Report - c.2fasttrackers.com/?E=m7vaaUeJ/ys=&a=100661&c=119793&ckmguid=592b8735-b48c-4fe7-a0fe-075f0a2c3397&ckmreqid=lcr&s1=+91&s2=col2eimau8qc73ajnpi0&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebdue0h0&ckm-x=colbrfadkjese4qmuvdg

Report Overview

Submitted URL
c.2fasttrackers.com/?E=m7vaaUeJ/ys=&a=100661&c=119793&ckmguid=592b8735-b48c-4fe7-a0fe-075f0a2c3397&ckmreqid=lcr&s1=+91&s2=col2eimau8qc73ajnpi0&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebdue0h0&ckm-x=colbrfadkjese4qmuvdg
IP
34.249.100.223
ASN
#16509 AMAZON-02
Submitted
2024-04-25 21:41:28
Access
public
Website Title
Bareflirt.com
Final URL
www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.bareflirt.com	unknown	2020-02-11	2020-02-20	2024-04-13	10 kB	847 kB	35.227.204.77
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	2.9 kB	274 kB	142.250.74.164
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-25	2.4 kB	680 kB	142.250.74.35
api.samlesamtykke.com	unknown	2018-05-22	2018-05-31	2024-04-25	4.3 kB	8.4 kB	35.195.163.35
c.2fasttrackers.com	unknown	2020-08-25	2022-06-20	2024-03-04	732 B	2.0 kB	63.32.186.150
doninio.com	unknown	2022-07-19	2022-07-20	2024-03-19	644 B	622 B	128.199.56.44
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-25	877 B	168 kB	142.250.74.72
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-25	1.0 kB	33 kB	216.58.207.227
youcantrackthis.com	unknown	2020-12-02	2020-12-03	2024-04-18	694 B	977 B	52.2.48.141
samlesamtykke.com	unknown	2018-05-22	2018-05-31	2024-04-06	955 B	19 kB	35.195.163.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	2fasttrackers.com	Sinkholed
2024-04-25	medium	doninio.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js	518 kB	2024-04-24	2024-05-05
Pretty URL www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 09:18:30 Last Seen2024-05-05 21:46:53 Times Seen7303 Hash e2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b Loading...

	www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c	275 kB	2024-04-25	2024-04-25
Pretty URL www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 23:41:30 Last Seen2024-04-25 23:41:31 Times Seen2 Hash 37acf20e89a1c959cab500204fcecf0a fa1bd93983daccea324a280ac82894a39d148895 a81c3f40c3d6de46543047d3508fa39db5af18242571e18fee1f4606bcf6a109 Loading...

	www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn	2.4 kB	2023-11-20	2024-05-05
Pretty URL www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-20 11:53:32 Last Seen2024-05-05 00:11:53 Times Seen315 Hash 0f9eb049ae54f0f8e7a79457c1c68e55 a958b91729a9d44a23f3535d0687cae777ee8255 0d179d997f91d5c01f757891badcdc4cceeb7e5aad919e47b31df5ea21ba88cf Loading...

	www.bareflirt.com/landers/js/landing002.js	66 kB	2024-04-25	2024-04-27
Pretty URL www.bareflirt.com/landers/js/landing002.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 18:52:59 Last Seen2024-04-27 20:20:08 Times Seen6 Hash 263e7e97bee74ee60a8a6c6ea1e618ab b211d8dd60fc831849d30d7266886b577344a6d8 6bf0e18d9dfac12d358206a5a85c1cd549bbe81631799cab43cb211f5278dbf8 Loading...

	samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=bareflirt.com&languageCode=nb&languageTerritory=NO&sessionId=38dfc6c844694166bea790d2847f661d	121 kB	2024-04-25	2024-04-25
Pretty URL samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=bareflirt.com&languageCode=nb&languageTerritory=NO&sessionId=38dfc6c844694166bea790d2847f661d IP 35.195.163.35 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 23:41:30 Last Seen2024-04-25 23:41:31 Times Seen2 Hash 533ca3a13708d1c273c2e2127bb006f3 393dd3ed3bc49b8b1087abea956a06524ddd36ae 5afac0274da05956ab9716b8c0289614d168fed7000fea723a27092122e91f94 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB	205 kB	2024-04-25	2024-04-25
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 23:41:30 Last Seen2024-04-25 23:41:31 Times Seen2 Hash 70508fb8fe0362ecbfe71e399b22d229 85a25c5e3c41ed0f94e817dc1cc762ef2943eae3 c00c28cc19b623de76ab974b4fff01371baf3f047f3394c687ffb4cb9b3cbc6d Loading...

	www.google.com/js/bg/tKcPQSh2okjZHiZ2jIssRExVWo45mlVHOakavsOpwK4.js	18 kB	2024-04-24	2024-04-26
Pretty URL www.google.com/js/bg/tKcPQSh2okjZHiZ2jIssRExVWo45mlVHOakavsOpwK4.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 19:40:38 Last Seen2024-04-26 20:57:26 Times Seen41 Hash 042afc8f6dd96d8a86aca2f6239682fa c2321f6ccc366638b53be030076f7ae3807f9d53 b4a70f412876a248d91e26768c8b2c444c555a8e399a554739a91abec3a9c0ae Loading...

	www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn	147 B	2023-03-07	2024-05-05
Pretty URL www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09:25 Last Seen2024-05-05 00:11:53 Times Seen920 Hash b85aa80cb826211a36318337793411db e34920a6965fb7b9102be2dcde8ae363e4355686 e4de3377c03566f32b347f14973f5e998466e585c9bbd27f7dc9099ecf77e7a2 Loading...

	www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn	5.9 kB	2023-09-26	2024-04-27
Pretty URL www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-26 13:14:59 Last Seen2024-04-27 20:20:09 Times Seen24 Hash 5b70d661eee2f393922c54911e6897bf fec8c671766d79e0564f84b5c1388fab052b00e2 41adb9fe2b409a7d6bd6712cfa5a73afa45c459d205560918055d50b6d2fb413 Loading...

	www.google.com/recaptcha/enterprise.js	940 B	2024-04-24	2024-05-05
Pretty URL www.google.com/recaptcha/enterprise.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 09:42:33 Last Seen2024-05-05 00:11:54 Times Seen58 Hash 796b5497d3c16bce195908f13b10fc72 381a26a96cea8cd5a03d2f70599a20b38ddf9d07 2f7e1ee849a9d78c4a8716630dc03be8afd7239c3575a836618487b10aa4dcd6 Loading...

	www.bareflirt.com/landers/media-registry.js	122 kB	2024-04-10	2024-05-01
Pretty URL www.bareflirt.com/landers/media-registry.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-10 20:01:22 Last Seen2024-05-01 00:44:50 Times Seen76 Hash 996d00ce3568daa889df786e8892e2f3 cee9721d9288c308d1fa237b9c3abe6f35312b69 0860495b30b1debdec029cf077e290876264883af129c82a872aad5abb94cef5 Loading...

	www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn	308 B	2023-03-07	2024-05-05
Pretty URL www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09:25 Last Seen2024-05-05 00:11:53 Times Seen858 Hash 8a81377a647bdea836809865c62d171b dd72dda89aacfe74746d2c73421ea55a23ab313d 9c7aa944eeb31b5765d0c1674cdc445dff6dd572a6fe897f6d5137ce181d44a9 Loading...

	www.bareflirt.com/landers/js/vendor.js	124 kB	2024-04-05	2024-05-05
Pretty URL www.bareflirt.com/landers/js/vendor.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-05 16:10:39 Last Seen2024-05-05 00:11:53 Times Seen56 Hash 39959a4eaa2299a3b0cf62f8b4560495 96d9ff427c2ae73112af44a976f27c5dc79f898c fb2aeda2c848164f2f2452c3d91d2b6b6e179924e3fa152cd7375bb50e94dd59 Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433	75 B	2023-03-07	2024-05-05
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:15:59 Last Seen2024-05-05 00:11:53 Times Seen10530 Hash dca9d53787fff314e5bd1a123b28906a 1350c858f60bbb03d1b53b05cbad6cea82ff29d1 2475d902b4182bac667d464a44c89ee405e5cfd64156b30f811557cf2b347e2f Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433	36 kB	2024-04-25	2024-04-25
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 23:41:30 Last Seen2024-04-25 23:41:30 Times Seen1 Hash 9e5bd494af2776480f510d970d218bf7 7e35b400b42af22f0bf539ed43a5061048b9a512 08a2499820e8a93eb8e66f420c6700fe51471e8e9b0d24c2a75eff5bd3032075 Loading...

	www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn	103 B	2023-03-07	2024-05-05
Pretty URL www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09:25 Last Seen2024-05-05 00:11:53 Times Seen439 Hash 7c30234b7bf626af1abf57d402628101 631dbf3c494a82cb7ce1c84de335ec50feff2f38 dc87051dc947ab8cdb9093cc5b02fa705d0ec2453052986be2beaa380a644f2c Loading...

	www.bareflirt.com/landers/js/ad-provider.js	1.0 kB	2023-08-07	2024-05-05
Pretty URL www.bareflirt.com/landers/js/ad-provider.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-07 11:55:39 Last Seen2024-05-05 00:11:53 Times Seen1131 Hash acd920e8f5657057e8003b79905c5266 cd96548060dbbc3f715cb81c3810d893eedec260 38b34bce7e5ad8268f51a16a6633c17923130b2fac9eeb6ceaca6beb50990681 Loading...

	www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s	1.0 kB	2024-04-24	2024-05-05
Pretty URL www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 20:34:25 Last Seen2024-05-05 00:11:54 Times Seen54 Hash bd927622e1c40d420b32be0dc022e336 35f4a129b447f6d914420e59b3bbf5a7512f549f afb5abaa561bb823a0c386906899eddac8ce791e2bcb9056f57b0364d341a829 Loading...

		Size	First Seen	Last Seen
	#1 Eval - e9cbf1bd955ae45c49b12ff0f10e8b5f	22 B	2024-04-24	2024-04-26
Pretty Observations First Seen2024-04-24 19:40:38 Last Seen2024-04-26 20:57:26 Times Seen20 Hash e9cbf1bd955ae45c49b12ff0f10e8b5f d84cffeeaaae2df7c82398665519ae47341c3ede 9a9cf9b3b63538a25fc946dd2c6263d26bcef0706131248a84bfa730c22ab455 Loading...

	#2 Eval - c6aa52404a51b2e51855d8d812e52238	64 B	2024-04-24	2024-04-26
Pretty Observations First Seen2024-04-24 19:40:38 Last Seen2024-04-26 20:57:26 Times Seen20 Hash c6aa52404a51b2e51855d8d812e52238 ee7ddc1af54c0421f7f2a26cec89ccd499861a25 825319eeb05ed675083102c989076f4a6136a3071919b69534e4851265729308 Loading...

	#3 Eval - 700fde7a8a08fc933cb342464fc6008b	23 kB	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 23:41:30 Last Seen2024-04-25 23:41:30 Times Seen1 Hash 700fde7a8a08fc933cb342464fc6008b e4a37f20aa5b4912b672c88482b5ce04603217d6 81574d635b30dcddbdb4145471bcffb776ec9c4aa7dcbd04a914df8ce041240e Loading...

	#4 Eval - e895c824a46c6cedd68c675b509ed95e	22 B	2024-04-24	2024-04-26
Pretty Observations First Seen2024-04-24 19:40:38 Last Seen2024-04-26 20:57:26 Times Seen20 Hash e895c824a46c6cedd68c675b509ed95e bc17e6c6e27c8d6a1af38b76298950679d86b674 c823b057f65a9bc5d37cfad2cdea30a7ac8d536077e7a9f40c00cfc0e560b680 Loading...

HTTP Transactions (47)

URL IP Response Size

c.2fasttrackers.com/?E=m7vaaUeJ/ys=&a=100661&c=119793&ckmguid=592b8735-b48c-4fe7-a0fe-075f0a2c3397&ckmreqid=lcr&s1=+91&s2=col2eimau8qc73ajnpi0&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebdue0h0&ckm-x=colbrfadkjese4qmuvdg

63.32.186.150

302 Found

241 B

URL User Request GET HTTP/1.1
c.2fasttrackers.com/?E=m7vaaUeJ/ys=&a=100661&c=119793&ckmguid=592b8735-b48c-4fe7-a0fe-075f0a2c3397&ckmreqid=lcr&s1=+91&s2=col2eimau8qc73ajnpi0&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebdue0h0&ckm-x=colbrfadkjese4qmuvdg
IP
63.32.186.150:443
ASN
#16509 AMAZON-02

Certificate
IssuerGlobalSign nv-sa
Subject*.2fasttrackers.com
Fingerprint66:91:E4:1E:6E:AE:D9:63:D8:49:67:65:2E:C1:EB:52:53:51:0A:13
ValidityWed, 23 Aug 2023 01:36:11 GMT - Mon, 23 Sep 2024 01:36:10 GMT

File type
HTML document, ASCII text
Size
241 B (241 bytes)
Hash
8047e291e91f8ce63ba0a0361c3658bc
6ff9519f61ba4968c9cd066b8180c20776e44d81
a8c9abc5ec5b049d8403ecf1ee7123edeee17d4d61064d3967bff71aa3a3cd54

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?E=m7vaaUeJ/ys=&a=100661&c=119793&ckmguid=592b8735-b48c-4fe7-a0fe-075f0a2c3397&ckmreqid=lcr&s1=+91&s2=col2eimau8qc73ajnpi0&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebdue0h0&ckm-x=colbrfadkjese4qmuvdg HTTP/1.1
Host: c.2fasttrackers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Content-Length: 241
Content-Type: text/html; charset=utf-8
Date: Thu, 25 Apr 2024 21:41:00 GMT
Location: https://doninio.com/?utm_campaign=FNg32Z4Ubn&s2=col2eimau8qc73ajnpi0&aid=100661&s1=91&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebd&s4=ue0h0
Set-Cookie: trk=/Z+iMGBzWaMZUIKkStb7yu3d/4+Jd1YEfIbQRzNMQeEUCVgqXFyE3jq31GJo2Lt6lcjQvuRsOto=; Domain=.2fasttrackers.com; Expires=Sat, 25 Apr 2026 21:41:00 GMT; HttpOnly
sid=/Z+iMGBzWaMZUIKkStb7yqVerFoiLCnafIbQRzNMQeEUCVgqXFyE3jq31GJo2Lt6dgLAb2wsvRQ=; Domain=.2fasttrackers.com; HttpOnly
x108171=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; Domain=.2fasttrackers.com; Expires=Sat, 25 May 2024 21:41:00 GMT; HttpOnly
X-Ckt: colcrr1f6uqce0da08p0
X-Ray: colcrr1f6uqce0da08n0
Connection: close

doninio.com/?utm_campaign=FNg32Z4Ubn&s2=col2eimau8qc73ajnpi0&aid=100661&s1=91&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebd&s4=ue0h0

128.199.56.44

302 Found

0 B

URL User Request GET HTTP/2
doninio.com/?utm_campaign=FNg32Z4Ubn&s2=col2eimau8qc73ajnpi0&aid=100661&s1=91&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebd&s4=ue0h0
IP
128.199.56.44:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectdoninio.com
FingerprintD3:45:5F:F2:0D:1F:0D:89:EC:56:7F:C5:93:08:D6:4A:45:6E:A0:45
ValidityTue, 12 Mar 2024 03:30:24 GMT - Mon, 10 Jun 2024 03:30:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?utm_campaign=FNg32Z4Ubn&s2=col2eimau8qc73ajnpi0&aid=100661&s1=91&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebd&s4=ue0h0 HTTP/1.1
Host: doninio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://youcantrackthis.com/?c=108589&s1=91&s5=ZEU-5affa24a-8fef-4f1c-bb24-a5ff5128e0ba&s2=col2eimau8qc73ajnpi0&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebd&s4=ue0h0&a=100661&zci=FNg32Z4Ubn
referrer-policy: no-referrer
server: nginx/1.17.2
set-cookie: sess-e77b0662344488daba9af744856b7988=MTcxNDA4MTI2MHxtQTc5cGFoT2xrU1dsbDhQNWlnOWxXWkcwUnpLanZCNlVBYVI0SXlxUk5saEpYMVNuZnhUdTFFPXzLaqNx8xChn2Gi0UWeTBIkKv8NL-hKJeDQeLuWiujndw==; Max-Age=31536000; HttpOnly
content-length: 0
date: Thu, 25 Apr 2024 21:41:00 GMT
X-Firefox-Spdy: h2

youcantrackthis.com/?c=108589&s1=91&s5=ZEU-5affa24a-8fef-4f1c-bb24-a5ff5128e0ba&s2=col2eimau8qc73ajnpi0&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebd&s4=ue0h0&a=100661&zci=FNg32Z4Ubn

52.2.48.141

302 Found

221 B

URL User Request GET HTTP/1.1
youcantrackthis.com/?c=108589&s1=91&s5=ZEU-5affa24a-8fef-4f1c-bb24-a5ff5128e0ba&s2=col2eimau8qc73ajnpi0&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebd&s4=ue0h0&a=100661&zci=FNg32Z4Ubn
IP
52.2.48.141:443
ASN
#14618 AMAZON-AES

Certificate
IssuerGlobalSign nv-sa
Subject*.youcantrackthis.com
FingerprintCA:62:BB:43:52:C3:DE:F8:A9:95:61:79:8A:E4:D4:43:F9:C7:F3:BE
ValidityThu, 28 Dec 2023 01:37:27 GMT - Tue, 28 Jan 2025 01:37:26 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
221 B (221 bytes)
Hash
a4f53aa52a09b365b34933449e6188cc
d31de65ccc2eb014ca18627a43d717d1454735d3
33943fe54f278ed8e1a4654b353df5329a388f147b5a9e6005fbf9b6101c9a86

HTTP Headers

GET /?c=108589&s1=91&s5=ZEU-5affa24a-8fef-4f1c-bb24-a5ff5128e0ba&s2=col2eimau8qc73ajnpi0&s3=20127col3k1ukbhvce4iegj00col4ir6kbhvce4ietg2gcol6jjpp3ssceb95tjs0col8nocdj4ise68rdq70colaqcc9kj8sebd&s4=ue0h0&a=100661&zci=FNg32Z4Ubn HTTP/1.1
Host: youcantrackthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 221
Content-Type: text/html; charset=utf-8
Date: Thu, 25 Apr 2024 21:41:01 GMT
Location: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=dySytEkPtWC97FHkwo/bo7G2nC/2/N0CBvqZtbIuS2xVhzlykolWJw==; domain=.youcantrackthis.com; path=/; HttpOnly
trk=1Qj9AZnOgoOMDfzpLd8Xa7G2nC/2/N0CBvqZtbIuS2xVhzlykolWJw==; domain=.youcantrackthis.com; expires=Sat, 25-Apr-2026 21:41:01 GMT; path=/; HttpOnly
c104671=dySytEkPtWC4GHM9ayrFW8gBRsb/pEkIe2IwnuD/sgw3NCw7qQiF9A==; domain=.youcantrackthis.com; expires=Sat, 25-May-2024 21:41:01 GMT; path=/; HttpOnly
Connection: close

www.bareflirt.com/landers/images/general/google-logo.svg

35.227.204.77

200 OK

688 B

URL GET HTTP/3
www.bareflirt.com/landers/images/general/google-logo.svg
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
SVG Scalable Vector Graphics image
Size
688 B (688 bytes)
Hash
686f8efa6e3e28e96d1c08399e8d353d
4524589b0dceefb6ae6389f36634441df69152d5
0cf576a5dab9315daac7ffe29d29ed585e0ff9850e59408d0f25f38dc1da037b

HTTP Headers

GET /landers/images/general/google-logo.svg HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:02 GMT
server: nginx/1.14.2
content-type: image/svg+xml
content-length: 688
last-modified: Thu, 18 Apr 2024 09:22:44 GMT
etag: "6620e664-2b0"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 6722303
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/images/loader/loading.gif

35.227.204.77

200 OK

2.9 kB

URL GET HTTP/3
www.bareflirt.com/landers/images/loader/loading.gif
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
GIF image data, version 89a, 128 x 15
Size
2.9 kB (2892 bytes)
Hash
62b08454087f1ef8b27bd2bcda330537
cac1914632f4c859f6176a84078f1017bad069f8
06f91f1bc360e7c486515b416a564445652e40585f94f2d089239b981d6421f6

HTTP Headers

GET /landers/images/loader/loading.gif HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:02 GMT
server: nginx/1.14.2
content-type: image/gif
content-length: 2892
last-modified: Thu, 18 Apr 2024 09:22:46 GMT
etag: "6620e666-b4c"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 13501458
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/js/ad-provider.js

35.227.204.77

200 OK

512 B

URL GET HTTP/3
www.bareflirt.com/landers/js/ad-provider.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
ASCII text, with very long lines (979)
Size
512 B (512 bytes)
Hash
acd920e8f5657057e8003b79905c5266
cd96548060dbbc3f715cb81c3810d893eedec260
38b34bce7e5ad8268f51a16a6633c17923130b2fac9eeb6ceaca6beb50990681

HTTP Headers

GET /landers/js/ad-provider.js HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:02 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 09:22:57 GMT
etag: "6620e671-3fb-gzip"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 12805213
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 512
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/webfonts/fa-solid-900.woff2

35.227.204.77

200 OK

92 kB

URL GET HTTP/3
www.bareflirt.com/landers/webfonts/fa-solid-900.woff2
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 91792, version 1.0
Size
92 kB (91792 bytes)
Hash
6897be186b147b75c308c29eb0782f14
4190cab3384f7769ffb33f277cc20be68eb32c18
a238cffffbfea4c2868fca1b142a3a9690574537a38c857dbe309ec27b033eb3

HTTP Headers

GET /landers/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/landers/css/fontawesome-all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:02 GMT
server: nginx/1.14.2
content-type: application/octet-stream
content-length: 91792
last-modified: Thu, 18 Apr 2024 09:22:46 GMT
etag: "6620e666-16690"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 6135725
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/favicon/favicon.ico

35.227.204.77

404 Not Found

279 B

URL GET HTTP/3
www.bareflirt.com/favicon/favicon.ico
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
HTML document, ASCII text
Size
279 B (279 bytes)
Hash
269bd369969705241a74417e30472d20
ec5d3d3f8953b4a65c6dd100f6c89fbc7b29b02d
704517c687444a8a012e9ec63d7d30a1856f68745dcb32d707feb1b713043403

HTTP Headers

GET /favicon/favicon.ico HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 21:41:02 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 279
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.bareflirt.com/favicon/apple-touch-icon-180x180.png

35.227.204.77

404 Not Found

279 B

URL GET HTTP/3
www.bareflirt.com/favicon/apple-touch-icon-180x180.png
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
HTML document, ASCII text
Size
279 B (279 bytes)
Hash
269bd369969705241a74417e30472d20
ec5d3d3f8953b4a65c6dd100f6c89fbc7b29b02d
704517c687444a8a012e9ec63d7d30a1856f68745dcb32d707feb1b713043403

HTTP Headers

GET /favicon/apple-touch-icon-180x180.png HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 21:41:02 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 279
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.bareflirt.com/landers/media-registry.js

35.227.204.77

200 OK

8.6 kB

URL GET HTTP/3
www.bareflirt.com/landers/media-registry.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
8.6 kB (8593 bytes)
Hash
996d00ce3568daa889df786e8892e2f3
cee9721d9288c308d1fa237b9c3abe6f35312b69
0860495b30b1debdec029cf077e290876264883af129c82a872aad5abb94cef5

HTTP Headers

GET /landers/media-registry.js HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:30:27 GMT
server: nginx/1.14.2
x-guploader-uploadid: ABPtcPp40ieLgxVQp-nNUCBLZ5XrTlZ-tVb3YdeLeOnzDEHyrCchtbGhExytpJdMO_P5AIwQkI0
x-goog-generation: 1713440482901169
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 122245
x-goog-hash: crc32c=wF2vjw==, md5=mW0AzjVo2qiJ33huiJLi8w==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
age: 635
last-modified: Thu, 18 Apr 2024 11:41:22 GMT
etag: "996d00ce3568daa889df786e8892e2f3-gzip"
content-type: application/javascript
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 8593
via: 1.1 google, 1.1 google

www.bareflirt.com/landers/translations/nb-no2.json

35.227.204.77

200 OK

218 kB

URL GET HTTP/3
www.bareflirt.com/landers/translations/nb-no2.json
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JSON text data
Size
218 kB (218064 bytes)
Hash
03b5a86609e5b54a54f2d4aa9c4de6be
2b28f57afd7505c6b4daa22867970c84396dd642
459139ce69de1a12b7372c8ca54b3f68a0d6b3a24c499849f3daa892fdc25183

HTTP Headers

GET /landers/translations/nb-no2.json HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:34:33 GMT
server: nginx/1.14.2
content-length: 218064
x-guploader-uploadid: ABPtcPo4ktX9CSbxHNRHWGfWPb2uLNezwv2cloh8cKdArClG_iAYmODl5Bn0dGPsHXiuIlsAdD0
x-goog-generation: 1712825875375555
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 218064
x-goog-hash: crc32c=ezkWSA==, md5=A7WoZgnltUpU8tSqnE3mvg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
age: 389
last-modified: Thu, 11 Apr 2024 08:57:55 GMT
etag: "03b5a86609e5b54a54f2d4aa9c4de6be"
content-type: application/json
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 google, 1.1 google

www.google.com/recaptcha/enterprise.js

142.250.74.164

200 OK

4.0 kB

URL GET HTTP/2
www.google.com/recaptcha/enterprise.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73
ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT

File type
gzip compressed data
Size
4.0 kB (3990 bytes)
Hash
ffb23d4226fa600d33b41a80c75562c7
575ecbb6c97756e5c730b078729af5cedb1a8096
49348fe25bb465029767b1dd4e10fe32acc0c0880a5009de64a88e9e17b279f1

HTTP Headers

GET /recaptcha/enterprise.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Thu, 25 Apr 2024 21:41:02 GMT
date: Thu, 25 Apr 2024 21:41:02 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 20:51:00 GMT
expires: Thu, 24 Apr 2025 20:51:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 89402
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 20:51:00 GMT
expires: Thu, 24 Apr 2025 20:51:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 89402
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=bareflirt.com&languageCode=nb&languageTerritory=NO&sessionId=38dfc6c844694166bea790d2847f661d

35.195.163.35

200 OK

14 kB

URL GET HTTP/2
samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=bareflirt.com&languageCode=nb&languageTerritory=NO&sessionId=38dfc6c844694166bea790d2847f661d
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type
JavaScript source, ASCII text
Size
14 kB (14215 bytes)
Hash
533ca3a13708d1c273c2e2127bb006f3
393dd3ed3bc49b8b1087abea956a06524ddd36ae
5afac0274da05956ab9716b8c0289614d168fed7000fea723a27092122e91f94

HTTP Headers

GET /cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=bareflirt.com&languageCode=nb&languageTerritory=NO&sessionId=38dfc6c844694166bea790d2847f661d HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Thu, 25 Apr 2024 21:41:02 GMT
content-type: application/javascript
content-length: 14215
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.bareflirt.com/landers/css/theme/pornhub.css

35.227.204.77

200 OK

12 kB

URL GET HTTP/3
www.bareflirt.com/landers/css/theme/pornhub.css
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
gzip compressed data, from Unix
Size
12 kB (11755 bytes)
Hash
4c34bd53274dd3a967809a022ffb7c32
36031bb196e84106c10cca72bbc3e1863176a66f
d0a97c267f377ba640d29a89864eb72af8cc3cf9e20aae91d55f987598866629

HTTP Headers

GET /landers/css/theme/pornhub.css HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:02 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: bareflirt.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 13449181
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/css/fontawesome-all.min.css

35.227.204.77

200 OK

18 kB

URL GET HTTP/3
www.bareflirt.com/landers/css/fontawesome-all.min.css
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
gzip compressed data, from Unix
Size
18 kB (18438 bytes)
Hash
b3a9c80ae0296145890c49b1d79b8b69
583e69f1ecc29e9644bc67425a182afddf0f6d96
2f179689f6df2caf10fbf00f76f2760032755ef08b0b3260ff85ad408b38275a

HTTP Headers

GET /landers/css/fontawesome-all.min.css HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:33:32 GMT
server: nginx/1.14.2
content-type: text/css
last-modified: Thu, 18 Apr 2024 09:22:44 GMT
etag: W/"6620e664-c970"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 12374514 13314092
age: 0
x-cache: HIT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/images/landing002/milf/default/set01_02.jpg?geo=no

35.227.204.77

200 OK

44 kB

URL GET HTTP/3
www.bareflirt.com/landers/images/landing002/milf/default/set01_02.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 253x595, components 3
Size
44 kB (43583 bytes)
Hash
099caef25a03872374a3270cea66cce1
23a0ba6a42f493a7a8784070cd3af123d742b68c
7802ee99bec40d78a20fb6d0855a8d848cac2e52ff5368cb5309db77463e3f66

HTTP Headers

GET /landers/images/landing002/milf/default/set01_02.jpg?geo=no HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:03 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 43583
last-modified: Thu, 18 Apr 2024 09:22:45 GMT
etag: "6620e665-aa3f"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 13380175
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/images/landing002/milf/default/set02_02.jpg?geo=no

35.227.204.77

200 OK

28 kB

URL GET HTTP/3
www.bareflirt.com/landers/images/landing002/milf/default/set02_02.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 253x595, components 3
Size
28 kB (28198 bytes)
Hash
f1bbe5e18761b0196b3dbc95895ae688
2f6008a8477323e2c31bd54d6bbfadd4459c3cd5
9f26f33a35299754588c3af5dbab72b1c3d5570a67d564191e80eccc859d18f6

HTTP Headers

GET /landers/images/landing002/milf/default/set02_02.jpg?geo=no HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:03 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 28198
last-modified: Thu, 18 Apr 2024 09:22:45 GMT
etag: "6620e665-6e26"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 6499814
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/images/landing002/milf/default/set03_02.jpg?geo=no

35.227.204.77

200 OK

45 kB

URL GET HTTP/3
www.bareflirt.com/landers/images/landing002/milf/default/set03_02.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 253x595, components 3
Size
45 kB (44997 bytes)
Hash
6d6db8796734d69682ad2df768020742
e359870054ccad74b2f5ccc782a29058815bfe67
a8450befaa42cf4bb52df86fcbed761c8fdfbf4836ec0d0d41dc7aa5c7a70638

HTTP Headers

GET /landers/images/landing002/milf/default/set03_02.jpg?geo=no HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:03 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 44997
last-modified: Thu, 18 Apr 2024 09:22:45 GMT
etag: "6620e665-afc5"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 6123075
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/images/landing002/milf/default/set02_01.jpg?geo=no

35.227.204.77

200 OK

28 kB

URL GET HTTP/3
www.bareflirt.com/landers/images/landing002/milf/default/set02_01.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 253x595, components 3
Size
28 kB (28487 bytes)
Hash
4d0d7b5e95228020b4d9fc1cdc4e7436
9a03553437e4de679ee1f24979ae442cc1fe4120
5cd4e7b91f31009cba3ed052e6fadde1e5011756119ace23ccb526adf164fb76

HTTP Headers

GET /landers/images/landing002/milf/default/set02_01.jpg?geo=no HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:03 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 28487
last-modified: Thu, 18 Apr 2024 09:22:45 GMT
etag: "6620e665-6f47"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 13501462
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/images/landing002/milf/default/set01_01.jpg?geo=no

35.227.204.77

200 OK

49 kB

URL GET HTTP/3
www.bareflirt.com/landers/images/landing002/milf/default/set01_01.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 253x595, components 3
Size
49 kB (49122 bytes)
Hash
8cc7e78445a98ba4aa84c9926e78f3fa
adeaea251c2b253bd384b99a07eee3f28986461a
906936ed4ce6cb2fbf024f65e50a69b58e12422120cc7d9ecf0d6259da974240

HTTP Headers

GET /landers/images/landing002/milf/default/set01_01.jpg?geo=no HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:03 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 49122
last-modified: Thu, 18 Apr 2024 09:22:45 GMT
etag: "6620e665-bfe2"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 13057271
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/images/landing002/milf/default/set03_01.jpg?geo=no

35.227.204.77

200 OK

49 kB

URL GET HTTP/3
www.bareflirt.com/landers/images/landing002/milf/default/set03_01.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 253x595, components 3
Size
49 kB (49116 bytes)
Hash
c63456313f1077e384afa6bd707f7190
e7aec67e1f429489186a31407bd5ca26f2143ffd
86943b8924beb2866da2217e56461d97e246817361528d16dfa96af03d3c4a98

HTTP Headers

GET /landers/images/landing002/milf/default/set03_01.jpg?geo=no HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:03 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 49116
last-modified: Thu, 18 Apr 2024 09:22:45 GMT
etag: "6620e665-bfdc"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 13315483
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB

142.250.74.72

200 OK

72 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (3484)
Size
72 kB (72097 bytes)
Hash
70508fb8fe0362ecbfe71e399b22d229
85a25c5e3c41ed0f94e817dc1cc762ef2943eae3
c00c28cc19b623de76ab974b4fff01371baf3f047f3394c687ffb4cb9b3cbc6d

HTTP Headers

GET /gtm.js?id=GTM-KBRH6NB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 21:41:03 GMT
expires: Thu, 25 Apr 2024 21:41:03 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 21:09:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72097
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433

142.250.74.164

200 OK

52 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
HTML document, ASCII text, with very long lines (35960)
Size
52 kB (52282 bytes)
Hash
0115fecbe1146c667a6c07ee844ad113
67acb1256f7ca0013208cea469f310b11a6feab6
df57d9b96ad7607b2cce4b72c7380cb123868d645cfec2bd83136e9a113a5bdc

HTTP Headers

GET /recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 Apr 2024 21:41:03 GMT
content-security-policy: script-src 'nonce-d6VyTNj6jrur7I_Pc4nbKg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 20:51:00 GMT
expires: Thu, 24 Apr 2025 20:51:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 89403
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c

142.250.74.72

200 OK

94 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
94 kB (94390 bytes)
Hash
37acf20e89a1c959cab500204fcecf0a
fa1bd93983daccea324a280ac82894a39d148895
a81c3f40c3d6de46543047d3508fa39db5af18242571e18fee1f4606bcf6a109

HTTP Headers

GET /gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 21:41:03 GMT
expires: Thu, 25 Apr 2024 21:41:03 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94390
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:43:03 GMT
expires: Fri, 25 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 68280
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m

142.250.74.164

200 OK

206 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205913 bytes)
Hash
e4eb924eec164dfe5fb43e5d8e6b2a2f
582bad0eac6440aa49632ca1e24d7a52a89d7d92
428ed37cf336160c986f3c470a345bd9790e95d119cfb794767637df59eb3a59

HTTP Headers

GET /recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 25 Apr 2024 21:41:03 GMT
date: Thu, 25 Apr 2024 21:41:03 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:25:07 GMT
expires: Fri, 25 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 15356
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:54:07 GMT
expires: Thu, 02 May 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 67616
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/js/bg/tKcPQSh2okjZHiZ2jIssRExVWo45mlVHOakavsOpwK4.js

142.250.74.164

200 OK

7.4 kB

URL GET HTTP/3
www.google.com/js/bg/tKcPQSh2okjZHiZ2jIssRExVWo45mlVHOakavsOpwK4.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (17650)
Size
7.4 kB (7420 bytes)
Hash
042afc8f6dd96d8a86aca2f6239682fa
c2321f6ccc366638b53be030076f7ae3807f9d53
b4a70f412876a248d91e26768c8b2c444c555a8e399a554739a91abec3a9c0ae

HTTP Headers

GET /js/bg/tKcPQSh2okjZHiZ2jIssRExVWo45mlVHOakavsOpwK4.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7420
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 05:04:58 GMT
expires: Thu, 24 Apr 2025 05:04:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 17:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 146165
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

samlesamtykke.com/cc.css

35.195.163.35

200 OK

3.9 kB

URL GET HTTP/2
samlesamtykke.com/cc.css
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type
assembler source, ASCII text
Size
3.9 kB (3892 bytes)
Hash
ddb6776d9e0b9844c9f57355d7492805
da918eb4fefa9d625e5858496c2c4a20ad893619
9ec88cf72960048a40791a943e5dee85f910c00e9a3732339888b075de11bc34

HTTP Headers

GET /cc.css HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Thu, 25 Apr 2024 21:41:03 GMT
content-type: text/css
content-length: 3892
last-modified: Thu, 15 Oct 2020 08:07:25 GMT
etag: "6073-5b1b123761e40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/collector

35.195.163.35

200 OK

0 B

URL POST HTTP/2
api.samlesamtykke.com/consent/collector
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/collector HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.bareflirt.com/
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Thu, 25 Apr 2024 21:41:03 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/collector

35.195.163.35

200 OK

4.7 kB

URL POST HTTP/2
api.samlesamtykke.com/consent/collector
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type
JSON text data
Size
4.7 kB (4661 bytes)
Hash
13bbcc190c7fe76c7489b08aad14656a
dd5575dcc8445b489de95101d875e78fd08352d7
5847944aba0d237b9d758ec732dccbcba519a27441fc11418c0f610f7b4298a4

HTTP Headers

POST /consent/collector HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 169
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Thu, 25 Apr 2024 21:41:03 GMT
content-type: application/vnd.api+json
content-length: 4661
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

0 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.bareflirt.com/
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Thu, 25 Apr 2024 21:41:03 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

371 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type
JSON text data
Size
371 B (371 bytes)
Hash
aad76f926b6c219e918916e6f25e4129
4823643373db875486f8ac895ea532106e6798d4
0b9d369937e417796e17001b773fd61884a8993ea967ad4841a472e83f83292d

HTTP Headers

POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 224
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Thu, 25 Apr 2024 21:41:03 GMT
content-type: application/vnd.api+json
content-length: 371
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

0 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.bareflirt.com/
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Thu, 25 Apr 2024 21:41:04 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

354 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type
JSON text data
Size
354 B (354 bytes)
Hash
f3306f051731bcce1d98a030b8a2d9cf
ada4a5bb07ee1872a579a651298774329b036f43
cbbae4d9daeed7c435cb09233298534b86c9c159ff6960ace74e223e460a75c5

HTTP Headers

POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 225
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Thu, 25 Apr 2024 21:41:04 GMT
content-type: application/vnd.api+json
content-length: 354
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/confirmExplicit

35.195.163.35

200 OK

0 B

URL POST HTTP/2
api.samlesamtykke.com/consent/confirmExplicit
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.bareflirt.com/
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Thu, 25 Apr 2024 21:41:04 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/confirmExplicit

35.195.163.35

200 OK

0 B

URL POST HTTP/2
api.samlesamtykke.com/consent/confirmExplicit
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73
ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 522
Origin: https://www.bareflirt.com
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Thu, 25 Apr 2024 21:41:04 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.bareflirt.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.bareflirt.com/landers/js/landing002.js

35.227.204.77

200 OK

66 kB

URL GET HTTP/3
www.bareflirt.com/landers/js/landing002.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type

Size
66 kB (65630 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /landers/js/landing002.js HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:02 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 09:22:57 GMT
etag: W/"6620e671-1005e"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 6123072
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s

142.250.74.164

200 OK

1.0 kB

URL GET HTTP/2
www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73
ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT

File type
JavaScript source, ASCII text, with very long lines (1033), with no line terminators
Size
1.0 kB (1033 bytes)
Hash
bd927622e1c40d420b32be0dc022e336
35f4a129b447f6d914420e59b3bbf5a7512f549f
afb5abaa561bb823a0c386906899eddac8ce791e2bcb9056f57b0364d341a829

HTTP Headers

GET /recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bareflirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Thu, 25 Apr 2024 21:41:02 GMT
date: Thu, 25 Apr 2024 21:41:02 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css

142.250.74.35

200 OK

56 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuYmFyZWZsaXJ0LmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=b206l0wbp433
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
ASCII text, with very long lines (56412), with no line terminators
Size
56 kB (56412 bytes)
Hash
2c00b9f417b688224937053cd0c284a5
17b4c18ebc129055dd25f214c3f11e03e9df2d82
1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 15:50:55 GMT
expires: Wed, 23 Apr 2025 15:50:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/css
vary: Accept-Encoding
age: 193808
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn

35.227.204.77

200 OK

24 kB

URL User Request GET HTTP/2
www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
HTML document, ASCII text, with very long lines (2091)
Size
24 kB (23802 bytes)
Hash
5165a1308081ed9a26ad74f806ccdd55
90a77ee9ffdab65dcd4ad22c648ae2532a3452ff
2d44833aabf22153b2c824d8109c2665efbe5cd8c697b408119815c5622d6dda

HTTP Headers

GET /landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 21:41:01 GMT
server: nginx/1.14.2
content-type: text/html;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: bareflirt.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 13380163
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2

www.bareflirt.com/landers/css/landing002.css

35.227.204.77

200 OK

27 kB

URL GET HTTP/3
www.bareflirt.com/landers/css/landing002.css
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type
ASCII text
Size
27 kB (26945 bytes)
Hash
d860e021e1fa1425377dfcb43d8e0710
513da3c298f610523694349e5676d804bf2fa833
a76ab94832ea2166f8289b1894fd48a082d22930d26a6217a7f24a414ec6eb66

HTTP Headers

GET /landers/css/landing002.css HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:02 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: bareflirt.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 6135723
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.bareflirt.com/landers/js/vendor.js

35.227.204.77

200 OK

124 kB

URL GET HTTP/3
www.bareflirt.com/landers/js/vendor.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
Certificate
IssuerGoogle Trust Services LLC
Subjectbareflirt.com
Fingerprint7B:D7:68:8A:5E:94:07:D3:B4:56:F0:61:04:FB:7D:AB:75:F8:77:3A
ValidityTue, 09 Apr 2024 03:25:32 GMT - Mon, 08 Jul 2024 04:20:06 GMT

File type

Size
124 kB (123566 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /landers/js/vendor.js HTTP/1.1
Host: www.bareflirt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bareflirt.com/landing2?cat=milf&pi=100661&pt1=418676266&pe=91&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 21:41:02 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 09:22:58 GMT
etag: W/"6620e672-1e2ae"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 13449184
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML