| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashd3098a490e8d38d4150d961624aa7b64 6ecbca59302d0ac5436f1723137d42523f629ea1 158e277ba0220577b59b15e4017b6c27f59295bcd7e5d0e52d027dc7c4309f0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "158E277BA0220577B59B15E4017B6C27F59295BCD7E5D0E52D027DC7C4309F0B"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9347
Expires: Sat, 31 Dec 2022 01:23:31 GMT
Date: Fri, 30 Dec 2022 22:47:44 GMT
Connection: keep-alive
|
|
| track.gositego.live/sl?id=6372315a14cb732daa6b203e&pid=930&sub1=pub02b0353b73584be2b6ea6d9660ad0ead&sub2=ecf9f503_a251613s106 | 34.91.234.242 | 302 Found | 0 B |
URL HTTP/1.1track.gositego.live/sl?id=6372315a14cb732daa6b203e&pid=930&sub1=pub02b0353b73584be2b6ea6d9660ad0ead&sub2=ecf9f503_a251613s106 IP34.91.234.242:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sl?id=6372315a14cb732daa6b203e&pid=930&sub1=pub02b0353b73584be2b6ea6d9660ad0ead&sub2=ecf9f503_a251613s106 HTTP/1.1
Host: track.gositego.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 30 Dec 2022 22:47:44 GMT
Content-Length: 0
Connection: keep-alive
X-Adjust-Use-Original-Forwarded-For: 1
Location: https://t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63af6a90ee77b500019c9e54&s=930_ecf9f503_a251613s106
Set-Cookie: afclick=63af6a90ee77b500019c9e54; expires=Sat, 30 Dec 2023 22:47:44 GMT; secure; SameSite=None
Access-Control-Allow-Origin: *
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashab3625faa748b97df39d95f3265ccd14 3930df2e3cb45a1abe47de735002fba535de4f08 0b0a1eb64c4a23598884f08be0a9694c8fcaeffc4b0df790a678104f44fe1c14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0B0A1EB64C4A23598884F08BE0A9694C8FCAEFFC4B0DF790A678104F44FE1C14"
Last-Modified: Fri, 30 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6034
Expires: Sat, 31 Dec 2022 00:28:18 GMT
Date: Fri, 30 Dec 2022 22:47:44 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash428881081ad357fb55af33ebf9d12c16 29b7be72f76da07db4a03fb1bc57ffe16d520a22 9adff7f91b147b0d93166bc4ece0dd31fd19fd8b2c269a6a596a1e902f49a1fe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9ADFF7F91B147B0D93166BC4ECE0DD31FD19FD8B2C269A6A596A1E902F49A1FE"
Last-Modified: Wed, 28 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6104
Expires: Sat, 31 Dec 2022 00:29:28 GMT
Date: Fri, 30 Dec 2022 22:47:44 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 30 Dec 2022 22:47:04 GMT
content-type: application/json
age: 40
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashb1fcd419a4245617397846e8d17233f6 2a037ce244587640b27ead9a0ec2af4f862d91b2 e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: A7n+OwlYf+7s8ebe8mN/3y/LmqHtum1vBB9gApnL+haoGcAY+hAlJ096vg9kb056SeVI2c7Lqljm+s1YORtIeA==
x-amz-request-id: 15TPCWZ0EQMQ47DM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 30 Dec 2022 21:59:21 GMT
age: 2903
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:44 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 30 Dec 2022 22:33:31 GMT
age: 853
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash553f97ab8a2c2f1abe4ee932cf6dab42 9e9433075523efb0cf7d13b6811d237c4b48f099 8a7c26f298fb34ec9d5cbd977a2677118b9360ad3134bb56171c13d4d13da540
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5055
Cache-Control: max-age=128597
Content-Type: application/ocsp-response
Date: Fri, 30 Dec 2022 22:47:45 GMT
Etag: "63aeaa27-1d7"
Expires: Sun, 01 Jan 2023 10:31:02 GMT
Last-Modified: Fri, 30 Dec 2022 09:06:47 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 52.13.173.34 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.13.173.34:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oA5o3tvgJsqMdzozV3W/CA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: a4dzrevxwNlfDpi/vvlFxEpsDUs=
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash0f139dab2b9095e84334bcb1a5a1543e 16a7870181deb406b0522fd359dc1f1dcb13501f 2d67a6f2f30d596c35f495f283c61df5e7b2d2edb894d3d155cea78c01bad1f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2D67A6F2F30D596C35F495F283C61DF5E7B2D2EDB894D3D155CEA78C01BAD1F9"
Last-Modified: Fri, 30 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17980
Expires: Sat, 31 Dec 2022 03:47:25 GMT
Date: Fri, 30 Dec 2022 22:47:45 GMT
Connection: keep-alive
|
|
| t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63af6a90ee77b500019c9e54&s=930_ecf9f503_a251613s106 | 51.161.115.163 | 302 Found | 0 B |
URL HTTP/1.1t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63af6a90ee77b500019c9e54&s=930_ecf9f503_a251613s106 IP51.161.115.163:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63af6a90ee77b500019c9e54&s=930_ecf9f503_a251613s106 HTTP/1.1
Host: t3.blowingwnd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 30 Dec 2022 22:47:45 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 1217p3t0dz
Raund: xi
Location: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash97f56fef70f8761d83912c751378bf5c 54850a88cfa10dd89d2c0893cdcaeb15fc7883f6 3ef64d7e2f19f3fed03e9352f85123dbf8a169c10c83e878130b97bdb82984cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3EF64D7E2F19F3FED03E9352F85123DBF8A169C10C83E878130B97BDB82984CF"
Last-Modified: Thu, 29 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15807
Expires: Sat, 31 Dec 2022 03:11:12 GMT
Date: Fri, 30 Dec 2022 22:47:45 GMT
Connection: keep-alive
|
|
| ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106 | 51.83.143.92 | 200 OK | 508 B |
URL HTTP/1.1ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106 IP51.83.143.92:0
File typeHTML document text\012- HTML document, ASCII text, with very long lines (558) Hashf8b7820dfa5847a8169dd2c2cad26d0e 38491dc5669cedf19fd75056e147c4ecf69f0bac 3f27fa7ce97fca9b8d6cdce3e122601cc284faab14e37b7d118bb5cacbf29497
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 30 Dec 2022 22:47:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=63af6a913acb7a73e9543c2a; expires=Mon, 02-Jan-2023 22:47:45 GMT; Max-Age=259200; path=/; domain=ron.trffclb.com; HttpOnly
Content-Encoding: gzip
|
|
| ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106&bv=1 | 51.83.143.92 | 302 Found | 0 B |
URL HTTP/1.1ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106&bv=1 IP51.83.143.92:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106&bv=1 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106
Cookie: bt-603611c5b7eaf46891533240=63af6a913acb7a73e9543c2a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 30 Dec 2022 22:47:45 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=ron.trffclb.com; HttpOnly
Round: 119cdtswvl
Raund: 12uf2w0vxv-2v5
Location: https://popcash.net/world/go/134600/317194
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash5ab769c5d6ab8de85d084d89c3eecd6b 00c4d25a8661c8915d408e4eff66b8878a48773a 67f6a9e751465aa6746f52a7410063103895840b7812eac03e979f554a8f5ffc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4028
Cache-Control: max-age=105242
Content-Type: application/ocsp-response
Date: Fri, 30 Dec 2022 22:47:46 GMT
Etag: "63ae52f0-117"
Expires: Sun, 01 Jan 2023 04:01:48 GMT
Last-Modified: Fri, 30 Dec 2022 02:54:40 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
|
|
| ron.trffclb.com/favicon.ico | 51.83.143.92 | 200 OK | 20 B |
URL HTTP/1.1ron.trffclb.com/favicon.ico IP51.83.143.92:0
Hasha4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /favicon.ico HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 30 Dec 2022 22:47:46 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
|
|
| popcash.net/world/go/134600/317194 | 104.21.52.38 | 301 Moved Permanently | 162 B |
URL HTTP/2popcash.net/world/go/134600/317194 IP104.21.52.38:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /world/go/134600/317194 HTTP/1.1
Host: popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ron.trffclb.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 30 Dec 2022 22:47:46 GMT
content-type: text/html
content-length: 162
location: http://ps.popcash.net/go/134600/317194
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t5EnOnEOHrzPdBrZdwBYhmnFXqF6hdguWTFfnK%2BmrIYflsTJWDj7hsPrvC9Y9%2Bo3l6myBX2I4c6S%2Fw6uM%2BFGj23mio9G4VdlehXXAFr4AJbNyFeom3yGF9u%2B3epq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 781e51b09a80b4f3-OSL
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash2156f5045eb474b5c02d0c6f64f02c4e 5cc884658ca6b9b357478137cb431f694e773bd8 3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9292
Expires: Sat, 31 Dec 2022 01:22:38 GMT
Date: Fri, 30 Dec 2022 22:47:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash2156f5045eb474b5c02d0c6f64f02c4e 5cc884658ca6b9b357478137cb431f694e773bd8 3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9292
Expires: Sat, 31 Dec 2022 01:22:38 GMT
Date: Fri, 30 Dec 2022 22:47:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash2156f5045eb474b5c02d0c6f64f02c4e 5cc884658ca6b9b357478137cb431f694e773bd8 3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9292
Expires: Sat, 31 Dec 2022 01:22:38 GMT
Date: Fri, 30 Dec 2022 22:47:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash2156f5045eb474b5c02d0c6f64f02c4e 5cc884658ca6b9b357478137cb431f694e773bd8 3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9292
Expires: Sat, 31 Dec 2022 01:22:38 GMT
Date: Fri, 30 Dec 2022 22:47:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash2156f5045eb474b5c02d0c6f64f02c4e 5cc884658ca6b9b357478137cb431f694e773bd8 3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9292
Expires: Sat, 31 Dec 2022 01:22:38 GMT
Date: Fri, 30 Dec 2022 22:47:46 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39ae26c1-8b46-483b-a677-bcdb29df22f0.jpeg | 34.120.237.76 | 200 OK | 6.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39ae26c1-8b46-483b-a677-bcdb29df22f0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9d24641b2340aa1dcd1e90821ca7aae4 7ef95226664efc320e453f027c51229c958ad46d 3f6a6e8abbfb7057b09cd3aebbebfa3fde792aaf31fc09681de2ff448ab8209b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39ae26c1-8b46-483b-a677-bcdb29df22f0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6090
x-amzn-requestid: 3d385ba2-3e1c-4d01-801f-379311dd71f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dxTYLFz1oAMFSDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a9ff67-5efe60b33d2c07ba5ce61b13;Sampled=0
x-amzn-remapped-date: Mon, 26 Dec 2022 20:09:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HZYcmd2Qspa3SyAIl029KK6HiXV1ZVDWPiY9q7sgCGEtnYG9oJALVQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 21:54:27 GMT
age: 3199
etag: "7ef95226664efc320e453f027c51229c958ad46d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd15a04f2-dfb7-43aa-a68f-a66b09103321.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd15a04f2-dfb7-43aa-a68f-a66b09103321.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7964d022ff14521de4d976a064f85ec2 779f19f138ec6bffc9bc7acccaaf0fb21a472c72 5afd4f020a59512b06fe5ff4e274d5b3a49682a36a0cbe7d2f008e03c524d04f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd15a04f2-dfb7-43aa-a68f-a66b09103321.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10852
x-amzn-requestid: 9857cefa-942d-4dab-b50c-48e5c45ef887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dy0lKEHAIAMFdaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63aa9aed-7bb36efe1522c84302b926f9;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 07:12:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VvTDPEelKpzQxIXf5Sj6Encj5FttGhm7_S3oDW5FfVgaU4bVmwjFrw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 14:26:59 GMT
age: 30047
etag: "779f19f138ec6bffc9bc7acccaaf0fb21a472c72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6c2763-3047-4d8a-adab-82148ff57727.jpeg | 34.120.237.76 | 200 OK | 7.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6c2763-3047-4d8a-adab-82148ff57727.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdc62c3ca8bc387a91c7d4711b5bc2409 7a984b459227e11984faa2539569a90875a58d29 e14a0e22b58fc1f3f392b842573e3abff7b24eb66db6b351046a186acc3b2954
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6c2763-3047-4d8a-adab-82148ff57727.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7660
x-amzn-requestid: 9338abf2-1191-47da-95ff-0a201604fbc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d-sKCEDhoAMFZ4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63af5a40-433f4ba9780dbc7a485ccbe9;Sampled=0
x-amzn-remapped-date: Fri, 30 Dec 2022 21:38:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yR6kZT7use-SXKKXM3rRmo56EFDJN9VUcRSlzb0cG7nn_pblH0uL6g==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 21:47:12 GMT
etag: "7a984b459227e11984faa2539569a90875a58d29"
content-type: image/jpeg
age: 3634
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6e3dd3e-163b-404d-a10f-230f060e85c7.jpeg | 34.120.237.76 | 200 OK | 8.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6e3dd3e-163b-404d-a10f-230f060e85c7.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashba629c9334582ac5e37a14fceb073b43 54adf501819f973ada947a82bf1d28c7de76ef72 9fd8cbe35dc6051926698405e2d9eac24a903148ac425d6cf314eb77b14fbc76
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6e3dd3e-163b-404d-a10f-230f060e85c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8187
x-amzn-requestid: aaf90c51-50ac-47ca-ae8f-f4afd190b0d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d5fsAEGUoAMF2Bw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ad464c-3f2838fd1d7b16e10f1beb98;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 07:48:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VEipOlCxzx5CSXab3Xcl6vk1pk8qF23HmAbDV34A7uWMIcmFYW0W1g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 21:47:21 GMT
age: 3625
etag: "54adf501819f973ada947a82bf1d28c7de76ef72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5624258d-94f6-4e81-8a25-b463441eda5b.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5624258d-94f6-4e81-8a25-b463441eda5b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb0315eb77a560b4d754ab8ee615df800 802bf93d607d1bcc39ba76e8abdb8e1b67910b8b 641cdc2e26d529035fd28dd3c5ac19a56a0a0d0a9d38cc2b368841ab04a4bd68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5624258d-94f6-4e81-8a25-b463441eda5b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7588
x-amzn-requestid: ab898206-6aa2-497b-bc76-3d42c81f12d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d2Gp1GuxIAMFWkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63abeb0b-3cd68a563297fdd464d979b4;Sampled=0
x-amzn-remapped-date: Wed, 28 Dec 2022 07:06:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dKNyfNUT2B4S82zoZUKL--2RKy_5DHUMwDHgXOEisa7J5R15CNcduQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 12:27:33 GMT
age: 37213
etag: "802bf93d607d1bcc39ba76e8abdb8e1b67910b8b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff12dbe60-fb32-429a-a7e0-6948ca6afe86.jpeg | 34.120.237.76 | 200 OK | 9.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff12dbe60-fb32-429a-a7e0-6948ca6afe86.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash69a5d8a625e43be4ddf016561d484cfd e0b81a0b39e80d922d121ed6d6968da849fc21a6 46932455a3da8043f6185a1595c2ea15902aa593d391b1b14cc46d30f69dbc01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff12dbe60-fb32-429a-a7e0-6948ca6afe86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9231
x-amzn-requestid: 2dcf90fd-c5a0-4bb5-9d27-340b56f20d45
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dvh8SGKdIAMFvfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a949e8-4cbb236f6bb647844d1537f7;Sampled=0
x-amzn-remapped-date: Mon, 26 Dec 2022 07:14:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: voMNdPtZhlhaXEYuNHALSIX7zslf6pquVdJA8-il3-_brev_MPq5uQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 20:38:22 GMT
age: 7764
etag: "e0b81a0b39e80d922d121ed6d6968da849fc21a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ps.popcash.net/go/134600/317194 | 54.205.43.136 | 200 OK | 272 B |
URL HTTP/1.1ps.popcash.net/go/134600/317194 IP54.205.43.136:0
File typeHTML document, ASCII text Hash6bb2d209a449a684d5deab8170b8bc0c 2aa57b18f5b711614f85686d11983e92b6959b53 3e4b322c979ed61deb93fc052459f571d8374fe8db38804214ff1b48cd618fa0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /go/134600/317194 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html
Date: Fri, 30 Dec 2022 22:47:46 GMT
Server: nginx
Vary: Accept-Encoding
Content-Length: 272
Connection: keep-alive
|
|
| ps.popcash.net/ad/ad?p=134600&w=317194&t=f8958c07501dc893&r=&vw=1280&vh=0 | 54.205.43.136 | 303 See Other | 0 B |
URL HTTP/1.1ps.popcash.net/ad/ad?p=134600&w=317194&t=f8958c07501dc893&r=&vw=1280&vh=0 IP54.205.43.136:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ad/ad?p=134600&w=317194&t=f8958c07501dc893&r=&vw=1280&vh=0 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ps.popcash.net/go/134600/317194
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Date: Fri, 30 Dec 2022 22:47:46 GMT
Location: http://ciar-kep.com/zcvisitor/fad18ac3-8893-11ed-9abf-129cc52713bd/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed#pc151445
Server: nginx
Content-Length: 0
Connection: keep-alive
|
|
| ciar-kep.com/zcvisitor/fad18ac3-8893-11ed-9abf-129cc52713bd/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed | 3.208.247.235 | 302 | 0 B |
URL HTTP/1.1ciar-kep.com/zcvisitor/fad18ac3-8893-11ed-9abf-129cc52713bd/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed IP3.208.247.235:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zcvisitor/fad18ac3-8893-11ed-9abf-129cc52713bd/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed HTTP/1.1
Host: ciar-kep.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Date: Fri, 30 Dec 2022 22:47:47 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Location: https://www.affectionwave.com/
Server: hbzJsbSY
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash0c01d65bbaefb679b0480b365c27ea53 2b5d0bf0d9c98ce9565138f1fd76cf966d772533 f1bf4528ffb1e2dcbdf715681a6115087858bfebfd95345bf02f25bf72a39d7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F1BF4528FFB1E2DCBDF715681A6115087858BFEBFD95345BF02F25BF72A39D7E"
Last-Modified: Wed, 28 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12722
Expires: Sat, 31 Dec 2022 02:19:49 GMT
Date: Fri, 30 Dec 2022 22:47:47 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash2b5593d2ab79d3712ed8b96dd22b5465 653a41ce6edf4a7bba2ddf88cd525291fcb2ca0b 34fc88630bd744b6e764b96eecfbddb1bb9166eec8de596081e3e97839631dea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Dec 2022 22:47:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=UA-154588724-16 | 142.250.74.168 | 200 OK | 44 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-154588724-16 IP142.250.74.168:0
File typeASCII text, with very long lines (1921) Hashc4f662d5018f1c7600c1315746818c48 e3bbb9d0b8da97e166b99170092dd1cc994c3b57 cc8a6d119be52b67463fdc1a2525a097268fc6a935c23e5e6ebf3e30587dd17e
GET /gtag/js?id=UA-154588724-16 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 30 Dec 2022 22:47:48 GMT
expires: Fri, 30 Dec 2022 22:47:48 GMT
cache-control: private, max-age=900
last-modified: Fri, 30 Dec 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43565
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash2b5593d2ab79d3712ed8b96dd22b5465 653a41ce6edf4a7bba2ddf88cd525291fcb2ca0b 34fc88630bd744b6e764b96eecfbddb1bb9166eec8de596081e3e97839631dea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Dec 2022 22:47:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2 | 178.62.22.16 | 200 OK | 20 kB |
URL HTTP/2www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2 IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
File typeWeb Open Font Format (Version 2), TrueType, length 20524, version 1.0\012- data Hash0a082fc9f0c23f322b0e39f9084ba52b dec485cd41c9508dbea59bbeb5ddd5515361e190 44e9527b0677c5db49883b18b6812b45e079279f2624786fc05067188bf7a307
GET /static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.affectionwave.com/static/assets/4049ba9b.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/octet-stream
content-length: 20524
last-modified: Mon, 18 Dec 2017 07:34:44 GMT
etag: "5a376f94-502c"
access-control-allow-origin: *
accept-ranges: bytes
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-regular-webfont.woff2 | 178.62.22.16 | 200 OK | 21 kB |
URL HTTP/2www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-regular-webfont.woff2 IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
File typeWeb Open Font Format (Version 2), TrueType, length 21172, version 1.0\012- data Hash29130fff013f66fc83a6e990677dbe91 9890dbd4e221dc771c74bf4ba857a3d23df1cc11 748c9082cb339ec05b60a43e84d5726d6cda18b0588ccf8399b9ec859d81fff2
GET /static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-regular-webfont.woff2 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.affectionwave.com/static/assets/4049ba9b.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/octet-stream
content-length: 21172
last-modified: Mon, 18 Dec 2017 07:34:44 GMT
etag: "5a376f94-52b4"
access-control-allow-origin: *
accept-ranges: bytes
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/icons/icomoon.ttf | 178.62.22.16 | 200 OK | 26 kB |
URL HTTP/2www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/icons/icomoon.ttf IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data Hash2b965fc96fe08e5c85e2384902216328 e01abf30a2ec4f952c98fc8578f1a35cb47e6f9e 930c21cfd99f37e3312fde34192803566e6172b49209712c4ada47c688905a3d
GET /static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/icons/icomoon.ttf HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/assets/203b1fe7.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/octet-stream
content-length: 26036
last-modified: Mon, 12 Sep 2022 06:39:53 GMT
etag: "631ed439-65b4"
access-control-allow-origin: *
accept-ranges: bytes
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.14 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.14:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 30 Dec 2022 21:34:02 GMT
expires: Fri, 30 Dec 2022 23:34:02 GMT
cache-control: public, max-age=7200
age: 4427
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_dating/_default/i/payment_logos/cup.svg | 178.62.22.16 | 200 OK | 48 kB |
URL HTTP/2www.affectionwave.com/static/_dating/_default/i/payment_logos/cup.svg IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11124) Hashd848719590f1b7d3e5849e149630b07c 5743bce92e283c41fc51cb84a221837b92640fb4 8008f8e1d445c198f9d9580baea9484c1fe4bd5ccd68cb35d9dc5a461dffecc6
GET /static/_dating/_default/i/payment_logos/cup.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-3031"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68 | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68 IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_dating/_default/i/payment_logos/mastercard.svg | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/_dating/_default/i/payment_logos/mastercard.svg IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/_dating/_default/i/payment_logos/mastercard.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-720"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/10.bundle.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/10.bundle.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/_wl_traditional/_wl_skin_compliance_/js/10.bundle.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/javascript
last-modified: Fri, 09 Dec 2022 16:54:44 GMT
etag: W/"63936854-1768"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/f56f0d59.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/f56f0d59.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/f56f0d59.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-f80"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/63f0b6bf.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/63f0b6bf.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/63f0b6bf.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-ae0"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/f608025f.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/f608025f.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/f608025f.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-8539"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/e529ff93.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/e529ff93.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/e529ff93.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Fri, 09 Dec 2022 16:54:47 GMT
etag: W/"63936857-20f30"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/be5b1fa8.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/be5b1fa8.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/be5b1fa8.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-10df"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/resources/get/4/c1321eb5f027095b5c50f520a56fed23 | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/resources/get/4/c1321eb5f027095b5c50f520a56fed23 IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /resources/get/4/c1321eb5f027095b5c50f520a56fed23 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/1.bundle.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/1.bundle.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/_wl_traditional/_wl_skin_compliance_/js/1.bundle.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/javascript
last-modified: Fri, 09 Dec 2022 16:54:44 GMT
etag: W/"63936854-485da"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/c247a8e1.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/c247a8e1.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/c247a8e1.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-947"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/dd6a3ac9.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/dd6a3ac9.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/dd6a3ac9.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 08:42:53 GMT
etag: W/"633e950d-bfe0"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_dating/_default/i/payment_logos/visa.svg | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/_dating/_default/i/payment_logos/visa.svg IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/_dating/_default/i/payment_logos/visa.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Mon, 14 Feb 2022 13:31:55 GMT
etag: W/"620a59cb-435"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/1f197a76.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/1f197a76.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/1f197a76.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Tue, 06 Dec 2022 08:52:51 GMT
etag: W/"638f02e3-5d1"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/203b1fe7.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/203b1fe7.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/203b1fe7.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Tue, 06 Dec 2022 08:52:50 GMT
etag: W/"638f02e2-141b"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/e13eeaf7.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/e13eeaf7.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/e13eeaf7.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Thu, 17 Nov 2022 09:23:46 GMT
etag: W/"6375fda2-1fc6"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/js/jquery.autocomplete.js?v=5623 | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/js/jquery.autocomplete.js?v=5623 IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/js/jquery.autocomplete.js?v=5623 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 08:55:25 GMT
etag: W/"6322e87d-43b2"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/js/messages/no/messages_jquery_jab.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/js/messages/no/messages_jquery_jab.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /js/messages/no/messages_jquery_jab.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/javascript;charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=2592000, private
last-modified: Thu, 01 Jan 1970 01:33:43 GMT
expires: Sun, 29 Jan 2023 22:47:48 GMT
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_dating/_default/i/payment_logos/diners.svg | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/_dating/_default/i/payment_logos/diners.svg IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/_dating/_default/i/payment_logos/diners.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-21e3"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/3.bundle.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/3.bundle.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/_wl_traditional/_wl_skin_compliance_/js/3.bundle.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/javascript
last-modified: Fri, 09 Dec 2022 16:54:44 GMT
etag: W/"63936854-be5f"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/site/captcha | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/site/captcha IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /site/captcha HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: text/html; charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/fbf73bde.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/fbf73bde.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/fbf73bde.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-1ba5"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/0cc1b2a8.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/0cc1b2a8.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/0cc1b2a8.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Fri, 30 Dec 2022 09:13:27 GMT
etag: W/"63aeabb7-24bd9"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/5497bff0.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/5497bff0.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/5497bff0.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-cb1"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/37e7367d.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/37e7367d.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/37e7367d.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-37b"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/770ad0e4.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/770ad0e4.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/770ad0e4.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-8b6"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/js/messages/no/messages_notifications.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/js/messages/no/messages_notifications.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /js/messages/no/messages_notifications.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/javascript;charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=2592000, private
last-modified: Thu, 01 Jan 1970 01:33:43 GMT
expires: Sun, 29 Jan 2023 22:47:48 GMT
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/resources/get/4/1a1def99fcc6d5942a5dd7639de1533d | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/resources/get/4/1a1def99fcc6d5942a5dd7639de1533d IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /resources/get/4/1a1def99fcc6d5942a5dd7639de1533d HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/resources/logo | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/resources/logo IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /resources/logo HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: image/png
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/4049ba9b.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/4049ba9b.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/4049ba9b.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Tue, 06 Dec 2022 08:52:50 GMT
etag: W/"638f02e2-cb28"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_dating/_default/s/payment-logos.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/_dating/_default/s/payment-logos.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/_dating/_default/s/payment-logos.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 10:16:05 GMT
etag: W/"62cfece5-c79"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/949c3926.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/949c3926.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/949c3926.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-248"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/9ca75e15.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/9ca75e15.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/9ca75e15.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-549"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_dating/_default/i/payment_logos/american_express.svg | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/_dating/_default/i/payment_logos/american_express.svg IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/_dating/_default/i/payment_logos/american_express.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-1135"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/_dating/_default/i/payment_logos/discover.svg | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/_dating/_default/i/payment_logos/discover.svg IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/_dating/_default/i/payment_logos/discover.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-1394"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/211b41b8.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/211b41b8.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/211b41b8.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-892"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/24e5e0b3.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/24e5e0b3.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/24e5e0b3.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-a76d"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/resources/get/4/cc9166cd2f801d8aeac627092b2c813f | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/resources/get/4/cc9166cd2f801d8aeac627092b2c813f IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /resources/get/4/cc9166cd2f801d8aeac627092b2c813f HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/f67027d8.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/f67027d8.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/f67027d8.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-c7"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/root.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/root.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /root.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css;charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/1d9702dc.css | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/1d9702dc.css IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/1d9702dc.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-581"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/5b0b6082.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/5b0b6082.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/5b0b6082.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-666"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/95d6c938.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/95d6c938.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/95d6c938.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-312"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/fa6902f0.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/fa6902f0.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/fa6902f0.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-402"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/ | 178.62.22.16 | 302 Found | 0 B |
IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET / HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 30 Dec 2022 22:47:47 GMT
content-type: text/html; charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
set-cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; path=/; secure; HttpOnly
userReferrerUrl=ps.popcash.net; expires=Sun, 01-Jan-2023 22:47:47 GMT; Max-Age=172800; path=/; secure; HttpOnly
cache-control: max-age=0, private, must-revalidate, no-cache, private
location: /join
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/f92676e5.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/f92676e5.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/f92676e5.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Fri, 30 Dec 2022 09:13:27 GMT
etag: W/"63aeabb7-baf"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/static/assets/2409f906.js | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/static/assets/2409f906.js IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /static/assets/2409f906.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-2325"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.affectionwave.com/resources/get/4/39100eb00726207674808593babbf9e2 | 178.62.22.16 | 200 OK | 0 B |
URL HTTP/2www.affectionwave.com/resources/get/4/39100eb00726207674808593babbf9e2 IP178.62.22.16:0 ASN#14061 DIGITALOCEAN-ASN
GET /resources/get/4/39100eb00726207674808593babbf9e2 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|