Report - 2ii.pushooft.top/cndi4858vmefovl/5961746/

Report Overview

Visited public
2023-12-13 13:39:14
Tags
Submit Tags
URL
2ii.pushooft.top/cndi4858vmefovl/5961746/
Finishing URL
www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Title
mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
s.orbsrv.com	unknown	2020-05-16	2020-09-02 23:53:48	2023-12-12 05:11:56	487 B	448 B	95.211.229.245
s.pemsrv.com	unknown	2023-08-01	2023-08-04 15:10:46	2023-12-12 16:55:20	488 B	448 B	95.211.229.245
s.zlinkd.com	unknown	2022-11-21	2023-05-30 04:13:19	2023-12-12 05:11:56	486 B	448 B	95.211.229.247
tsyndicate.com	13042	2017-03-08	2017-03-16 10:04:54	2023-12-13 02:35:59	974 B	1.2 kB	136.243.69.157
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-12-13 08:53:32	886 B	20 kB	142.250.74.35
syndication.exdynsrv.com	34243	2015-10-20	2016-04-20 20:35:15	2023-12-11 22:17:16	501 B	432 B	95.211.229.247
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2023-12-12 18:34:51	410 B	681 B	139.45.195.8
cdn-adef.akamaized.net	125719	2014-03-18	2018-02-06 08:56:01	2023-12-12 05:11:55	3.8 kB	2.1 MB	95.101.10.67
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-13 09:10:06	438 B	62 kB	142.250.74.168
www.mysexymatches.com	unknown	2022-02-14	2022-04-23 12:39:16	2023-12-12 05:11:55	1.8 kB	16 kB	52.17.88.125
syndication.realsrv.com	9112	2019-02-07	2019-07-03 23:39:52	2023-12-12 05:11:56	499 B	449 B	95.211.229.247

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-13 13:38:48	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	From	Size	First Seen	Last Seen
	www.mysexymatches.com/c/sandbox%20eval%20code		123 B	2023-05-05	2025-07-12
Pretty URL www.mysexymatches.com/c/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 23:38 Last Seen2025-07-12 23:47 Times Seen9116 Hash 239166f4d1bda569909c9af241098419 ad3987a93224de5c735c7c380daf5bfaecf60ac8 255566913e81e0587539abba68839777480779575271b734e817e7093f4dceec Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MLVPDTJ	ScriptElement	169 kB	2023-12-13	2023-12-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MLVPDTJ IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-13 14:08 Last Seen2023-12-13 15:22 Times Seen3 Hash 6e25d8586ae512239c584e6b13c875d6 1420423ef3c8cb8e617d9224939a4af0ee15869b a1021c18f4caef88d59a05b7ed4577e70c8bc87b1babd4dde26f861820c6667c Loading...

	www.mysexymatches.com/js/pushjs/1.0.0/utils.js	ScriptElement	7.1 kB	2023-03-07	2025-07-12
Pretty URL www.mysexymatches.com/js/pushjs/1.0.0/utils.js IP 52.17.88.125 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-12 23:47 Times Seen2345 Hash 711c7ecda710a342d24faef1dec76ede d1b38489603a2aecc2be5edb4fa4cd8d442fe727 41a5e34d6777a471d63211252ce51555815b728949dc81cec01414f4ffdb98eb Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/shims/firebase.js		2.3 kB	2023-05-05	2025-07-12
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/shims/firebase.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 23:38 Last Seen2025-07-12 23:47 Times Seen11602 Hash 32d439c9ec8c789e843ae58b6774681c deb2c661dacf46eb3a1eacbba3e430dcf10cc395 f65e83801e16f98e150ae8843afb4c98c0b3ac0fa7fbe5a5ec687b08119732d6 Loading...

	cdn-adef.akamaized.net/landings/277420/1669995984/js/jquery.min.js?1669995984	ScriptElement	86 kB	2023-03-07	2025-07-13
Pretty URL cdn-adef.akamaized.net/landings/277420/1669995984/js/jquery.min.js?1669995984 IP 95.101.10.67 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-13 06:48 Times Seen188306 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

	cdn-adef.akamaized.net/landings/277420/1669995984/js/MB_push_NEW.js?1669995984	ScriptElement	671 B	2023-03-07	2024-08-21
Pretty URL cdn-adef.akamaized.net/landings/277420/1669995984/js/MB_push_NEW.js?1669995984 IP 95.101.10.67 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2024-08-21 09:43 Times Seen837 Hash 533a9cb9c41907529c3d603edb25d5d9 222bee472465971cf71bfa210d04136eb765ccc0 45d257677164ebc2c1fd4ff44b4ee5a1ce9c87682f165836a3e38113d1e09eaf Loading...

	unknown	ScriptElement	1.8 kB	2023-03-07	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2024-08-21 09:43 Times Seen833 Hash f635f3356b851f81cd3544c628a404d7 1e5b2e303492351cb8e8de3c5569d69d005acce4 2d39b7df8163f76195f1f28e837d34a8de00f146db22be3ea3b91c925ea044fd Loading...

	www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js	ScriptElement	36 kB	2023-03-07	2024-08-29
Pretty URL www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2024-08-29 18:11 Times Seen2206 Hash 0cb7a0eb328ea70ab360f861314c8820 e3e20eb50dae36f4cbcef1890b1cc7878acb537a 4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9 Loading...

	www.gstatic.com/firebasejs/5.0.2/firebase-app.js	ScriptElement	25 kB	2023-03-07	2024-08-29
Pretty URL www.gstatic.com/firebasejs/5.0.2/firebase-app.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2024-08-29 18:11 Times Seen2206 Hash 9164d0e8a317eceb870cca88c9683127 4617c910005f7100b4ff26a458a8b4463e33cdc6 15c9bd66992ef54979c981763cae280f28b6845520020ed38b5ab5f3f70f7931 Loading...

	cdn-adef.akamaized.net/landings/277420/1669995984/js/main.js?1669995984	ScriptElement	164 kB	2023-03-07	2025-07-12
Pretty URL cdn-adef.akamaized.net/landings/277420/1669995984/js/main.js?1669995984 IP 95.101.10.67 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-12 09:29 Times Seen866 Hash a0f4da40bd81c65d824afc106743d47f 55b2d4c57fdb017314f62ac2fe8a3e287dcadf7f e40e7cc368c897d6a3a5095fae6ccd6d9a3f88af5ef9c590f79b9fd22293ad10 Loading...

	cdn-adef.akamaized.net/landings/277420/1669995984/js/backoffer.js?1669995984	ScriptElement	430 B	2023-03-07	2025-07-12
Pretty URL cdn-adef.akamaized.net/landings/277420/1669995984/js/backoffer.js?1669995984 IP 95.101.10.67 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-12 09:29 Times Seen1557 Hash 6d5aa83d23ce0b9f72d3b87d000d8fae 034fb8768eb58ffc0b5849e2c162989741a6cbec 89266112a6c823b9c03dd5a32d8f1c5e9f4cbf4cf876b56c825781ea389d0800 Loading...

	cdn-adef.akamaized.net/landings/277420/1669995984/js/secondofferv2.js?1669995984	ScriptElement	1.2 kB	2023-03-07	2025-07-12
Pretty URL cdn-adef.akamaized.net/landings/277420/1669995984/js/secondofferv2.js?1669995984 IP 95.101.10.67 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-12 09:29 Times Seen854 Hash 9bbe216b8e526fd98d219f2b91ccaa57 3f5d1be91ba58b6501c022155fe6778ce82b1663 1c83d2863f746a234e46c5578826ceeb8cbe126bc4c274ca679295441c44b948 Loading...

	www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0	ScriptElement	391 B	2023-04-05	2024-08-21
Pretty URL www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 IP 52.17.88.125 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 09:54 Last Seen2024-08-21 09:43 Times Seen842 Hash 5309ed40ce506ad3835aaf9cdb58936e 7f28dc0bbdc514c5facdf048c7675d982d99f8f1 a708a632a45c8428d88229a757ef59a135f2706e6dff043f11a45c4e4dbbd9b6 Loading...

	www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0	ScriptElement	0 B	0001-01-01	2025-07-13
Pretty URL www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 IP 52.17.88.125 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-07-13 06:57 Times Seen5412568 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.mysexymatches.com/js/pushjs/1.0.0/subscriber.js	ScriptElement	9.4 kB	2023-07-27	2024-08-21
Pretty URL www.mysexymatches.com/js/pushjs/1.0.0/subscriber.js IP 52.17.88.125 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-27 07:26 Last Seen2024-08-21 09:44 Times Seen1101 Hash afa2727c308f061a0ff67c0c417abfe6 4276fe63351f1fabf9a8d5419dc3c68ea7e7ed44 e23549391406d4d731c64b32d8fe516ec9d6a65e45041d7e4d0b7d6e6a200610 Loading...

HTTP Transactions (22)

	URL	IP	Response	Size
	my.rtmark.net/img.gif?f=merge&userId=a47263aeff4c43de814608c1572e8af5	139.45.195.8		43 B
URL my.rtmark.net/img.gif?f=merge&userId=a47263aeff4c43de814608c1572e8af5 IP 139.45.195.8:0 ASN #9002 RETN Limited File type GIF image data, version 89a, 1 x 1 - data Size 43 B (43 bytes) Hash b4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 HTTP Headers `POST /img.gif?f=merge&userId=a47263aeff4c43de814608c1572e8af5 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0` HTTP/2 200 OK server: nginx date: Wed, 13 Dec 2023 13:38:48 GMT content-type: image/gif content-length: 43 access-control-allow-origin: null access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true set-cookie: ID=a47263aeff4c43de814608c1572e8af5; expires=Thu, 12 Dec 2024 13:38:48 GMT; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2

	GET cdn-adef.akamaized.net/landings/277420/1669995984/js/backoffer.js?1669995984	95.101.10.67	200 OK	430 B
URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277420/1669995984/js/backoffer.js?1669995984 IP 95.101.10.67:443 ASN #20940 Akamai International B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type ASCII text, with very long lines (430), with no line terminators Size 430 B (430 bytes) Hash 6d5aa83d23ce0b9f72d3b87d000d8fae 034fb8768eb58ffc0b5849e2c162989741a6cbec 89266112a6c823b9c03dd5a32d8f1c5e9f4cbf4cf876b56c825781ea389d0800 HTTP Headers `GET /landings/277420/1669995984/js/backoffer.js?1669995984 HTTP/1.1 Host: cdn-adef.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: JyBwy3b/1HAs9o38trtddj7dDF+4i176xOkf5dRm9te3Sh5TOsWl+ZRvI9qQAYC28l6/aOJ7hg4= x-amz-request-id: X3BJPAYP3B2AGY98 Last-Modified: Fri, 02 Dec 2022 15:46:27 GMT ETag: "6d5aa83d23ce0b9f72d3b87d000d8fae" Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Content-Length: 430 Date: Wed, 13 Dec 2023 13:38:49 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	GET cdn-adef.akamaized.net/landings/277420/1669995984/css/stylesheet.css?1669995984	95.101.10.67	200 OK	1.3 kB
URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277420/1669995984/css/stylesheet.css?1669995984 IP 95.101.10.67:443 ASN #20940 Akamai International B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type ASCII text Size 1.3 kB (1266 bytes) Hash 886d39fcd7fbb2a34e4b43631dbd3137 fe02a1261c36abcbb8e2854718718da7f02d35df 686391859608d14fc69bd1d5806b2ad1249657f44a5b759e8261da657819f39b HTTP Headers `GET /landings/277420/1669995984/css/stylesheet.css?1669995984 HTTP/1.1 Host: cdn-adef.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: jNEmipvVqeymQCW3aUlKvpYdH78lVKNho/lw6uiZVPvirQl8ZpFxd0rM6RdxFVjBmi6jVsyokxc= x-amz-request-id: X3BRK0MZ2JCE8P32 Last-Modified: Fri, 02 Dec 2022 15:46:27 GMT ETag: "886d39fcd7fbb2a34e4b43631dbd3137" Accept-Ranges: bytes Content-Type: text/css Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Wed, 13 Dec 2023 13:38:49 GMT Content-Length: 1266 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	GET cdn-adef.akamaized.net/landings/277420/1669995984/js/secondofferv2.js?1669995984	95.101.10.67	200 OK	454 B
URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277420/1669995984/js/secondofferv2.js?1669995984 IP 95.101.10.67:443 ASN #20940 Akamai International B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type ASCII text Size 454 B (454 bytes) Hash 9bbe216b8e526fd98d219f2b91ccaa57 3f5d1be91ba58b6501c022155fe6778ce82b1663 1c83d2863f746a234e46c5578826ceeb8cbe126bc4c274ca679295441c44b948 HTTP Headers `GET /landings/277420/1669995984/js/secondofferv2.js?1669995984 HTTP/1.1 Host: cdn-adef.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: qb+kT5ig2Hr3o1fdM+mFGAoh4HGJCuFPgFC0xNnDgOM9Rdt9acrG3faG6r1GSbKYIrbTKAL8+1Y= x-amz-request-id: X3BZWACKPZHVSTMY Last-Modified: Fri, 02 Dec 2022 15:46:27 GMT ETag: "9bbe216b8e526fd98d219f2b91ccaa57" Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Wed, 13 Dec 2023 13:38:49 GMT Content-Length: 454 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	GET cdn-adef.akamaized.net/landings/277420/1669995984/js/MB_push_NEW.js?1669995984	95.101.10.67	200 OK	671 B
URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277420/1669995984/js/MB_push_NEW.js?1669995984 IP 95.101.10.67:443 ASN #20940 Akamai International B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type ASCII text, with CRLF line terminators Size 671 B (671 bytes) Hash 533a9cb9c41907529c3d603edb25d5d9 222bee472465971cf71bfa210d04136eb765ccc0 45d257677164ebc2c1fd4ff44b4ee5a1ce9c87682f165836a3e38113d1e09eaf HTTP Headers `GET /landings/277420/1669995984/js/MB_push_NEW.js?1669995984 HTTP/1.1 Host: cdn-adef.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: JuJrQTDWuYhGg/yqmtFIowNWvBOzuJWoY9KhsAk4jyLu1+oLey2LyQf8ZCmc0dHtDZt7c2b0tiw= x-amz-request-id: X3BSM2DJMFK31NCX Last-Modified: Fri, 02 Dec 2022 15:46:27 GMT ETag: "533a9cb9c41907529c3d603edb25d5d9" Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Content-Length: 671 Date: Wed, 13 Dec 2023 13:38:49 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	GET cdn-adef.akamaized.net/landings/277420/1669995984/js/jquery.min.js?1669995984	95.101.10.67	200 OK	30 kB
URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277420/1669995984/js/jquery.min.js?1669995984 IP 95.101.10.67:443 ASN #20940 Akamai International B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type ASCII text, with very long lines (32065) Size 30 kB (29855 bytes) Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e HTTP Headers `GET /landings/277420/1669995984/js/jquery.min.js?1669995984 HTTP/1.1 Host: cdn-adef.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: n5GeyBYagb5qFOMsmrYUbqvsQEdUmuQqcgYaSCc7t4nKUebSogxwR0R+Pxx+hdxLg7dy/Z0Morc= x-amz-request-id: X3BJZNMVFN1CZBAT Last-Modified: Fri, 02 Dec 2022 15:46:27 GMT ETag: "2f6b11a7e914718e0290410e85366fe9" Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Wed, 13 Dec 2023 13:38:49 GMT Content-Length: 29855 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	GET cdn-adef.akamaized.net/landings/277420/1669995984/js/main.js?1669995984	95.101.10.67	200 OK	40 kB
URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277420/1669995984/js/main.js?1669995984 IP 95.101.10.67:443 ASN #20940 Akamai International B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type ASCII text, with very long lines (568), with CRLF line terminators Size 40 kB (40511 bytes) Hash a0f4da40bd81c65d824afc106743d47f 55b2d4c57fdb017314f62ac2fe8a3e287dcadf7f e40e7cc368c897d6a3a5095fae6ccd6d9a3f88af5ef9c590f79b9fd22293ad10 HTTP Headers `GET /landings/277420/1669995984/js/main.js?1669995984 HTTP/1.1 Host: cdn-adef.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: k5XgyYX/JWpE1UrFOyBiLr4Mf93WtwEPJZccE5Fjm6IQFvus+Lw+5TXH6J4IOaycS+cVSHvDpK4= x-amz-request-id: X3BNZQMB8VZRFCZV Last-Modified: Fri, 02 Dec 2022 15:46:27 GMT ETag: "a0f4da40bd81c65d824afc106743d47f" Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Wed, 13 Dec 2023 13:38:49 GMT Content-Length: 40511 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	GET cdn-adef.akamaized.net/landings/277420/1669995984/images/bg.gif	95.101.10.67	200 OK	2.0 MB
URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277420/1669995984/images/bg.gif IP 95.101.10.67:443 ASN #20940 Akamai International B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type GIF image data, version 89a, 271 x 459 - data Size 2.0 MB (2003405 bytes) Hash 796c5b416ddc0987e61ef8f3eeaa09f3 76b3deb8747a8eed8abc040e497155df9f53b5d8 3d88e5da5bafbdf62d42e2e903a262db90350735a8c8bfa448009d53edc6509c HTTP Headers GET /landings/277420/1669995984/images/bg.gif HTTP/1.1 Host: cdn-adef.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cdn-adef.akamaized.net/landings/277420/1669995984/css/stylesheet.css?1669995984 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK x-amz-id-2: /b4MtQsQPAbSGc5azOMz3vp+SnRRXHvwMlMe/+I7znT3tFT/Pj85VNF7HzWLYDLuRcy69WiXFI4= x-amz-request-id: 8CWE5PKEFHB8QW55 Last-Modified: Fri, 02 Dec 2022 15:46:26 GMT ETag: "796c5b416ddc0987e61ef8f3eeaa09f3" Accept-Ranges: bytes Content-Type: image/gif Server: AmazonS3 Content-Length: 2003405 Date: Wed, 13 Dec 2023 13:38:49 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	GET www.googletagmanager.com/gtm.js?id=GTM-MLVPDTJ	142.250.74.168	200 OK	61 kB
URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MLVPDTJ IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT File type ASCII text, with very long lines (5261) Size 61 kB (60991 bytes) Hash 6e25d8586ae512239c584e6b13c875d6 1420423ef3c8cb8e617d9224939a4af0ee15869b a1021c18f4caef88d59a05b7ed4577e70c8bc87b1babd4dde26f861820c6667c HTTP Headers `GET /gtm.js?id=GTM-MLVPDTJ HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Wed, 13 Dec 2023 13:38:49 GMT expires: Wed, 13 Dec 2023 13:38:49 GMT cache-control: private, max-age=900 last-modified: Wed, 13 Dec 2023 12:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 60991 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.mysexymatches.com/js/pushjs/1.0.0/subscriber.js	52.17.88.125	200 OK	3.3 kB
URL GET HTTP/2 www.mysexymatches.com/js/pushjs/1.0.0/subscriber.js IP 52.17.88.125:443 ASN #16509 AMAZON-02 Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerLet's Encrypt Subject.mysexymatches.com Fingerprint67:52:3B:F3:25:97:2B:AA:95:60:38:17:DF:9B:38:1F:C4:EE:83:C2 ValidityMon, 16 Oct 2023 23:48:14 GMT - Sun, 14 Jan 2024 23:48:13 GMT File type C source, ASCII text, with very long lines (9395), with no line terminators Size 3.3 kB (3317 bytes) Hash afa2727c308f061a0ff67c0c417abfe6 4276fe63351f1fabf9a8d5419dc3c68ea7e7ed44 e23549391406d4d731c64b32d8fe516ec9d6a65e45041d7e4d0b7d6e6a200610 HTTP Headers GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1 Host: www.mysexymatches.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Cookie: unique_id=6579b3e800096785; unique_id2=6579b3e800096e02; 6579b3e800096e02_sl=[277420] Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 13 Dec 2023 13:38:49 GMT content-type: application/javascript expires: Wed, 20 Dec 2023 13:38:49 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2`

	GET syndication.realsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=2138021792	95.211.229.247	200 OK	20 B
URL GET HTTP/1.1 syndication.realsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=2138021792 IP 95.211.229.247:443 ASN #60781 LeaseWeb Netherlands B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerLet's Encrypt Subjectrealsrv.com Fingerprint33:54:4D:F8:0E:E4:00:D3:20:90:CA:61:C8:CC:4D:D5:CB:BB:83:57 ValidityThu, 05 Oct 2023 15:34:07 GMT - Wed, 03 Jan 2024 15:34:06 GMT File type gzip compressed data, max speed, from Unix - data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `GET /tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=2138021792 HTTP/1.1 Host: syndication.realsrv.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 13 Dec 2023 13:38:49 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: goals=a%3A1%3A%7Bi%3A71748%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-12-13%22%3B%7D%7D; expires=Thu, 12 Dec 2024 13:38:49 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none Accept-CH: X-Robots-Tag: noindex, follow Content-Encoding: gzip`

	GET s.orbsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=496986213	95.211.229.245	200 OK	20 B
URL GET HTTP/1.1 s.orbsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=496986213 IP 95.211.229.245:443 ASN #60781 LeaseWeb Netherlands B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerLet's Encrypt Subjectorbsrv.com FingerprintC1:06:45:A2:28:F1:95:0E:76:B9:25:AE:56:75:E5:60:63:2E:D3:34 ValidityThu, 05 Oct 2023 15:32:45 GMT - Wed, 03 Jan 2024 15:32:44 GMT File type gzip compressed data, max speed, from Unix - data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `GET /tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=496986213 HTTP/1.1 Host: s.orbsrv.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 13 Dec 2023 13:38:49 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: goals=a%3A1%3A%7Bi%3A71748%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-12-13%22%3B%7D%7D; expires=Thu, 12 Dec 2024 13:38:49 GMT; path=/; domain=.orbsrv.com; Secure; SameSite=none Accept-CH: X-Robots-Tag: noindex, follow Content-Encoding: gzip`

	GET s.pemsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=1287361954	95.211.229.245	200 OK	20 B
URL GET HTTP/1.1 s.pemsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=1287361954 IP 95.211.229.245:443 ASN #60781 LeaseWeb Netherlands B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerLet's Encrypt Subjectpemsrv.com Fingerprint40:E8:94:FF:56:F9:C8:1A:71:42:46:90:F1:80:43:D0:63:BB:7B:54 ValidityThu, 05 Oct 2023 15:33:19 GMT - Wed, 03 Jan 2024 15:33:18 GMT File type gzip compressed data, max speed, from Unix - data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `GET /tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=1287361954 HTTP/1.1 Host: s.pemsrv.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 13 Dec 2023 13:38:49 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: goals=a%3A1%3A%7Bi%3A71748%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-12-13%22%3B%7D%7D; expires=Thu, 12 Dec 2024 13:38:49 GMT; path=/; domain=.pemsrv.com; Secure; SameSite=none Accept-CH: X-Robots-Tag: noindex, follow Content-Encoding: gzip`

	GET s.zlinkd.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=34950439	95.211.229.247	200 OK	20 B
URL GET HTTP/1.1 s.zlinkd.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=34950439 IP 95.211.229.247:443 ASN #60781 LeaseWeb Netherlands B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerLet's Encrypt Subjectzlinkd.com FingerprintC8:FB:68:B1:33:12:3C:36:71:BF:84:18:E9:3D:AD:E1:D3:69:AC:13 ValidityThu, 05 Oct 2023 15:39:08 GMT - Wed, 03 Jan 2024 15:39:07 GMT File type gzip compressed data, max speed, from Unix - data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `GET /tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=34950439 HTTP/1.1 Host: s.zlinkd.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 13 Dec 2023 13:38:49 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: goals=a%3A1%3A%7Bi%3A71748%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-12-13%22%3B%7D%7D; expires=Thu, 12 Dec 2024 13:38:49 GMT; path=/; domain=.zlinkd.com; Secure; SameSite=none Accept-CH: X-Robots-Tag: noindex, follow Content-Encoding: gzip`

	GET tsyndicate.com/api/v1/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d	136.243.69.157	200 OK	43 B
URL GET HTTP/2 tsyndicate.com/api/v1/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d IP 136.243.69.157:443 ASN #24940 Hetzner Online GmbH Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerLet's Encrypt Subjecttsyndicate.com FingerprintAD:E6:BB:56:46:8C:1B:80:8A:92:2D:48:DE:3C:A2:99:26:30:33:80 ValidityTue, 12 Dec 2023 09:06:52 GMT - Mon, 11 Mar 2024 09:06:51 GMT File type GIF image data, version 89a, 1 x 1 - data Size 43 B (43 bytes) Hash ba036c43037cfe89320d1ef7b64cd43f 88c72d3e26047eb1e45e5564a76427734f120efe 42cb846e07917f6731406e500f24aeb2e88c42cda124eaa59e08c5331cad8bcb HTTP Headers `GET /api/v1/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d HTTP/1.1 Host: tsyndicate.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Wed, 13 Dec 2023 13:38:49 GMT content-type: image/gif content-length: 43 pragma: no-cache expires: 0 vary: * x-api-version: 1 x-request-id: 3f71a368b36033b5 set-cookie: ts_rt_57bd9f77-0f27-4a59-a866-cfcb44429b1d=AAMC; expires=Thu, 12 Dec 2024 13:38:49 GMT; path=/; HttpOnly; secure; SameSite=None cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform x-robots-tag: none, noindex, nofollow report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 } X-Firefox-Spdy: h2

	GET tsyndicate.com/api/v2/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d	136.243.69.157	200 OK	43 B
URL GET HTTP/2 tsyndicate.com/api/v2/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d IP 136.243.69.157:443 ASN #24940 Hetzner Online GmbH Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerLet's Encrypt Subjecttsyndicate.com FingerprintAD:E6:BB:56:46:8C:1B:80:8A:92:2D:48:DE:3C:A2:99:26:30:33:80 ValidityTue, 12 Dec 2023 09:06:52 GMT - Mon, 11 Mar 2024 09:06:51 GMT File type GIF image data, version 89a, 1 x 1 - data Size 43 B (43 bytes) Hash ba036c43037cfe89320d1ef7b64cd43f 88c72d3e26047eb1e45e5564a76427734f120efe 42cb846e07917f6731406e500f24aeb2e88c42cda124eaa59e08c5331cad8bcb HTTP Headers `GET /api/v2/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d HTTP/1.1 Host: tsyndicate.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Wed, 13 Dec 2023 13:38:49 GMT content-type: image/gif content-length: 43 pragma: no-cache expires: 0 vary: * x-api-version: 2 x-request-id: 5282fac19c7ae1b4 set-cookie: ts_rt_57bd9f77-0f27-4a59-a866-cfcb44429b1d=AAMC; expires=Thu, 12 Dec 2024 13:38:49 GMT; path=/; HttpOnly; secure; SameSite=None cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform x-robots-tag: none, noindex, nofollow report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 } X-Firefox-Spdy: h2

	GET cdn-adef.akamaized.net/images/favicon.ico	95.101.10.67	200 OK	4.1 kB
URL GET HTTP/1.1 cdn-adef.akamaized.net/images/favicon.ico IP 95.101.10.67:443 ASN #20940 Akamai International B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced - data Size 4.1 kB (4103 bytes) Hash 4cdf3256cd7b8ec3917adb79d6bf457e bc615337e9223183a126c8fb649774866fb53e69 fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0 HTTP Headers `GET /images/favicon.ico HTTP/1.1 Host: cdn-adef.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: IjvSRVcJlrA8KRtuHCIvySb7T9M4setamspkp4J4t5oLIH6qyzaHxu8PdVPZHXMCPnB1SRcSZOs= x-amz-request-id: 9B7689322D7626CA Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT ETag: "4cdf3256cd7b8ec3917adb79d6bf457e" Accept-Ranges: bytes Content-Type: image/x-icon Content-Length: 4103 Server: AmazonS3 Unused62: 8096267 Date: Wed, 13 Dec 2023 13:38:50 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	GET www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js	142.250.74.35	200 OK	10 kB
URL GET HTTP/2 www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type ASCII text, with very long lines (35547) Size 10 kB (10017 bytes) Hash 0cb7a0eb328ea70ab360f861314c8820 e3e20eb50dae36f4cbcef1890b1cc7878acb537a 4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9 HTTP Headers `GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 10017 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 15:59:55 GMT expires: Fri, 06 Dec 2024 15:59:55 GMT cache-control: public, max-age=31536000 last-modified: Thu, 10 May 2018 20:35:52 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding age: 509935 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.gstatic.com/firebasejs/5.0.2/firebase-app.js	142.250.74.35	200 OK	8.6 kB
URL GET HTTP/2 www.gstatic.com/firebasejs/5.0.2/firebase-app.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type ASCII text, with very long lines (25088) Size 8.6 kB (8604 bytes) Hash 9164d0e8a317eceb870cca88c9683127 4617c910005f7100b4ff26a458a8b4463e33cdc6 15c9bd66992ef54979c981763cae280f28b6845520020ed38b5ab5f3f70f7931 HTTP Headers `GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 8604 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 23:22:10 GMT expires: Fri, 06 Dec 2024 23:22:10 GMT cache-control: public, max-age=31536000 age: 483400 last-modified: Thu, 10 May 2018 20:35:51 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0	52.17.88.125	200 OK	4.4 kB
URL User Request GET HTTP/2 www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 IP 52.17.88.125:443 ASN #16509 AMAZON-02 Certificate IssuerLet's Encrypt Subject.mysexymatches.com Fingerprint67:52:3B:F3:25:97:2B:AA:95:60:38:17:DF:9B:38:1F:C4:EE:83:C2 ValidityMon, 16 Oct 2023 23:48:14 GMT - Sun, 14 Jan 2024 23:48:13 GMT File type HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document text - exported SGML document, Unicode text, UTF-8 text, with very long lines (4529), with no line terminators Size 4.4 kB (4423 bytes) Hash 8a5e3c134aa9cd980adfa1ff208104d7 94b0ad53f0dcec3bcedeb3edebaca292879e60a5 03e7f49587746a1e701e78971613d5aec8b1d32c6b11b6e70c5c32efa76f2502 HTTP Headers GET /c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 HTTP/1.1 Host: www.mysexymatches.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Wed, 13 Dec 2023 13:38:48 GMT content-type: text/html; charset=utf-8 set-cookie: unique_id=6579b3e800096785; Path=/; Expires=Sun, 11 Feb 2024 13:38:48 GMT; Secure; SameSite=None unique_id2=6579b3e800096e02; Path=/; Expires=Tue, 12 Mar 2024 13:38:48 GMT; Secure; SameSite=None impression=; Path=/; Expires=Wed, 13 Dec 2023 13:38:48 GMT; Secure; SameSite=None 6579b3e800096e02_sl=[277420]; Path=/; Expires=Wed, 27 Dec 2023 13:38:48 GMT; Secure; SameSite=None content-encoding: gzip X-Firefox-Spdy: h2

	GET www.mysexymatches.com/js/pushjs/1.0.0/utils.js	52.17.88.125	200 OK	7.1 kB
URL GET HTTP/2 www.mysexymatches.com/js/pushjs/1.0.0/utils.js IP 52.17.88.125:443 ASN #16509 AMAZON-02 Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerLet's Encrypt Subject.mysexymatches.com Fingerprint67:52:3B:F3:25:97:2B:AA:95:60:38:17:DF:9B:38:1F:C4:EE:83:C2 ValidityMon, 16 Oct 2023 23:48:14 GMT - Sun, 14 Jan 2024 23:48:13 GMT File type C source, ASCII text, with very long lines (7334), with no line terminators Size 7.1 kB (7071 bytes) Hash 7df62062a027cd25d5a179c520f38668 0ddaa8cd9090908d987e0299cef74fbf7f118738 cdf93aff990bae251f609ef00d7d2bdbb56a35f003c7184ba067b5948629faa3 HTTP Headers GET /js/pushjs/1.0.0/utils.js HTTP/1.1 Host: www.mysexymatches.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Cookie: unique_id=6579b3e800096785; unique_id2=6579b3e800096e02; 6579b3e800096e02_sl=[277420] Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Wed, 13 Dec 2023 13:38:49 GMT content-type: application/javascript expires: Wed, 20 Dec 2023 13:38:49 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2`

	GET syndication.exdynsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=544545828	95.211.229.247	200 OK	0 B
URL GET HTTP/1.1 syndication.exdynsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=544545828 IP 95.211.229.247:443 ASN #60781 LeaseWeb Netherlands B.V. Requested by https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5961746&s4=0 Certificate IssuerLet's Encrypt Subjectexdynsrv.com Fingerprint8D:40:F0:75:CC:6E:55:85:E3:CD:04:C6:BF:F5:9F:81:74:ED:C3:24 ValidityThu, 05 Oct 2023 15:23:51 GMT - Wed, 03 Jan 2024 15:23:50 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6&gtmcb=544545828 HTTP/1.1 Host: syndication.exdynsrv.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.mysexymatches.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 13 Dec 2023 13:38:49 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: goals=a%3A1%3A%7Bi%3A71748%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-12-13%22%3B%7D%7D; expires=Thu, 12 Dec 2024 13:38:49 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none Accept-CH: X-Robots-Tag: noindex, follow Content-Encoding: gzip`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash