r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 96367f956a4177aec7e7e80221539d58
8dcad10fde96c139d1ef212388cb6755fe3fe077
f4f9bdb5180359dfd734cef1e6f1b54bc9d8f72cae557366eb74f22100b94dc4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4F9BDB5180359DFD734CEF1E6F1B54BC9D8F72CAE557366EB74F22100B94DC4"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11452
Expires: Sat, 17 Dec 2022 13:10:48 GMT
Date: Sat, 17 Dec 2022 09:59:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4a5e9bc8b7891ac5f4552c29bcbaedb0
39735081eeb64eae477c61c1147daeb68fb37b22
c465efaf205ff2992af02c16187ca14a658cd5335b892903374f3adab32a8cd9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C465EFAF205FF2992AF02C16187CA14A658CD5335B892903374F3ADAB32A8CD9"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10274
Expires: Sat, 17 Dec 2022 12:51:10 GMT
Date: Sat, 17 Dec 2022 09:59:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 17 Dec 2022 09:45:20 GMT
content-type: application/json
age: 876
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 555fc6e99ad3bf077d1c4b9b805e428d
4e800fc8e809a950288df0e94992084647762561
fac00cada519279717e2a13528cb202d292fc92ed5eb42782c41f8e7b9509eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAC00CADA519279717E2A13528CB202D292FC92ED5EB42782C41F8E7B9509EAF"
Last-Modified: Fri, 16 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8862
Expires: Sat, 17 Dec 2022 12:27:38 GMT
Date: Sat, 17 Dec 2022 09:59:56 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BmlMGObex8bexoefYDsq/1njLGXhFueA7H8tX+8rzcTjhC+23/n4pZqDqkmY5R2LpowJkiPnmuU=
x-amz-request-id: 3EHJM0D2T75PZYMQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 17 Dec 2022 09:53:36 GMT
age: 380
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
mycasualhookups.com/sl/html/092005/n.php?cep=L4O8IxhjMKdb-IcMZctXW-6TNKlDZI1sa6JalJQex6TX0qetuByr0WK2eWFDv2BNu04L_1h8_htJntv-WHiyC5VqCRlc2BHSBWL66dl8tzKflItslvjWo6Kr51JUWZawvb1bwxShpGHKA1FCS1qqSQaFOj9vP_zE5kPggLjZEi2sM-ubajQDMvF5nshcOaUU5mYXYKH8aGJyF_zckCQcynOayV2ehd4qK58hZMkvqvKq8CAmYRoMnWpLrhaj4V2EjEHaiuGeRgAPXHUUVEd920X3hwPv6P4OmSxjoGc_JeuGLf4MDWkke8gPeDA5zuLj6DISEWGBtOgDDORO0WCjp1BQwDAFezK5mbWRNNqNdH7W-mltBEJKvA0V3OlHHjs_rctUEi3hz7l6xtXVMVLdjFaPEZo51lOleuzvKCimzcw&lptoken=160e712027c229ac4819&external_id={external_id}&source=pragdalive3
104.26.13.87301 Moved Permanently 774 B URL HTTP/1.1 mycasualhookups.com/sl/html/092005/n.php?cep=L4O8IxhjMKdb-IcMZctXW-6TNKlDZI1sa6JalJQex6TX0qetuByr0WK2eWFDv2BNu04L_1h8_htJntv-WHiyC5VqCRlc2BHSBWL66dl8tzKflItslvjWo6Kr51JUWZawvb1bwxShpGHKA1FCS1qqSQaFOj9vP_zE5kPggLjZEi2sM-ubajQDMvF5nshcOaUU5mYXYKH8aGJyF_zckCQcynOayV2ehd4qK58hZMkvqvKq8CAmYRoMnWpLrhaj4V2EjEHaiuGeRgAPXHUUVEd920X3hwPv6P4OmSxjoGc_JeuGLf4MDWkke8gPeDA5zuLj6DISEWGBtOgDDORO0WCjp1BQwDAFezK5mbWRNNqNdH7W-mltBEJKvA0V3OlHHjs_rctUEi3hz7l6xtXVMVLdjFaPEZo51lOleuzvKCimzcw&lptoken=160e712027c229ac4819&external_id={external_id}&source=pragdalive3
IP 104.26.13.87:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (616)
Hash ad8d094b9ca97703a14a0e8f28633552
f99f8082f0a6a063bdfac6dbdbacffad99b8f1dc
a4054061afcaad632ab141455ab8aa678a4a15609ef8bda29056b15d00617f64
GET /sl/html/092005/n.php?cep=L4O8IxhjMKdb-IcMZctXW-6TNKlDZI1sa6JalJQex6TX0qetuByr0WK2eWFDv2BNu04L_1h8_htJntv-WHiyC5VqCRlc2BHSBWL66dl8tzKflItslvjWo6Kr51JUWZawvb1bwxShpGHKA1FCS1qqSQaFOj9vP_zE5kPggLjZEi2sM-ubajQDMvF5nshcOaUU5mYXYKH8aGJyF_zckCQcynOayV2ehd4qK58hZMkvqvKq8CAmYRoMnWpLrhaj4V2EjEHaiuGeRgAPXHUUVEd920X3hwPv6P4OmSxjoGc_JeuGLf4MDWkke8gPeDA5zuLj6DISEWGBtOgDDORO0WCjp1BQwDAFezK5mbWRNNqNdH7W-mltBEJKvA0V3OlHHjs_rctUEi3hz7l6xtXVMVLdjFaPEZo51lOleuzvKCimzcw&lptoken=160e712027c229ac4819&external_id={external_id}&source=pragdalive3 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 17 Dec 2022 09:59:56 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://mycasualhookups.com/sl/html/092005/n.php?cep=L4O8IxhjMKdb-IcMZctXW-6TNKlDZI1sa6JalJQex6TX0qetuByr0WK2eWFDv2BNu04L_1h8_htJntv-WHiyC5VqCRlc2BHSBWL66dl8tzKflItslvjWo6Kr51JUWZawvb1bwxShpGHKA1FCS1qqSQaFOj9vP_zE5kPggLjZEi2sM-ubajQDMvF5nshcOaUU5mYXYKH8aGJyF_zckCQcynOayV2ehd4qK58hZMkvqvKq8CAmYRoMnWpLrhaj4V2EjEHaiuGeRgAPXHUUVEd920X3hwPv6P4OmSxjoGc_JeuGLf4MDWkke8gPeDA5zuLj6DISEWGBtOgDDORO0WCjp1BQwDAFezK5mbWRNNqNdH7W-mltBEJKvA0V3OlHHjs_rctUEi3hz7l6xtXVMVLdjFaPEZo51lOleuzvKCimzcw&lptoken=160e712027c229ac4819&external_id={external_id}&source=pragdalive3
Cache-Control: max-age=300
Expires: Sat, 17 Dec 2022 10:04:56 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zzBX%2FzJNqFLRcBX37MdbCa5z7KqMLxI1zZEYEgbLfhLBpUpKVh3XwXv1oCeDqYh6j255qH2YZgQgLiNeUdyutF%2FKi8WdEB7W4QqtYQJO2Dw479jJsYNbw%2BRyjnKEkj30KqwGur0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77aecf0dea47b509-OSL
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 09:59:56 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/Dt6OUty8wSY
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Dt6OUty8wSY
IP 216.58.211.3:0
Hash be8aeb035ebac68177c3ae73b95a006d
aa286e6894496636a3a1f36504c261df0854e1b8
b3579841afb73fa4b1b70f326b2fe0798d5129c4aa816732975e42c73ea4c0a3
POST /s/gts1p5/Dt6OUty8wSY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 09:59:56 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 17 Dec 2022 09:08:00 GMT
age: 3116
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 142400be99b933ea5e0c68ea6a6b3e89
80e94132940e5ebe69dd0a03396764127b8fda49
20e8cde3c6907a3c5d97fe9fbcf6a44035e1f7482f7e166adb2c38a30a9084ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4033
Cache-Control: max-age=87249
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 09:59:56 GMT
Etag: "639c352c-1d7"
Expires: Sun, 18 Dec 2022 10:14:05 GMT
Last-Modified: Fri, 16 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.215.94.42101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.94.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mgnua0BN8u4Dvk/u42gS1g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3F+OO6fQqlmWf6adcnvIPl4UN4k=
mycasualhookups.com/sl/html/092005/css/style.css
172.67.71.67200 OK 2.4 kB URL HTTP/2 mycasualhookups.com/sl/html/092005/css/style.css
IP 172.67.71.67:0
File type ASCII text, with very long lines (7786), with no line terminators
Hash 26cdecb91ea3477cb0752e497d268406
ea71c061322876b10b4bd38cc1f91c06a01e92b2
a1b083d8534df514a366f98c604cedde3840680775c47565b7d87e5ad124ca85
GET /sl/html/092005/css/style.css HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Dec 2022 09:59:57 GMT
content-type: text/css
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=11951
expires: Sun, 18 Dec 2022 09:59:57 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=imNKonmOQ0N3IO%2BafOvJCFMcqhAEj30%2B%2Bglgui4IuGrsg17GWNlMTd7r20PdZMgX4QtvBYDXZScFgqvX5kJ8GgR6KtaM6i8F9G15pu1Qgq4rzsoSMlbTVxITtzWzS%2F%2BGCUkGuo4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77aecf14eac5b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
mycasualhookups.com/sl/html/092005/js/langs.js
172.67.71.67200 OK 28 kB URL HTTP/2 mycasualhookups.com/sl/html/092005/js/langs.js
IP 172.67.71.67:0
File type Unicode text, UTF-8 text, with very long lines (53473), with no line terminators
Hash 66fa472d15b66793db2d5673ddadc729
910461da35387f5a314d15bd813b05989d76a6d6
b1dc6996e562420ff078ededb7401608e8c45b16014acd94d168537fda2d2218
Analyzer Verdict Alert fortinet Phishing
GET /sl/html/092005/js/langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Dec 2022 09:59:57 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=79349
expires: Sun, 18 Dec 2022 09:59:57 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wh6McG8X9ufOz8GBU8XeK3KmRdTJsnwCqXgfZ3YjXU8CDDX%2BkioytGm5Ss%2FVZ5m%2Fltpl%2Bj3n4YE4hHOHGlxc0QWEMdLFniOLxYcFv4mtUPIHdKkP6mGJnZ6GKvFkW8rUcLNYHfs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77aecf14eacab4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
mycasualhookups.com/sl/html/092005/images/bg1.jpg
172.67.71.67200 OK 64 kB URL HTTP/2 mycasualhookups.com/sl/html/092005/images/bg1.jpg
IP 172.67.71.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1366x768, components 3\012- data
Hash a6c153fab3849ec0e3ba73f645433aec
f3747bf682252fef7befdf2870f19e16c6d4f77f
33215a1515c319a23598b30fea546e10dcb8cca455b42e20d8aa5e2eebd73bde
GET /sl/html/092005/images/bg1.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/092005/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Dec 2022 09:59:58 GMT
content-type: image/jpeg
content-length: 64359
cache-control: max-age=86400
cf-bgj: h2pri
expires: Sun, 18 Dec 2022 09:59:58 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
x-endurance-cache-level: 2
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fod4g3Yu9SlZK84NndeI3hvsQoUG59qpbQMaudwVus1IofnOImYJPl9eKojHu%2B19WaPyLD7e2SK1FWGdrpfy8LnFNfoTPSqO3T96go5r28EUU4JhtkiEtaXs%2Fuqb6T31liNEGWk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77aecf196f4bb4e8-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6724
Expires: Sat, 17 Dec 2022 11:52:02 GMT
Date: Sat, 17 Dec 2022 09:59:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6724
Expires: Sat, 17 Dec 2022 11:52:02 GMT
Date: Sat, 17 Dec 2022 09:59:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6724
Expires: Sat, 17 Dec 2022 11:52:02 GMT
Date: Sat, 17 Dec 2022 09:59:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a0c4858-28d1-47b1-bfba-b4500f28eeae.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a0c4858-28d1-47b1-bfba-b4500f28eeae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fdbd1e175352e7ec7dc2a25f04a5a9d
954bdd8d6b2f3d0ec086631ecf1bbd76c6507fe2
bdba0c3d4509764e87db688c1b8086c309f4a2cbe95d1f2130ce01d184f2fa17
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a0c4858-28d1-47b1-bfba-b4500f28eeae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9741
x-amzn-requestid: 5d9871d6-1512-4ffa-8b85-3c4c7595b723
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dEj3XGsxoAMFxIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639819c8-7a65df352cc4e71e5aa518f8;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 06:20:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _2xwG3Jz7sG9b8-JqXhu2knuIO_AyHIjOQ2luKB9Tk9NZnFNv8b8iQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 22:01:03 GMT
age: 43135
etag: "954bdd8d6b2f3d0ec086631ecf1bbd76c6507fe2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js
172.67.71.67200 OK 44 kB URL HTTP/2 mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js
IP 172.67.71.67:0
File type ASCII text, with very long lines (65451)
Hash b7a1df9e73125aa5382dc456e0b32de9
11aab377fd340004d2b7ff77805669ad92d75c44
3c1a8b8dc7753a94e6f4eb34a86b7ebcad0b0f2283218c6f79188114347d0246
Analyzer Verdict Alert fortinet Phishing
GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Dec 2022 09:59:56 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 17 Dec 2022 19:20:03 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 52793
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AlOxS1uyFNrPng5rSd509Vnyc5cdsgnDmf2rb0ycAoloPv5nj0zXXVfnkHchYRzGAbp2QnENM%2BQGv%2BdATutRJVafh8shP5LXWLOGqPo676Ien2%2FowyqzgzUfKDJXM%2BicfDiK2%2BM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77aecf14eac7b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js
172.67.71.67200 OK 14 kB URL HTTP/2 mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js
IP 172.67.71.67:0
File type Unicode text, UTF-8 text, with very long lines (23122)
Hash 43ceb8b3e2357e5cbc7a43d686625963
ec39a528e31e96c8373198506cc477a5eeb6ed81
c884a7ec3a8598c58f71c990268ed3a9df4cb4cf7626ac23ec0c9da295f34193
Analyzer Verdict Alert fortinet Phishing
GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Dec 2022 09:59:56 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 17 Dec 2022 19:20:03 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 52793
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K8qNmoQzM1s7z98sTO8v68uKmo4iZJvtyWCVQ1VlCFWKwL335bcZ0YMkYrBNs0iAgDlOPQ%2F39qISlv0t1UsLGTaWdxV9P2nNvnfbEggVjLSJDubQ26rJMKL%2BYu%2Bir0HDnGm5Jgw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77aecf14eac8b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0991e368-99b1-4e13-ad85-32e41c11922d.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0991e368-99b1-4e13-ad85-32e41c11922d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2acab402381f19830cb38a330fad29f3
04066039213672a571687711d39598104ca5b6a9
d901d3af43eea2d140377599a985ccfefe31575daa1e23fe6a9e272c398ca40a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0991e368-99b1-4e13-ad85-32e41c11922d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5520
x-amzn-requestid: 970d0949-100c-4fce-8b9c-1351ab50e095
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjC7Gp2oAMFRiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce545-2e216c22383a85a639331fc1;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _B9qbbv-CbjdG0NeW7VIqzX82pPaVKCfQGwNxcQEq7-WpxmLO6zrqg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:40:26 GMT
age: 44372
etag: "04066039213672a571687711d39598104ca5b6a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce463890-21e1-4f66-9e83-55a0b1f4cdb4.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce463890-21e1-4f66-9e83-55a0b1f4cdb4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15ed7eaf6a31427864e97802a56a4833
ebcc35a17e229b4cdc3507dc9bfd5e76f176f353
3c73b5a7f669d501456b9979e45661e8c468d93767560a20c6769e26f78567e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce463890-21e1-4f66-9e83-55a0b1f4cdb4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6667
x-amzn-requestid: 319440af-a363-41c4-a839-9473a0342698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNQQKFJzoAMFaIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9400-60b281d84363326d472a663c;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:39:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 83j83skZU9ADd85bjXZTtwvJS4veEwtf7QWkSkzL9HUS34iFFeqZ6A==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 22:11:52 GMT
age: 42486
etag: "ebcc35a17e229b4cdc3507dc9bfd5e76f176f353"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4368d88-830e-4776-bbdb-c2457233983a.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4368d88-830e-4776-bbdb-c2457233983a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b031e56b256ee8ed21093f8c5398815
ef4ac091b1804b68c1d8e073d73f7a57e08739a6
f332c68ba6b31d67c02d16412c85e760cbc2e7a67073876c8799365e80b6dbab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4368d88-830e-4776-bbdb-c2457233983a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9851
x-amzn-requestid: 38f12682-d3c4-4e4f-9b24-afe81ca85dde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c-FX9FsVoAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63958299-3d25cec26bcb2ccf73e3526f;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 07:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AhjBxWNu8LWdEfZRVxXxNXnqG9nfSGiPECfO1_pg9FxR5mxPw9k0Iw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 03:29:27 GMT
age: 23431
etag: "ef4ac091b1804b68c1d8e073d73f7a57e08739a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mycasualhookups.com/sl/common/js/lib/additional-methods.min.js
172.67.71.67200 OK 0 B URL HTTP/2 mycasualhookups.com/sl/common/js/lib/additional-methods.min.js
IP 172.67.71.67:0
Analyzer Verdict Alert fortinet Phishing
GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Dec 2022 09:59:56 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 17 Dec 2022 19:20:03 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 52793
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CB9kPZeyJkpcYxV%2F6zRvTRt2ywDFv%2BgP%2BEVeV%2FllDHYkAWe0BhrSJyw1skRAR5NYrcwiVBi%2FLVkAGstuyobZIhpcnd13VipkKZ%2FPyV3xPd8iyIEbXVX946KP%2B640LE83y1UYi4g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77aecf14eac9b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
mycasualhookups.com/sl/html/092005/js/config.js
172.67.71.67200 OK 0 B URL HTTP/2 mycasualhookups.com/sl/html/092005/js/config.js
IP 172.67.71.67:0
Analyzer Verdict Alert fortinet Phishing
GET /sl/html/092005/js/config.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Dec 2022 09:59:57 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=701
expires: Sun, 18 Dec 2022 09:59:57 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:22:58 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j%2FnxPrbbBATA4kaEaMEdbtEYGi7fuPyJhZQ9cFW%2FbMRgyZyeZB5xLhnshMSFBLQjvoWwUUPQt1Dz01Wo7jpZM2wuBY%2BQoMxpJHqLno5282itFnhgXRTmr9J76cufP9aCQgtTLqc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77aecf14eaceb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
mycasualhookups.com/sl/html/092005/js/showHide.js
172.67.71.67200 OK 0 B URL HTTP/2 mycasualhookups.com/sl/html/092005/js/showHide.js
IP 172.67.71.67:0
Analyzer Verdict Alert fortinet Phishing
GET /sl/html/092005/js/showHide.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Dec 2022 09:59:57 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=2955
expires: Sun, 18 Dec 2022 09:59:57 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kCAiGjYGAG9dc6HjABg5t2TyMtjsTPg%2BtoVfdgFOQEvsGRzra%2BZyj6THROg0dP6BA2Cjr%2FpxZCvwLoA%2FlkdFWdLwieXh9s3aRh5u%2B8NcHz7k7ROzJC0t3ZBjBhjMZ1lwlvfL99U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77aecf14ead3b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.google.com/specimen/Montserrat
216.58.211.14200 OK 0 B URL HTTP/2 fonts.google.com/specimen/Montserrat
IP 216.58.211.14:0
GET /specimen/Montserrat HTTP/1.1
Host: fonts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 17 Dec 2022 09:59:57 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin-allow-popups
content-security-policy: script-src 'nonce-rzbB8rHsfX8ABhbbk0RMZg' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=dtvCpIjydPS6zOUn1Arijiod5irGVXMHuxmhQzFa6GbOSCfFVeJa8NKapeSPB_57bFE-GJ5ceA4Kk4e2vV9QuDlttZKJaD7GDXu05Vb0zinoi0d83-5wEKs3oh2w6DJOHY2OQMJXWhKNYiO4ZNQs-kWhlKvfppy9h72dbtD7wew; expires=Sun, 18-Jun-2023 09:59:57 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mycasualhookups.com/sl/html/092005/n.php?cep=L4O8IxhjMKdb-IcMZctXW-6TNKlDZI1sa6JalJQex6TX0qetuByr0WK2eWFDv2BNu04L_1h8_htJntv-WHiyC5VqCRlc2BHSBWL66dl8tzKflItslvjWo6Kr51JUWZawvb1bwxShpGHKA1FCS1qqSQaFOj9vP_zE5kPggLjZEi2sM-ubajQDMvF5nshcOaUU5mYXYKH8aGJyF_zckCQcynOayV2ehd4qK58hZMkvqvKq8CAmYRoMnWpLrhaj4V2EjEHaiuGeRgAPXHUUVEd920X3hwPv6P4OmSxjoGc_JeuGLf4MDWkke8gPeDA5zuLj6DISEWGBtOgDDORO0WCjp1BQwDAFezK5mbWRNNqNdH7W-mltBEJKvA0V3OlHHjs_rctUEi3hz7l6xtXVMVLdjFaPEZo51lOleuzvKCimzcw&lptoken=160e712027c229ac4819&external_id={external_id}&source=pragdalive3
172.67.71.67200 OK 0 B URL HTTP/2 mycasualhookups.com/sl/html/092005/n.php?cep=L4O8IxhjMKdb-IcMZctXW-6TNKlDZI1sa6JalJQex6TX0qetuByr0WK2eWFDv2BNu04L_1h8_htJntv-WHiyC5VqCRlc2BHSBWL66dl8tzKflItslvjWo6Kr51JUWZawvb1bwxShpGHKA1FCS1qqSQaFOj9vP_zE5kPggLjZEi2sM-ubajQDMvF5nshcOaUU5mYXYKH8aGJyF_zckCQcynOayV2ehd4qK58hZMkvqvKq8CAmYRoMnWpLrhaj4V2EjEHaiuGeRgAPXHUUVEd920X3hwPv6P4OmSxjoGc_JeuGLf4MDWkke8gPeDA5zuLj6DISEWGBtOgDDORO0WCjp1BQwDAFezK5mbWRNNqNdH7W-mltBEJKvA0V3OlHHjs_rctUEi3hz7l6xtXVMVLdjFaPEZo51lOleuzvKCimzcw&lptoken=160e712027c229ac4819&external_id={external_id}&source=pragdalive3
IP 172.67.71.67:0
GET /sl/html/092005/n.php?cep=L4O8IxhjMKdb-IcMZctXW-6TNKlDZI1sa6JalJQex6TX0qetuByr0WK2eWFDv2BNu04L_1h8_htJntv-WHiyC5VqCRlc2BHSBWL66dl8tzKflItslvjWo6Kr51JUWZawvb1bwxShpGHKA1FCS1qqSQaFOj9vP_zE5kPggLjZEi2sM-ubajQDMvF5nshcOaUU5mYXYKH8aGJyF_zckCQcynOayV2ehd4qK58hZMkvqvKq8CAmYRoMnWpLrhaj4V2EjEHaiuGeRgAPXHUUVEd920X3hwPv6P4OmSxjoGc_JeuGLf4MDWkke8gPeDA5zuLj6DISEWGBtOgDDORO0WCjp1BQwDAFezK5mbWRNNqNdH7W-mltBEJKvA0V3OlHHjs_rctUEi3hz7l6xtXVMVLdjFaPEZo51lOleuzvKCimzcw&lptoken=160e712027c229ac4819&external_id={external_id}&source=pragdalive3 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 17 Dec 2022 09:59:56 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=300
expires: Sat, 17 Dec 2022 10:04:56 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2SJkvHbq%2F95zWVTHIfsl3iUxf4KkO%2Fkd%2FgwGl7o28a0GlVmqjrOez2iOhOdyPjSV5oamnsDfo2UYBqgllVzWWC8sEU4Lk8mrYVSi3KYdQBDjkMmJ7rMClDMrKRQaDuGuUUAstv8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77aecf10eec4b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
mycasualhookups.com/sl/common/js/common-langs.js
172.67.71.67200 OK 0 B URL HTTP/2 mycasualhookups.com/sl/common/js/common-langs.js
IP 172.67.71.67:0
Analyzer Verdict Alert fortinet Phishing
GET /sl/common/js/common-langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Dec 2022 09:59:56 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Sat, 17 Dec 2022 19:20:03 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 52793
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4vGJW%2BsHE9woltvfnsRHjZ9bp9xMzdEHYqhg%2BQbODeOprvbwwPT6ot1iLoysCYjXT5oq2l4pQWWEaUpFc0BVN%2BbwnLxhpbkA%2Ff4ujDNse804uUXa001Oabs8HkDszQFFWM8wR%2Bc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77aecf14eacfb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
mycasualhookups.com/sl/common/js/main.js?1671271196
172.67.71.67200 OK 0 B URL HTTP/2 mycasualhookups.com/sl/common/js/main.js?1671271196
IP 172.67.71.67:0
Analyzer Verdict Alert fortinet Phishing
GET /sl/common/js/main.js?1671271196 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Dec 2022 09:59:57 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 18 Dec 2022 09:59:57 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ydPWaM4DcP%2FZXy4uU1wStynfkxG4w37Aadic2lNJkyovmd6ayep3lFEl5H915CHbX3iTolVYfHYXoRL4dMwna9kULMpor%2FxPwosI49TKK%2FRGb%2BQVEd7OfTi0vreccRZQ4dwDqac%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77aecf14ead1b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2