%22%3B%7D; expires=Sat, 12 Dec 2026 20:42:45 GMT; Max-Age=63504000; path=/; secure; HttpOnly; SameSite=None
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: DYNAMIC
priority: u=1,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FEX4%2FVu%2F2Ve%2Bl5REUaCnV2ghFGuJvuRPfO9hYSKzUwTCAMNTsyO9BgFpAn6bWaTjD6Fjrt2KxySUoad1fB3aqUhe2B0192DNEzLHG75o2FVx6OMICeKkaM6CoBmm5uqbzGP0625E1Gr4lcg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee7580f6bc90b49-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13907&min_rtt=9054&rtt_var=5728&sent=20&recv=12&lost=0&retrans=0&sent_bytes=9814&recv_bytes=3576&delivery_rate=15914&cwnd=12000&unsent_bytes=0&cid=75af13a9992ef2ad&ts=714&x=1", cfExtPri, cfHdrFlush;dur=0

dateexotics.com/stats

188.114.97.1

200 OK

8.2 kB

URL POST HTTP/3
dateexotics.com/stats
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
JSON text data
Size
8.2 kB (8168 bytes)
Hash
d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

HTTP Headers

POST /stats HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------29106816991685205641101718212
Content-Length: 2082
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: application/json; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3fJWcP3hwQFVsDFteGWUSCK4SyfJTkO8Nh%2F91nlN0vcvvkIhaTenxrWnz9Damqkni2A%2F2sg1o137dWl%2BfCfFuoAY444RE5i2dfmhR2BFkBPzr8oX3n7Tfsx2Zjmx0sixc7E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee75817ff19b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=29084&min_rtt=8337&rtt_var=27312&sent=5327&recv=51&lost=546&retrans=550&sent_bytes=6340787&recv_bytes=9483&delivery_rate=2308092&cwnd=245333&unsent_bytes=0&cid=81aa31413633a335&ts=829&x=1", cfExtPri, cfHdrFlush;dur=129

dateexotics.com/static/BwAA/favicon-16x16.png

188.114.97.1

200 OK

1.4 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/favicon-16x16.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1427 bytes)
Hash
6bcb33eea3fd28288c096719dcd92422
b6a08fbba7fd2fa1d2113a270fa0bdd7a51b6d3d
5dfce491745407831ba88729eea8380ac01de3b87f91a034e854f42dbfe99982

HTTP Headers

GET /static/BwAA/favicon-16x16.png HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:47 GMT
content-type: image/png
content-length: 1427
last-modified: Tue, 07 Jul 2020 11:47:24 GMT
etag: "5f0460cc-593"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 879
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nb5Wrd3fi8%2Fvzqny0vdKhAQPSyT3zj992d9Utct30RHB03D6GPCQdCRGSjejNNcZihPfnjrIn%2FZbMtTDlYsZV%2F6vaeYk4DXdvhumlqtkipZEpB2y1hhIYsXY2VYxk%2FiAS9E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee7581fec2bb4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=31337&min_rtt=8337&rtt_var=28581&sent=9382&recv=84&lost=631&retrans=638&sent_bytes=11181079&recv_bytes=11569&delivery_rate=1358637&cwnd=263333&unsent_bytes=0&cid=81aa31413633a335&ts=1813&x=1", cfExtPri, cfHdrFlush;dur=0

app.api-push.com/get-keys

104.21.32.1

200 OK

9.9 kB

URL POST HTTP/2
app.api-push.com/get-keys
IP
104.21.32.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectapi-push.com
FingerprintBE:FD:3B:EF:84:03:2E:CF:F0:B8:57:4C:89:A4:8E:D9:70:6A:AD:E4
ValidityWed, 04 Dec 2024 03:27:21 GMT - Tue, 04 Mar 2025 03:27:20 GMT

File type
JSON text data
Size
9.9 kB (9853 bytes)
Hash
897545306f0392b27db49b883f2c9314
b1546443d54695e2055728f614d3549b0661bf29
0deee709f14de6aa4018ed56ad0c3fbea4284d5427eae01f7aba26f1d32f3ad3

HTTP Headers

POST /get-keys HTTP/1.1
Host: app.api-push.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 176
Origin: https://dateexotics.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 07 Dec 2024 20:42:47 GMT
content-type: application/json; charset=utf-8
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ncb3Th8G%2FiWKBtrutqdL1PM3oMI8m%2FLhDmehVpwdgLRrclep1%2F1r%2BG4oORVOuWQ3ZTlu7psUOUTPF4gga803xc7WU7wTSKu%2F%2BKlVotZ%2F4pJsJ42W%2FOomUR%2B4gnMg1UTJJ2kV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee7581be86656cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=8115&min_rtt=7667&rtt_var=1206&sent=11&recv=15&lost=0&retrans=0&sent_bytes=3960&recv_bytes=1555&delivery_rate=554152&cwnd=255&unsent_bytes=0&cid=652f5fe8e0e4be8c&ts=305&x=0"
X-Firefox-Spdy: h2

cdn-static3.com/cdn/push.min.js

172.67.180.212

200 OK

36 kB

URL GET HTTP/2
cdn-static3.com/cdn/push.min.js
IP
172.67.180.212:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectcdn-static3.com
FingerprintDC:95:FC:66:7F:AA:6B:8E:DD:77:2B:0C:86:6B:EE:8E:1B:26:F1:B0
ValidityFri, 01 Nov 2024 17:46:55 GMT - Thu, 30 Jan 2025 17:46:54 GMT

File type
JavaScript source, ASCII text, with very long lines (36273)
Size
36 kB (36274 bytes)
Hash
44c9e373bc246e347c8420a2eb8f54d4
5eb6010833c0c873766407c7a51ea5eafe69dbdf
2dac93602a4e47e156b8b54455dfdcd7a7a4901ab33f2a0c2c416a395e1ebda5

HTTP Headers

GET /cdn/push.min.js HTTP/1.1
Host: cdn-static3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: application/x-javascript
content-security-policy: block-all-mixed-content
etag: W/"44c9e373bc246e347c8420a2eb8f54d4"
last-modified: Mon, 06 Jun 2022 20:30:35 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 180B6543F87BFA74
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 878
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0YgAYlincecByzzKYUXAK6bXmB16%2FswsTxhDQdKWU1jFBzUAJ6amk8vi1hkksslXu6amRx6Uv9KBu04ns857tWMtntLqSLQ45iODABltaqMUSp%2BI3Bty%2F%2BzDhRC9l6DG5fI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee75815da050b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=8165&min_rtt=7799&rtt_var=1930&sent=6&recv=10&lost=0&retrans=0&sent_bytes=3282&recv_bytes=1170&delivery_rate=546896&cwnd=254&unsent_bytes=0&cid=d68753222c34e583&ts=46&x=0"
X-Firefox-Spdy: h2

metatrckpixel.com/pixel.js

188.114.97.1

200 OK

256 B

URL GET HTTP/2
metatrckpixel.com/pixel.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectmetatrckpixel.com
Fingerprint06:D7:FB:56:C9:DE:93:8E:D6:26:92:76:DE:EA:16:C0:AC:8B:BB:05
ValidityWed, 04 Dec 2024 03:21:50 GMT - Tue, 04 Mar 2025 03:21:49 GMT

File type
ASCII text, with no line terminators
Size
256 B (256 bytes)
Hash
c16aec4b2fedec8cc18e7323815e5763
d83290bca2bbbc9551a2b892956fbfede665154a
d917faabfc20ac6e8479652e2d146ff3c6e05d080bf1fcc2261d70ef03118c59

HTTP Headers

GET /pixel.js HTTP/1.1
Host: metatrckpixel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: application/javascript;charset=UTF-8
set-cookie: trbarid=47251625606427462;expires=Mon, 07 Dec 2026 20:42:46 GMT;secure;HttpOnly;SameSite=None;path=/;Domain=metatrckpixel.com
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IDjzA%2F8tuEM2h%2FhsZrHr3erBDI82JEzVpbjXqNN64ZsvAmyJC9wuXfe799j1bxz7gTjwmsTbnaOkNw73na3IXpSc7eoRptvw5Jfo8McuQAfQb1UAs39bdIdJa9vhdbTjgW8G6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee75815abbd56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=8046&min_rtt=7950&rtt_var=1418&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3216&recv_bytes=1038&delivery_rate=537224&cwnd=253&unsent_bytes=0&cid=82bd81c38d54c89c&ts=57&x=0"
X-Firefox-Spdy: h2

dateexotics.com/static/BwAA/favicon-150x150.png

188.114.97.1

200 OK

8.2 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/favicon-150x150.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced
Size
8.2 kB (8160 bytes)
Hash
585c8f17126dd3ba0d52b5af80a5ad34
161a95931d5ae691138f5431352454828c132868
44d952f7b2062053c3f4174a2e80b584ef18a4cdf20d0c1d860f69b5c2265683

HTTP Headers

GET /static/BwAA/favicon-150x150.png HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:47 GMT
content-type: image/png
content-length: 8160
last-modified: Tue, 07 Jul 2020 11:47:24 GMT
etag: "5f0460cc-1fe0"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1946
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BHADAn86q9lWZRSZrqpGxudeGu54KtWBKc%2BnZY5wiapnJivs2u19f67MZB%2BG52nDCJVO9XZZX9SXZap1aU4aYxvybgslRWxWAiYX8yW1A%2B%2Fn%2FNijlWugYuoKFPTYxMrjLw0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee7581fec26b4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=31337&min_rtt=8337&rtt_var=28581&sent=9374&recv=84&lost=631&retrans=638&sent_bytes=11172004&recv_bytes=11569&delivery_rate=1358637&cwnd=263333&unsent_bytes=0&cid=81aa31413633a335&ts=1812&x=1", cfExtPri, cfHdrFlush;dur=0

dateexotics.com/static/BwAA/3-2.png

188.114.97.1

200 OK

535 B

URL GET HTTP/3
dateexotics.com/static/BwAA/3-2.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
535 B (535 bytes)
Hash
7621845db78d7540608060c63a721252
b24bca5f9e3ca0daf6f0f4822d66febc5c65d169
5368506adbbdfa70cffa4f9cf91127edd324af89c40e14cc273fe7e0d322adf1

HTTP Headers

GET /static/BwAA/3-2.png HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dateexotics.com/static/BwAA/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:46 GMT
content-type: image/png
content-length: 535
last-modified: Fri, 03 Jul 2020 10:22:52 GMT
etag: "5eff06fc-217"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 6263
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KzxdzDX%2Baxiq4HPfxcoT6OMroZ1RMPpKHXauJZkavLajZMq8bYLCr2Egpg307czT7Fx1I5yEPX4sWNcc5gDdHfU016FAVCwk8hrEIzL4vU18xP5vtRrMgbpESybB9D2d1Ig%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee75817ff1eb4ed-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=30405&min_rtt=8337&rtt_var=33644&sent=3961&recv=45&lost=143&retrans=147&sent_bytes=4706889&recv_bytes=9165&delivery_rate=1636845&cwnd=494069&unsent_bytes=0&cid=81aa31413633a335&ts=543&x=1", cfExtPri, cfHdrFlush;dur=0

dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500

188.114.97.1

200 OK

42 kB

URL User Request GET HTTP/2
dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
HTML document, ASCII text, with very long lines (558), with CRLF, LF line terminators
Size
42 kB (41800 bytes)
Hash
60de4a12aadff66674c5e28634b3c640
81668497b6a4b122016168e1922bbc543f371a4a
f27be7ebaf879e4d299f542c8bb738b3b1978a8f844d746012776892a7fa594a

HTTP Headers

GET /HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500 HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kw2n.deloresecret.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 20:42:45 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vtrG6dBsXZXf2oGq0Luu7XgbbtpHWCGqwI3Zw8FUUb33w2j1l5wgNBIX4jfaqNFWDcb%2FHGi5Ghh5xzo82eaYzy898LxzIoutROzOmS0rgStmNofFw0K65rrx%2BaRLMOwKg88%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee758118c29b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=13752&min_rtt=8169&rtt_var=12087&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3210&recv_bytes=1178&delivery_rate=523625&cwnd=254&unsent_bytes=0&cid=70db9326dc6446f8&ts=512&x=0"
X-Firefox-Spdy: h2

dateexotics.com/static/BwAA/style.css

188.114.97.1

200 OK

9.3 kB

URL GET HTTP/3
dateexotics.com/static/BwAA/style.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dateexotics.com/HQAA/10479/oth?i=YnyDmWdUs0U&u=8673504418111730500
Certificate
IssuerGoogle Trust Services
Subjectdateexotics.com
Fingerprint23:95:84:94:2C:9F:04:15:80:73:DC:FF:A6:87:42:02:78:65:FF:3C
ValidityThu, 24 Oct 2024 06:48:37 GMT - Wed, 22 Jan 2025 06:48:36 GMT

File type
ASCII text, with very long lines (9678), with no line terminators
Size
9.3 kB (9288 bytes)
Hash
eac844e544e9caa748c490925a6ec1af
f10182367c732f3ed0a7afcf223cd3fadfd6ab47
52e41e21c917b84d0c031433aebb8f9b7893705a8e2bf20b1ba2fc4b57ae06e8

HTTP Headers

GET /static/BwAA/style.css HTTP/1.1
Host: dateexotics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 07 Dec 2024 20:42:45 GMT
content-type: text/css
last-modified: Fri, 03 Jul 2020 11:07:08 GMT
etag: W/"5eff115c-2448"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 6655
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iMwCG38hOiUCoBZk3hZ9ZJzKluorYElmEyJzCXiyqtinZSXGOx%2F6vqfknyIhrCdURGOW0D8HwJxJEZg7kUetKtJrp2%2Bn%2Frmlbxi0N6xDv14hsOcZtz2No8zkFICpDUHH5xw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee758154b4fb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11848&min_rtt=9495&rtt_var=5241&sent=12&recv=7&lost=0&retrans=0&sent_bytes=4083&recv_bytes=1352&delivery_rate=62558&cwnd=12000&unsent_bytes=0&cid=81aa31413633a335&ts=115&x=1", cfExtPri, cfHdrFlush;dur=0

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (42)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP