lookingfordating.com/bts.js
108.157.214.27301 Moved Permanently 134 B URL GET HTTP/3 lookingfordating.com/bts.js
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /bts.js HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 301 Moved Permanently
content-type: text/html
content-length: 134
age: 2529
server: awselb/2.0
date: Wed, 24 Apr 2024 06:44:19 GMT
location: https://bts.insigit.com:443/bts.js
x-cache: Hit from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: _nK2J0CQ_eZeW5EkCtrZq7v7DAsXIQtCaBJUOIoGFNTHhtVhxtwZwg==
lookingfordating.com/landings/24401/images/2.gif
108.157.214.27200 OK 1000 kB URL GET HTTP/3 lookingfordating.com/landings/24401/images/2.gif
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type GIF image data, version 89a, 350 x 350
Size 1000 kB (999922 bytes)
Hash b6b27f38cd115cf71f4a78cd5ef2a95f
94d2bb66eec706db9cb5660c58208a92c3464b93
60a79cc5475537d4126be3448f0bd7faacafdc09482241a7fb195fffbe03b281
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /landings/24401/images/2.gif HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/landings/24401/css/d7e99b00a0d1712ee633f352316f2200.css
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/gif
content-length: 999922
age: 444643
server: nginx
date: Fri, 19 Apr 2024 03:55:45 GMT
last-modified: Tue, 03 Dec 2019 13:56:45 GMT
etag: "f41f2-598cd1107e140"
accept-ranges: bytes
cache-control: public, max-age=604800
x-cache: Hit from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: GoOQaCbyHUwqJgGC16k3XEsJUiK4vNO3ymCx1O2xUkm6892XJkDrUQ==
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:32:53 GMT
expires: Fri, 18 Apr 2025 02:32:53 GMT
cache-control: public, max-age=31536000
age: 536015
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,500,700&display=swap
142.250.74.106200 OK 76 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:400,500,700&display=swap
IP 142.250.74.106:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type gzip compressed data, max compression
Hash 28f02e1a050947e95bbbbe417be569d1
3cf6f3153ebb9c89e3f4ed164a35308c1c6c9f3b
c10a3370d807f142def2fb8b3d6c660fc3ba1b3b56931d63ecdd950c8b61492b
GET /css?family=Roboto:400,500,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 07:26:28 GMT
date: Wed, 24 Apr 2024 07:26:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lookingfordating.com/bridge/intg.js
108.157.214.27200 OK 9.1 kB URL GET HTTP/3 lookingfordating.com/bridge/intg.js
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (338)
Hash 0984735e7d9ea7efeccf7f8b98fde33b
3657ab09102c809a5b568d3d19fc36bc09c6a860
36765069dc707a1f004301bbc55ee5359b317ab1f2cb66ebfff536522c82fc78
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /bridge/intg.js HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: ARN56-P1
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
x-robots-tag: noindex
cache-control: public, max-age=3600
last-modified: Mon, 15 Apr 2024 09:30:50 GMT
etag: W/"153-18ee1184d10"
content-encoding: br
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-id: 6zThzqwFdX2eygq2HGjQfGUKu0cTmM5FrIY_g6yrziL4wDOTwdEIQA==
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 10:46:32 GMT
expires: Wed, 23 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 74396
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:37:01 GMT
expires: Fri, 18 Apr 2025 02:37:01 GMT
cache-control: public, max-age=31536000
age: 535767
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lookingfordating.com/b/tr
108.157.214.27202 Accepted 0 B URL POST HTTP/3 lookingfordating.com/b/tr
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /b/tr HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 838
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42; __bts_cid=c16eccb9371341d29ffc0224b18f4692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 202 Accepted
content-type: application/octet-stream
content-length: 0
alt-svc: h3=":443"; ma=86400
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
cache-control: no-store
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Do5P6YXMTScNFpaXimfATQ25qF9XjMW7xqkLQ89HbYt8sWkCfovDZQ==
lookingfordating.com/b/tr
108.157.214.27202 Accepted 0 B URL POST HTTP/3 lookingfordating.com/b/tr
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /b/tr HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 836
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42; __bts_cid=c16eccb9371341d29ffc0224b18f4692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 202 Accepted
content-type: application/octet-stream
content-length: 0
alt-svc: h3=":443"; ma=86400
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
cache-control: no-store
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: rX-Nc7OEwRA0ZLZ1dZB9TVutu8js6re0DR9OLOnqd8vqybuEI-vyPg==
lookingfordating.com/b/tr
108.157.214.27202 Accepted 0 B URL POST HTTP/3 lookingfordating.com/b/tr
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /b/tr HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 938
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42; __bts_cid=c16eccb9371341d29ffc0224b18f4692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 202 Accepted
content-type: application/octet-stream
content-length: 0
alt-svc: h3=":443"; ma=86400
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
cache-control: no-store
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 4dmPD1JFb2wLh05zcIr_JyVI4MmP-zKGNBjtwyzbIb53bWLiMvo5Hg==
lookingfordating.com/b/tr
108.157.214.27202 Accepted 0 B URL POST HTTP/3 lookingfordating.com/b/tr
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /b/tr HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 934
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42; __bts_cid=c16eccb9371341d29ffc0224b18f4692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 202 Accepted
content-type: application/octet-stream
content-length: 0
alt-svc: h3=":443"; ma=86400
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
cache-control: no-store
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: zCXAzGqZGOMPhJx1nxJyuui-aYEDYENW9Smv0XJeDiB-glqPVBr53g==
lookingfordating.com/b/tr
108.157.214.27202 Accepted 0 B URL POST HTTP/3 lookingfordating.com/b/tr
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /b/tr HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 837
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42; __bts_cid=c16eccb9371341d29ffc0224b18f4692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 202 Accepted
content-type: application/octet-stream
content-length: 0
alt-svc: h3=":443"; ma=86400
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
cache-control: no-store
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: JffznxigtpLv2u_Ny0VgDxsRuNKxXiOMHbdoxt1GlZI7i4zmyFdxIA==
lookingfordating.com/b/tr
108.157.214.27202 Accepted 0 B URL POST HTTP/3 lookingfordating.com/b/tr
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /b/tr HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 831
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42; __bts_cid=c16eccb9371341d29ffc0224b18f4692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 202 Accepted
content-type: application/octet-stream
content-length: 0
alt-svc: h3=":443"; ma=86400
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
cache-control: no-store
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: tbaj5LKde8MMe1llHXMpgaBzV9IhCkQQDGJKqDxbTzkygmTO9p_XRw==
lookingfordating.com/b/tr
108.157.214.27202 Accepted 0 B URL POST HTTP/3 lookingfordating.com/b/tr
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /b/tr HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 834
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42; __bts_cid=c16eccb9371341d29ffc0224b18f4692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 202 Accepted
content-type: application/octet-stream
content-length: 0
alt-svc: h3=":443"; ma=86400
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
cache-control: no-store
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: OO1E9YK081YGxaQYa30ft-koiWWU0f_leLKOQt2NbXNEt3eY-ZNu3g==
lookingfordating.com/b/tr
108.157.214.27202 Accepted 0 B URL POST HTTP/3 lookingfordating.com/b/tr
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /b/tr HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 837
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42; __bts_cid=c16eccb9371341d29ffc0224b18f4692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 202 Accepted
content-type: application/octet-stream
content-length: 0
alt-svc: h3=":443"; ma=86400
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
cache-control: no-store
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: rG0ZuMfBdSHyL2wYvz0_AKg7GNwjlQaUre2gLGNyw22bGq3xVcDF-w==
lookingfordating.com/b/tr
108.157.214.27202 Accepted 0 B URL POST HTTP/3 lookingfordating.com/b/tr
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /b/tr HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 827
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42; __bts_cid=c16eccb9371341d29ffc0224b18f4692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 202 Accepted
content-type: application/octet-stream
content-length: 0
alt-svc: h3=":443"; ma=86400
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
cache-control: no-store
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: amjDE8p1r4LStEYSlFA-3tw4Rki4zvxhlEpYkFVofFpAfX8vzNx7Ow==
lookingfordating.com/b/tr
108.157.214.27202 Accepted 0 B URL POST HTTP/3 lookingfordating.com/b/tr
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /b/tr HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 934
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42; __bts_cid=c16eccb9371341d29ffc0224b18f4692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 202 Accepted
content-type: application/octet-stream
content-length: 0
alt-svc: h3=":443"; ma=86400
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
cache-control: no-store
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: tC3ZfxUScr3ybKkc4w2AAoS_6J0kr4ctX-QMeTayurrEDfUpS1h4BQ==
bts.insigit.com/bts.js
3.123.86.228200 OK 8.9 kB IP 3.123.86.228:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectbts.insigit.com
FingerprintCE:F2:1B:70:1B:D1:E2:1A:82:E6:CC:0C:5A:46:F7:29:BA:F5:B6:7B
ValidityMon, 04 Sep 2023 00:00:00 GMT - Thu, 03 Oct 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (9115), with no line terminators
Hash 56ede0ed323768401ff546dabefbc8af
73483b46624ae2aa04cf47a76ef553ef8c645c48
95660c767667128322f3755f993c2bb14dbb5a6dc291689f24bc0eaac143dc7d
GET /bts.js HTTP/1.1
Host: bts.insigit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookingfordating.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 07:26:28 GMT
content-type: application/javascript
content-length: 8878
server: nginx
last-modified: Mon, 01 Apr 2024 08:23:54 GMT
etag: "660a6f1a-22ae"
cache-control: public, max-age=3600
accept-ranges: bytes
X-Firefox-Spdy: h2
lookingfordating.com/landings/24401/css/d7e99b00a0d1712ee633f352316f2200.css
108.157.214.27200 OK 3.0 kB URL GET HTTP/3 lookingfordating.com/landings/24401/css/d7e99b00a0d1712ee633f352316f2200.css
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type ASCII text, with very long lines (3050), with no line terminators
Hash 83c9e030cdc5aa7c5eaef3d4796a7ea6
075e0979a293c405c1bcacee3928cffd2deeb6ac
63f8c3b20ed7b2b2a2c35ca5951a95c9d74fbe343a045bb0ed862970ac3143a7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /landings/24401/css/d7e99b00a0d1712ee633f352316f2200.css HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css
alt-svc: h3=":443"; ma=86400
age: 444643
server: nginx
date: Fri, 19 Apr 2024 03:55:45 GMT
last-modified: Thu, 25 Aug 2022 15:53:12 GMT
etag: W/"bde-5e712cb6e8a00"
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: AEMB1r0ufqc2d60Wjz2-Akf8aNS3EiZnWU-jWbY0Xfn9b7iwqBR_vg==
lookingfordating.com/tds/interlayer?handler=FrodiData
108.157.214.27200 OK 0 B URL POST HTTP/3 lookingfordating.com/tds/interlayer?handler=FrodiData
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /tds/interlayer?handler=FrodiData HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 1783
Origin: https://lookingfordating.com
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: ARN56-P1
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA-Wow64, Sec-CH-UA
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-id: GZ4ubLmWTX0jChk_bXQMNgIVdYW2YmnmXUE_AHMlHXuFrELhuX6fdw==
lookingfordating.com/images/jump-favicon.ico
108.157.214.27200 OK 1.2 kB URL GET HTTP/3 lookingfordating.com/images/jump-favicon.ico
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Hash 0952b9dfa1e4ebf0058592eee3302a73
097850b34d43b1d9557d1c67e144f86679a84be6
dedda483c1ee58da9fb3d6f9f9ba972db18d893554a53673a32221bb3d93a701
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/jump-favicon.ico HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42; __bts_cid=c16eccb9371341d29ffc0224b18f4692
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: image/vnd.microsoft.icon
alt-svc: h3=":443"; ma=86400
age: 80325
server: nginx
last-modified: Fri, 05 Dec 2014 08:28:50 GMT
content-encoding: gzip
date: Tue, 23 Apr 2024 09:07:43 GMT
cache-control: public, max-age=604800
etag: W/"47e-50973ddc33480"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: hel7LU1wToV-7vIBk2dSBWnZfesJlLmYRZugqrpaf_QCBtW02NXtAA==
lookingfordating.com/tds/ae?tdsId=s7017yas_r&tds_campaign=s7017yas&utm_sub=opnfnl&s1=ps&utm_source=int&affid=fb283374&subid=barsha&clickid=
108.157.214.27302 Found 6.5 kB URL User Request GET HTTP/2 lookingfordating.com/tds/ae?tdsId=s7017yas_r&tds_campaign=s7017yas&utm_sub=opnfnl&s1=ps&utm_source=int&affid=fb283374&subid=barsha&clickid=
IP 108.157.214.27:443
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tds/ae?tdsId=s7017yas_r&tds_campaign=s7017yas&utm_sub=opnfnl&s1=ps&utm_source=int&affid=fb283374&subid=barsha&clickid= HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
date: Wed, 24 Apr 2024 07:26:27 GMT
server: nginx
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA-Wow64, Sec-CH-UA
set-cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; Max-Age=31536000; Domain=.lookingfordating.com; Path=/; Expires=Thu, 24 Apr 2025 07:26:27 GMT; Secure; SameSite=None
dm=fe450dd0d1dadc615429144d33241f42; Max-Age=432000; Path=/; Expires=Mon, 29 Apr 2024 07:26:27 GMT
x-cache: Miss from cloudfront
via: 1.1 ab5e2ae728dfa6338273a7f7bcdc636c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: zf5cv67y0phv3E95ciQ8Y99uycRSdrdvfsdNa1Du7aikLiuHl48Mcg==
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-KMSJRW&l=adsLayer
142.250.74.40200 OK 211 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KMSJRW&l=adsLayer
IP 142.250.74.40:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File type JavaScript source, ASCII text, with very long lines (4073)
Size 211 kB (211366 bytes)
Hash 0fe96e75e6592e0844fb43d8a9114e30
94734d1d5f0f7a7e8317279b45613c4c420af264
0cfc0f43a95cc238f944c20f735c23d6cdd1a975c5d0cd4aa26965a1187a2bb6
GET /gtm.js?id=GTM-KMSJRW&l=adsLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 07:26:28 GMT
expires: Wed, 24 Apr 2024 07:26:28 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75704
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lookingfordating.com/integration.js?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
108.157.214.27200 OK 2.4 kB URL GET HTTP/3 lookingfordating.com/integration.js?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (2531), with no line terminators
Hash de13af9b5d8dc964afea18dd17f91aaa
164dd534441898850f5b7df20847b8f1e7ba9093
4fa47e021d62f2ef352cb6d36cceaa0870a7bc903cacb2a10a6c02f85a33fe0d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /integration.js?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: ARN56-P1
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
etag: W/"956-EjrWK1JUUx3XbPg0IJAEqcd2KuM"
vary: Accept-Encoding
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-id: SVhISIJoG4qHd7QYFccZE2ZrB9X4YyXcLceM7UZLtWyq7ErB1A6ckQ==
lookingfordating.com/web-vitals@3.3.0/dist/web-vitals.iife.js
108.157.214.27200 OK 7.1 kB URL GET HTTP/3 lookingfordating.com/web-vitals@3.3.0/dist/web-vitals.iife.js
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (7180), with no line terminators
Hash c9c97c32b2a58ce5eb14cbd684631e0b
c41313cf88c7b4e7b2aa8d5a6cde575d76c4310b
4b84cf440a00fd8f8c4855eb73ad8b1cf90acacd592d2ac15b6dae78a26cb659
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /web-vitals@3.3.0/dist/web-vitals.iife.js HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=utf-8
alt-svc: h3=":443"; ma=86400
age: 14183406
date: Mon, 05 Feb 2024 16:32:06 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1b8b-2Pht765cKB7+cupYL/A9I7DYa+A"
via: 1.1 fly.io, 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
fly-request-id: 01HF0SM3KBTQBPB0GPQAR0PCB0-fra
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 850c8c273fdd046a-FRA
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: LF8wD3mdmGdkufmtjljo_J9P6Ma7bEGnX7fMPzFKK7oT5yEn_YBIPA==
lookingfordating.com/landings/24401/js/20dff8cf5ed8c45d47eca00751d44eb9.js
108.157.214.27200 OK 97 kB URL GET HTTP/3 lookingfordating.com/landings/24401/js/20dff8cf5ed8c45d47eca00751d44eb9.js
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65535)
Hash 20dff8cf5ed8c45d47eca00751d44eb9
209faa3f1a08dcb3c943fe8b6c344571005ef3b4
aaf2bc75c60776c40df9015d7f99cde0e9adb2f81e859276ed30d7c431d6a720
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /landings/24401/js/20dff8cf5ed8c45d47eca00751d44eb9.js HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript
alt-svc: h3=":443"; ma=86400
age: 444643
server: nginx
date: Fri, 19 Apr 2024 03:55:45 GMT
last-modified: Thu, 25 Aug 2022 15:53:12 GMT
etag: W/"17b45-5e712cb6e8a00"
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: CMb2jP_Bbm99jqCKK7wuOVqWO48GPwpAOoXhUJU0wpLDmmESu5VgmA==
lookingfordating.com/bridge/index.js
108.157.214.27200 OK 19 kB URL GET HTTP/3 lookingfordating.com/bridge/index.js
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (18773)
Hash 7d2d6659a15d269eb1fe2780ac7403e4
61f2ab7f55df65d8863cc7e68802438e30eb3642
66afb0787cd19fd1d0444b840f728121ee9e92d9d3f64f35529cf370ad40b2c9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /bridge/index.js HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: ARN56-P1
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
x-robots-tag: noindex
accept-ranges: bytes
cache-control: public, max-age=3600
last-modified: Mon, 15 Apr 2024 09:30:50 GMT
etag: W/"4956-18ee1184d10"
vary: Accept-Encoding
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-id: rFA9_1ksxLwmZi9o96w24wJwneLWQHC7_gxxujNOd1Rus1LQ_5Cj9w==
lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
108.157.214.27200 OK 6.5 kB URL User Request GET HTTP/2 lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
IP 108.157.214.27:443
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (6796), with no line terminators
Hash 8d26d928c3267848834d7bacd75b0dc7
62dc91e78ecaa2b747ed358eb39731f7b5597107
f96346c574a11a43055010978035878bb549a43acabdb34016bebc504b6f8643
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: nginx
date: Wed, 24 Apr 2024 07:26:28 GMT
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ab5e2ae728dfa6338273a7f7bcdc636c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: h_JFJL1sfNx07Svt2ZezVuLORtuDuAvoeBJIL6heO0TPFStHxwA7oA==
X-Firefox-Spdy: h2
lookingfordating.com/ufis/main.js?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int&ippContent=null&wpContent=null&pwaContent=null&doc_location=https%3A%2F%2Flookingfordating.com%2Fjump%3Ftds_id%3Db1727pos_jump_a_1598613018653%26affid%3Dfb283374%26tds_oid%3D24401%26_tgUrl%3DaHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%253D%253D%26tds_cid%3D0c24942669c3d456b66f96bbe9226826175a1a4b%26id%3D24401%26subid%3Dbarsha%26tds_campaign%3Db1727pos%26subid2%3D%257Bsubid2%257D%26clickid%3D%26s1%3Dps%26tds_ao%3D1%26dci%3Db7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b%26tds_host%3Dlookingfordating.com%26tds_ac_id%3Ds7017yas%26utm_source%3Dint&uaDataValues={}
108.157.214.27200 OK 199 B URL GET HTTP/3 lookingfordating.com/ufis/main.js?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int&ippContent=null&wpContent=null&pwaContent=null&doc_location=https%3A%2F%2Flookingfordating.com%2Fjump%3Ftds_id%3Db1727pos_jump_a_1598613018653%26affid%3Dfb283374%26tds_oid%3D24401%26_tgUrl%3DaHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%253D%253D%26tds_cid%3D0c24942669c3d456b66f96bbe9226826175a1a4b%26id%3D24401%26subid%3Dbarsha%26tds_campaign%3Db1727pos%26subid2%3D%257Bsubid2%257D%26clickid%3D%26s1%3Dps%26tds_ao%3D1%26dci%3Db7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b%26tds_host%3Dlookingfordating.com%26tds_ac_id%3Ds7017yas%26utm_source%3Dint&uaDataValues={}
IP 108.157.214.27:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectlookingfordating.com
Fingerprint71:BD:AC:3A:C7:C8:D3:49:29:8F:28:06:70:2B:61:4F:E3:91:DF:85
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 34da7c5ca056925017c6b515151b56fb
62c837d70fef5df6cd32a98d394d0a4da484ec81
d1e75a1ab55540bae67aedae90c7b4aca491728d98f4a2da8b8070f0af3c37c1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ufis/main.js?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int&ippContent=null&wpContent=null&pwaContent=null&doc_location=https%3A%2F%2Flookingfordating.com%2Fjump%3Ftds_id%3Db1727pos_jump_a_1598613018653%26affid%3Dfb283374%26tds_oid%3D24401%26_tgUrl%3DaHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%253D%253D%26tds_cid%3D0c24942669c3d456b66f96bbe9226826175a1a4b%26id%3D24401%26subid%3Dbarsha%26tds_campaign%3Db1727pos%26subid2%3D%257Bsubid2%257D%26clickid%3D%26s1%3Dps%26tds_ao%3D1%26dci%3Db7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b%26tds_host%3Dlookingfordating.com%26tds_ac_id%3Ds7017yas%26utm_source%3Dint&uaDataValues={} HTTP/1.1
Host: lookingfordating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Cookie: dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b; dm=fe450dd0d1dadc615429144d33241f42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: ARN56-P1
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
vary: Accept-Encoding, Accept-Encoding
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
etag: W/"c7-qF/KRh2X+Q6vUiRrlZdO6ruifCA"
content-encoding: br
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-id: 08eWHvLd3J4c-Ww1HZxHw-xUaK6xgqvM_iloFqyNjI2j0UVpLIRLmA==
retarget2core.com/43fbb6270523e1760fa5f0d2579dea07/ac3fc68831981c704535980c826941a5?j_type=open&jump=24401&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b
108.157.214.128200 OK 35 B URL GET HTTP/2 retarget2core.com/43fbb6270523e1760fa5f0d2579dea07/ac3fc68831981c704535980c826941a5?j_type=open&jump=24401&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b
IP 108.157.214.128:443
Requested by https://lookingfordating.com/jump?tds_id=b1727pos_jump_a_1598613018653&affid=fb283374&tds_oid=24401&_tgUrl=aHR0cHM6Ly9sb29raW5nZm9yZGF0aW5nLmNvbS90ZHMvYWUvdGcvcy83ZjkwMGVkZWYyMWY2NjJhNmU4NTUyZjY2ZmVlZTczMj9fX3Q9MTcxMzk0MzU4Nzg0NiZfX2w9MzYwMCZfX2M9MGMyNDk0MjY2OWMzZDQ1NmI2NmY5NmJiZTkyMjY4MjYxNzVhMWE0Yg%3D%3D&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&id=24401&subid=barsha&tds_campaign=b1727pos&subid2=%7Bsubid2%7D&clickid=&s1=ps&tds_ao=1&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b&tds_host=lookingfordating.com&tds_ac_id=s7017yas&utm_source=int
Certificate IssuerAmazon
Subjectretarget2core.com
FingerprintAC:15:CC:37:0E:B3:F2:08:95:E0:FC:52:46:A2:9A:06:02:11:B5:F5
ValidityThu, 02 Nov 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /43fbb6270523e1760fa5f0d2579dea07/ac3fc68831981c704535980c826941a5?j_type=open&jump=24401&tds_cid=0c24942669c3d456b66f96bbe9226826175a1a4b&dci=b7b2abcd0a1cb9f1e2c9a1a69c81efdfc958020b HTTP/1.1
Host: retarget2core.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookingfordating.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
date: Wed, 24 Apr 2024 07:26:28 GMT
server: nginx
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA-Wow64, Sec-CH-UA
set-cookie: dci=a8028aaea007b084e6efb720e85ce191e9655474; Max-Age=31536000; Domain=.retarget2core.com; Path=/; Expires=Thu, 24 Apr 2025 07:26:28 GMT; Secure; SameSite=None
x-cache: Miss from cloudfront
via: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: UAhZJRgdgjYFHNXMtGkouYYZbrxYyPNhv05Ahete7BaMHLGbu69r1A==
X-Firefox-Spdy: h2