Report - v2.trckguardlnk.com/click?a=519&sub_id1=59b0df186bd274a69b5fdf579ff4d0ce90be9607&o=2202&sub_id3=a170c180

Report Overview

Submitted URL
v2.trckguardlnk.com/click?a=519&sub_id1=59b0df186bd274a69b5fdf579ff4d0ce90be9607&o=2202&sub_id3=a170c180_3645
IP
52.28.74.46
ASN
#16509 AMAZON-02
Submitted
2022-12-23 06:38:53
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
34

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
bl.trackham.com	unknown	2022-09-23T15:40:01Z	2023-03-09T09:30:05Z	537 B	1.6 kB	18.193.146.82
mycasualhookups.com	unknown	2016-03-19T23:05:44Z	2023-03-09T13:36:42Z	11 kB	1.7 MB	104.26.13.87
subscribe.api-push.com	unknown	2022-06-02T03:41:52Z	2023-03-09T01:31:26Z	1.1 kB	854 B	172.64.163.28
v2.trckguardlnk.com	unknown	2022-09-26T22:46:28Z	2023-03-09T07:44:46Z	1.5 kB	1.0 kB	35.156.69.71
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-09T09:50:48Z	350 B	944 B	54.230.80.227
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	52.41.252.32
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	2.7 kB	44 kB	34.120.237.76
cdnjam.com	204001	2021-02-18T08:53:51Z	2023-03-09T10:58:39Z	387 B	2.7 kB	104.21.58.242
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	2.4 kB	6.2 kB	95.101.11.115
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	1.7 kB	3.5 kB	142.250.74.131
cdn-dt.fcdn.info	230544	2019-03-21T03:06:06Z	2023-03-09T10:58:39Z	369 B	721 B	104.21.234.87
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-09T10:01:47Z	980 B	31 kB	216.58.207.227
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	682 B	1.4 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-23	medium	mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js	Phishing
2022-12-23	medium	mycasualhookups.com/sl/html/ES12/images/logowhatsSex.svg	Phishing
2022-12-23	medium	mycasualhookups.com/sl/html/ES12/js/config.js	Phishing
2022-12-23	medium	mycasualhookups.com/sl/common/js/lib/additional-methods.min.js	Phishing
2022-12-23	medium	mycasualhookups.com/sl/common/cookies-policy.html	Phishing
2022-12-23	medium	mycasualhookups.com/sl/common/privacy-policy.html	Phishing
2022-12-23	medium	mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js	Phishing
2022-12-23	medium	mycasualhookups.com/sl/common/js/common-langs.js	Phishing
2022-12-23	medium	mycasualhookups.com/sl/html/ES12/js/main.js	Phishing
2022-12-23	medium	mycasualhookups.com/sl/common/css/style.css?1671777523	Phishing
2022-12-23	medium	mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	Phishing
2022-12-23	medium	mycasualhookups.com/sl/common/js/main.js?1671777523	Phishing
2022-12-23	medium	mycasualhookups.com/sl/common/unsubscribe.html	Phishing
2022-12-23	medium	mycasualhookups.com/sl/html/ES12/js/langs.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-23	medium	trckguardlnk.com	Sinkholed
2022-12-23	medium	trckguardlnk.com	Sinkholed
2022-12-23	medium	trckguardlnk.com	Sinkholed

JavaScript (15)

	URL	Size	First Seen	Last Seen
	mycasualhookups.com/sl/html/ES12/js/langs.js	38 kB	2023-03-08	2023-08-01
Pretty URL mycasualhookups.com/sl/html/ES12/js/langs.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:47:03 Last Seen2023-08-01 23:18:34 Times Seen4 Hash 816cf1808e0209d6a391485d45d0c51d 0229d6fdfa7e5f72202bc1b523bec3d029d4cf61 23cafe12cf41a3b0ba3e812c732ca92b4241186b42568f0bd309aec09f1b432d Loading...

	cdn-dt.fcdn.info/swpush.min.js	34 kB	2023-03-07	2023-08-07
Pretty URL cdn-dt.fcdn.info/swpush.min.js IP 104.21.234.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2023-08-07 07:25:23 Times Seen135 Hash af2540aefe6334edb036a720947abb72 f17f394267c73b004d0f2c6dfb8a790aa2d7bf7e 7af8787e4bc78270a5a72a75f86a45ae9d3bd803c3c57ec3efb84d2aabe102a2 Loading...

	mycasualhookups.com/sl/html/ES12/js/config.js	395 B	2023-03-08	2023-08-07
Pretty URL mycasualhookups.com/sl/html/ES12/js/config.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:57 Last Seen2023-08-07 07:25:23 Times Seen53 Hash 628061c41e011910d93e2eb32b7e8a24 edaa1d1ca254452b8c77111a7d2dd928276b5971 33015ae6fe9c43a1d94f0b77b94a17e903ca8be952608b85f70ce0df0193161b Loading...

	mycasualhookups.com/sl/html/ES12/n.php?cep=mPmCfDSRN31w7sk6iUrk0FKTyX6kkuUD4n75nfARNEH-OIXe43U81fSFNCc3vLOZpibzatIdj6k3kdw0m8RdngRAX-yY58CyhdhLARXbCkKdxmc-tcou19BFZn5SPSOsnDpjFoJcI77-vjkVEEjkLXRsmm0qLbUZy2EOEvrMNYqV6Mll9CT8leppbyS0i4MVZQh7G6pbk3C4a_z9jwldvaLCfdFqc-blxHzQNQEBvzEamG3CdgjY-1NOYEffHUeTxbUguF2Stw5Yva7dZBSQgtw7GvXD99veXd4N8IHhDLviSiIE9cCPue9zAIiDSWIpb42unnwxYivZ0C4I0bnH6FJN9la3aHsEJ2aXI-kJLz65210pN4USrZ_JAywEp8_ER0Cl4XWFnlxaPxZ8nWBtV1V8pNIw9joenFnj9FCqHOtimPn-uwF_GTj0ZPqo2ooy&lptoken=169371b8775893c023fa&external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645	640 B	2023-03-08	2023-04-05
Pretty URL mycasualhookups.com/sl/html/ES12/n.php?cep=mPmCfDSRN31w7sk6iUrk0FKTyX6kkuUD4n75nfARNEH-OIXe43U81fSFNCc3vLOZpibzatIdj6k3kdw0m8RdngRAX-yY58CyhdhLARXbCkKdxmc-tcou19BFZn5SPSOsnDpjFoJcI77-vjkVEEjkLXRsmm0qLbUZy2EOEvrMNYqV6Mll9CT8leppbyS0i4MVZQh7G6pbk3C4a_z9jwldvaLCfdFqc-blxHzQNQEBvzEamG3CdgjY-1NOYEffHUeTxbUguF2Stw5Yva7dZBSQgtw7GvXD99veXd4N8IHhDLviSiIE9cCPue9zAIiDSWIpb42unnwxYivZ0C4I0bnH6FJN9la3aHsEJ2aXI-kJLz65210pN4USrZ_JAywEp8_ER0Cl4XWFnlxaPxZ8nWBtV1V8pNIw9joenFnj9FCqHOtimPn-uwF_GTj0ZPqo2ooy&lptoken=169371b8775893c023fa&external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645 IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:47:03 Last Seen2023-04-05 02:02:09 Times Seen6 Hash d751b7145b6e68b69f01565feb690350 3c7586b58d6534efa6e2863337263d85aaf943cb fda9aa7514f1b759a68d5904f5d7ca5d0116217fa2314e81acbd9d6241ed8ee4 Loading...

	mycasualhookups.com/sl/common/js/lib/additional-methods.min.js	18 kB	2023-03-07	2024-04-10
Pretty URL mycasualhookups.com/sl/common/js/lib/additional-methods.min.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:43 Last Seen2024-04-10 02:04:24 Times Seen257 Hash 3a53c5eac97b98ed3833970d43bf7fc9 b8805460b5754be8b16a223df737d9577da4c182 8b1554032d2cfbf0e858518df6460b2b4336be2cfb1f188dfd1108a3ae50b2e8 Loading...

	mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-04-25
Pretty URL mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 09:44:03 Times Seen106073 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	mycasualhookups.com/sl/html/ES12/n.php?cep=mPmCfDSRN31w7sk6iUrk0FKTyX6kkuUD4n75nfARNEH-OIXe43U81fSFNCc3vLOZpibzatIdj6k3kdw0m8RdngRAX-yY58CyhdhLARXbCkKdxmc-tcou19BFZn5SPSOsnDpjFoJcI77-vjkVEEjkLXRsmm0qLbUZy2EOEvrMNYqV6Mll9CT8leppbyS0i4MVZQh7G6pbk3C4a_z9jwldvaLCfdFqc-blxHzQNQEBvzEamG3CdgjY-1NOYEffHUeTxbUguF2Stw5Yva7dZBSQgtw7GvXD99veXd4N8IHhDLviSiIE9cCPue9zAIiDSWIpb42unnwxYivZ0C4I0bnH6FJN9la3aHsEJ2aXI-kJLz65210pN4USrZ_JAywEp8_ER0Cl4XWFnlxaPxZ8nWBtV1V8pNIw9joenFnj9FCqHOtimPn-uwF_GTj0ZPqo2ooy&lptoken=169371b8775893c023fa&external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645	90 B	2023-03-07	2023-04-05
Pretty URL mycasualhookups.com/sl/html/ES12/n.php?cep=mPmCfDSRN31w7sk6iUrk0FKTyX6kkuUD4n75nfARNEH-OIXe43U81fSFNCc3vLOZpibzatIdj6k3kdw0m8RdngRAX-yY58CyhdhLARXbCkKdxmc-tcou19BFZn5SPSOsnDpjFoJcI77-vjkVEEjkLXRsmm0qLbUZy2EOEvrMNYqV6Mll9CT8leppbyS0i4MVZQh7G6pbk3C4a_z9jwldvaLCfdFqc-blxHzQNQEBvzEamG3CdgjY-1NOYEffHUeTxbUguF2Stw5Yva7dZBSQgtw7GvXD99veXd4N8IHhDLviSiIE9cCPue9zAIiDSWIpb42unnwxYivZ0C4I0bnH6FJN9la3aHsEJ2aXI-kJLz65210pN4USrZ_JAywEp8_ER0Cl4XWFnlxaPxZ8nWBtV1V8pNIw9joenFnj9FCqHOtimPn-uwF_GTj0ZPqo2ooy&lptoken=169371b8775893c023fa&external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645 IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2023-04-05 02:02:09 Times Seen17 Hash 366614100df3a1aad7eaa097204bb879 462a34ed6013dced533568a3bafe7bb7da1b212d b52856d21909444a7b1f4afb75479ca00aa7a05fc60cdf860dcb3ce4f0b75f01 Loading...

	mycasualhookups.com/sl/html/ES12/js/main.js	987 B	2023-03-08	2023-08-07
Pretty URL mycasualhookups.com/sl/html/ES12/js/main.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:47:03 Last Seen2023-08-07 07:25:23 Times Seen13 Hash bfadccea06aaa3b8cb70b2fb323d9de3 d5195729838bad28e08959a2588dcdbab498b63b 359a9db62322686a6837629e463b02150871da4dfb3f84ed077701076ed55e56 Loading...

	mycasualhookups.com/sl/html/ES12/n.php?cep=mPmCfDSRN31w7sk6iUrk0FKTyX6kkuUD4n75nfARNEH-OIXe43U81fSFNCc3vLOZpibzatIdj6k3kdw0m8RdngRAX-yY58CyhdhLARXbCkKdxmc-tcou19BFZn5SPSOsnDpjFoJcI77-vjkVEEjkLXRsmm0qLbUZy2EOEvrMNYqV6Mll9CT8leppbyS0i4MVZQh7G6pbk3C4a_z9jwldvaLCfdFqc-blxHzQNQEBvzEamG3CdgjY-1NOYEffHUeTxbUguF2Stw5Yva7dZBSQgtw7GvXD99veXd4N8IHhDLviSiIE9cCPue9zAIiDSWIpb42unnwxYivZ0C4I0bnH6FJN9la3aHsEJ2aXI-kJLz65210pN4USrZ_JAywEp8_ER0Cl4XWFnlxaPxZ8nWBtV1V8pNIw9joenFnj9FCqHOtimPn-uwF_GTj0ZPqo2ooy&lptoken=169371b8775893c023fa&external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645	487 B	2023-03-08	2023-05-21
Pretty URL mycasualhookups.com/sl/html/ES12/n.php?cep=mPmCfDSRN31w7sk6iUrk0FKTyX6kkuUD4n75nfARNEH-OIXe43U81fSFNCc3vLOZpibzatIdj6k3kdw0m8RdngRAX-yY58CyhdhLARXbCkKdxmc-tcou19BFZn5SPSOsnDpjFoJcI77-vjkVEEjkLXRsmm0qLbUZy2EOEvrMNYqV6Mll9CT8leppbyS0i4MVZQh7G6pbk3C4a_z9jwldvaLCfdFqc-blxHzQNQEBvzEamG3CdgjY-1NOYEffHUeTxbUguF2Stw5Yva7dZBSQgtw7GvXD99veXd4N8IHhDLviSiIE9cCPue9zAIiDSWIpb42unnwxYivZ0C4I0bnH6FJN9la3aHsEJ2aXI-kJLz65210pN4USrZ_JAywEp8_ER0Cl4XWFnlxaPxZ8nWBtV1V8pNIw9joenFnj9FCqHOtimPn-uwF_GTj0ZPqo2ooy&lptoken=169371b8775893c023fa&external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645 IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:57 Last Seen2023-05-21 15:59:11 Times Seen18 Hash eb3361ce29dba68e5f6374b4129a7240 e9226d27e25cff9e8fd1026b4107d90919d59c14 8eb0cb2db6b9f3b562f0b58f4c9b1f6c48c31cce516872a20efbd90a5c6d33ff Loading...

	mycasualhookups.com/sl/common/unsubscribe.html	1.9 kB	2023-03-07	2023-04-05
Pretty URL mycasualhookups.com/sl/common/unsubscribe.html IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2023-04-05 02:02:09 Times Seen17 Hash b65ff9705865169981f3ac388816cc72 c79a72e04d9b766e27ea4fe8d2a0cc5d9c484c41 67da9ca751409ddfd1a8b1b7a1fdfe5b66b37e6d9b1d0c4e083fb357debca5de Loading...

	v2.trckguardlnk.com/click?a=519&sub_id1=59b0df186bd274a69b5fdf579ff4d0ce90be9607&o=2202&sub_id3=a170c180_3645	176 B	2023-03-10	2023-03-10
Pretty URL v2.trckguardlnk.com/click?a=519&sub_id1=59b0df186bd274a69b5fdf579ff4d0ce90be9607&o=2202&sub_id3=a170c180_3645 IP 35.156.69.71 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:47:57 Last Seen2023-03-10 05:47:57 Times Seen1 Hash f6e780202ac9878077ada86107f0dd52 2a71ff804f2771eb3fcb6d9112ac8a68f43ed407 4640e01e750bf42ee501d91fb8ad04cd921a1046f65e47156cc7f8e9c94a86d3 Loading...

	mycasualhookups.com/sl/common/js/main.js?1671777523	7.4 kB	2023-03-07	2023-08-07
Pretty URL mycasualhookups.com/sl/common/js/main.js?1671777523 IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:51 Last Seen2023-08-07 07:25:23 Times Seen115 Hash b87e1c868deb5fadb6c9661630d4f0db e893295cfb31b37a247c509c53b1eae346c528fc 44523924092ddcf715dae1c6c23059400dfb24781643ddb760b0f6b82724a0a8 Loading...

	mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js	23 kB	2023-03-07	2024-04-25
Pretty URL mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2024-04-25 10:11:23 Times Seen989 Hash 93c1dd8416ac2af1850652d5b620a142 6a76e4c7db479053350580469aa010febfdcacd0 17a879e50c3ab3078afaded288e257fb66e94806b76ff7e796b54226f9848f50 Loading...

	mycasualhookups.com/sl/common/js/common-langs.js	15 kB	2023-03-07	2023-07-02
Pretty URL mycasualhookups.com/sl/common/js/common-langs.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:51 Last Seen2023-07-02 18:22:18 Times Seen47 Hash 9dd6dd34babf310236383a7eb7d569e3 f396ed09424e282aa4e7b96d463541fc42556f46 7ae9fc07390e221821ced9edb8e092859afbc5653d7878c3d3074ed24be2c050 Loading...

	mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-25
Pretty URL mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 10:13:07 Times Seen54915 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

HTTP Transactions (59)

URL IP Response Size

v2.trckguardlnk.com/click?a=519&sub_id1=59b0df186bd274a69b5fdf579ff4d0ce90be9607&o=2202&sub_id3=a170c180_3645

35.156.69.71

301 Moved Permanently

134 B

URL HTTP/1.1
v2.trckguardlnk.com/click?a=519&sub_id1=59b0df186bd274a69b5fdf579ff4d0ce90be9607&o=2202&sub_id3=a170c180_3645
IP
35.156.69.71:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
134 B (134 bytes)
Hash
4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /click?a=519&sub_id1=59b0df186bd274a69b5fdf579ff4d0ce90be9607&o=2202&sub_id3=a170c180_3645 HTTP/1.1
Host: v2.trckguardlnk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Fri, 23 Dec 2022 06:38:42 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://v2.trckguardlnk.com:443/click?a=519&sub_id1=59b0df186bd274a69b5fdf579ff4d0ce90be9607&o=2202&sub_id3=a170c180_3645

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d6a971d765338f107fe9d2c67fa4bbdf
a72bdf191446a37fa0420cc9d7c087aaff757cd6
dc5291c136b0b81621a02679a31f6b7c852e2803429d54c2a9afcc8edf031328

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC5291C136B0B81621A02679A31F6B7C852E2803429D54C2A9AFCC8EDF031328"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13034
Expires: Fri, 23 Dec 2022 10:15:56 GMT
Date: Fri, 23 Dec 2022 06:38:42 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ede732d48f2c32ad5e3b899bb4348df9
15fa12733818b3ae39f3022a715ed0f431b28242
446c9bf6bc38a43f5758f6f44f89ad76eff44eb8779cf7e62bbfeb002b298dee

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "446C9BF6BC38A43F5758F6F44F89AD76EFF44EB8779CF7E62BBFEB002B298DEE"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4644
Expires: Fri, 23 Dec 2022 07:56:06 GMT
Date: Fri, 23 Dec 2022 06:38:42 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 23 Dec 2022 06:34:42 GMT
content-type: application/json
age: 240
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
32167242c3bbe7e45a2a865279df94a6
d03436f418ff77d50a553daa892c05e0725ba908
d5578d537296da18f3f349a98465e9fe930dca60a8ed62c183e9c9f6eb53f493

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5578D537296DA18F3F349A98465E9FE930DCA60A8ED62C183E9C9F6EB53F493"
Last-Modified: Wed, 21 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7603
Expires: Fri, 23 Dec 2022 08:45:25 GMT
Date: Fri, 23 Dec 2022 06:38:42 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 2aPbqeWPcDxNw0Yx4bLDpkBlDT/GtteBswRH9vxIDXD175NpTMviYNh2JYaWB9fSuupUxwMXmII=
x-amz-request-id: HNCRP9TYC78Q5ZPB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Dec 2022 05:53:57 GMT
age: 2685
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 23 Dec 2022 06:38:42 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ae334bc505ffa12905fe17aa4c70316c
bd2059b3f256e836fdb714a4973d04708adc5479
84f54d848babace7be5b578e74d74273f6c04b810df9c6ab4bba100376638ca7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 23 Dec 2022 06:38:42 GMT
Last-Modified: Fri, 23 Dec 2022 05:50:57 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9eoVghBGnSGIVQees6Rc8jCKMZG0c6jwX5UlDFGCns2qwzaxCgxrEA==
Age: 2865

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Last-Modified, Retry-After, Content-Type, Alert, Pragma, ETag, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 23 Dec 2022 06:08:02 GMT
age: 1840
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
70a7b165f99b2b8fa0dc98318a7158d7
4d924f7febab9c8fe3fe9199e8879fd6ad892575
c5e0e414c34f2f328b487ae72b21a12a1b50d952aa1a31fb6314b4e700d27e05

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2140
Cache-Control: max-age=97428
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 06:38:42 GMT
Etag: "63a41e2a-1d7"
Expires: Sat, 24 Dec 2022 09:42:30 GMT
Last-Modified: Thu, 22 Dec 2022 09:06:50 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

v2.trckguardlnk.com/favicon.ico

35.156.69.71

404 Not Found

0 B

URL HTTP/2
v2.trckguardlnk.com/favicon.ico
IP
35.156.69.71:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: v2.trckguardlnk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: U-dd28e50635038e9cf3a648c2dd17ad0a=unique; o_dd28e50635038e9cf3a648c2dd17ad0a=bdc89bea-c01f-4987-9d58-2d951c3a5ad4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: awselb/2.0
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: text/plain; charset=utf-8
content-length: 0
X-Firefox-Spdy: h2

bl.trackham.com/c40fc32b-aea7-4400-9940-2d3ec633506e?external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645

18.193.146.82

302 Found

0 B

URL HTTP/2
bl.trackham.com/c40fc32b-aea7-4400-9940-2d3ec633506e?external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645
IP
18.193.146.82:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c40fc32b-aea7-4400-9940-2d3ec633506e?external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645 HTTP/1.1
Host: bl.trackham.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Fri, 23 Dec 2022 06:38:43 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/ES12/n.php?cep=mPmCfDSRN31w7sk6iUrk0FKTyX6kkuUD4n75nfARNEH-OIXe43U81fSFNCc3vLOZpibzatIdj6k3kdw0m8RdngRAX-yY58CyhdhLARXbCkKdxmc-tcou19BFZn5SPSOsnDpjFoJcI77-vjkVEEjkLXRsmm0qLbUZy2EOEvrMNYqV6Mll9CT8leppbyS0i4MVZQh7G6pbk3C4a_z9jwldvaLCfdFqc-blxHzQNQEBvzEamG3CdgjY-1NOYEffHUeTxbUguF2Stw5Yva7dZBSQgtw7GvXD99veXd4N8IHhDLviSiIE9cCPue9zAIiDSWIpb42unnwxYivZ0C4I0bnH6FJN9la3aHsEJ2aXI-kJLz65210pN4USrZ_JAywEp8_ER0Cl4XWFnlxaPxZ8nWBtV1V8pNIw9joenFnj9FCqHOtimPn-uwF_GTj0ZPqo2ooy&lptoken=169371b8775893c023fa&external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645
pragma: no-cache
set-cookie: c40fc32b-aea7-4400-9940-2d3ec633506e-v4=PrxzHsG1hsgI4But-fVLBJpoInFUTGnKyzESsr67wiI; Max-Age=86400; Expires=Sat, 24-Dec-2022 06:38:43 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=mr8Vm80w3Iymbv3bdznc8tMEwUPo-GY5H3rtDd_5JHy_pIrTdHgJ53KxJ6-1HnIP9vLZ_Md3geN7wta2PJufJkbnAOOuAKIxYwYJUF2tdVmKbOrORUcu9v1mA_HiIC_5WuQwPVNt9Wfv1zSa3z6mUL5BnhW0bp4_PHXyoY_bDN3MU6CZL_D9kAbTlakrUL6iBpAdXW0XXH7tN4_G2ln9Gfbg9FKYsl0XeMMoko1jZUWNbPivTrJR-QLJ8N0V3YuiUsHaJhxIpkYHyrDCITpUKdQqnihkxmW8QCPF-plotLrp06owkTWGcaVzOtOQftg6ON8GaSumW8nAvbPw2QsW2QgZemfeq5Coy6XhBHF7uQvnNPwfb7We7NffpLGwsUEGKx3RzJYuBEMXmykneauduvtYYzJc6CacoroJDTePeQemPGF5YEX5m49TS964OFRY; Max-Age=86400; Expires=Sat, 24-Dec-2022 06:38:43 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.41.252.32

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.41.252.32:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AEFYLMSiTMWP2IyToNaysg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3IctAoargV/bdPW67pI3rGkrSQY=

ocsp.pki.goog/s/gts1p5/Dt6OUty8wSY

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/Dt6OUty8wSY
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5e90bfb17d9a016a753bfd36b2693641
a250469d2c4c3b5cd41b968089a758493bf1c638
011938effa118d8d6ffc42336b493a99cdef468dbe64c541917708a91c8b82ee

HTTP Headers

POST /s/gts1p5/Dt6OUty8wSY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 06:38:43 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

mycasualhookups.com/sl/html/ES12/images/1.png

104.26.13.87

200 OK

236 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES12/images/1.png
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 432 x 432, 8-bit/color RGBA, non-interlaced\012- data
Size
236 kB (235602 bytes)
Hash
110a1f63b82922fe5c6ec14f8f2844b3
c7dfc259cf67aa6c9f9722b3bce3487350393d5a
fea6ba0778b6f76a2eee5a4c501f1e02284c36aa5b0d5d161d153a2150d0f2e0

HTTP Headers

GET /sl/html/ES12/images/1.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: image/png
content-length: 235602
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
cache-control: max-age=86400
expires: Fri, 23 Dec 2022 13:50:22 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 60501
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vE5ry3fq8SA7TzSdOMYDPwFZ6%2BPo401LzL3uo6ycgHNDxbV9QiUr5gNXkUU3o5OnFCSJFo4VsEWeX3bGGIFxicGCGBpVzW%2FApyUauRwxCsm7UjPcmdtNubFE%2B96BUPEvoRf%2BWXE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77df1894caefb4e8-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/images/5.png

104.26.13.87

200 OK

212 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES12/images/5.png
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 432 x 432, 8-bit/color RGBA, non-interlaced\012- data
Size
212 kB (211551 bytes)
Hash
95894cc515c5292a505101e8c2338d00
fc6606e48324f5497a7df030bb48eff949d9dcdc
56c2b4fe5fb3ecfe75534bb2dd22edef6fa0811882b26d46b49c2fc177c0506e

HTTP Headers

GET /sl/html/ES12/images/5.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: image/png
content-length: 211551
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
cache-control: max-age=86400
expires: Fri, 23 Dec 2022 13:50:22 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 60501
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5zCaHQK8EYiF%2FyEx4RwA8r7ElpvCdnwfJ%2B1Po1e4UgNKV332ZzBrr38dTUR2RhDZtIe7IKONSfkFiFDf1Yo0hutRRRdbdqhY65kQuRHClkz5%2BTBsETNWuZQk%2FBe8A7dyWn9FyH4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77df1894daf4b4e8-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/images/4.png

104.26.13.87

200 OK

196 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES12/images/4.png
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 432 x 432, 8-bit/color RGBA, non-interlaced\012- data
Size
196 kB (196124 bytes)
Hash
15b9d5b82de7c411da6af46f2ef093df
afce034d47cbae83c3ceb1a8ffdce628fd12476d
18786b380565a66f42dfe9369208cd1e05422de1f72e2f3d6c1e8c9cd241d325

HTTP Headers

GET /sl/html/ES12/images/4.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: image/png
content-length: 196124
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
cache-control: max-age=86400
expires: Fri, 23 Dec 2022 13:50:22 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 60501
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2yPZ8XRNnRuKUUK3DGKP6LolB%2ByadnvDRJP%2BVgym9ffNSO%2FuZxPdLHX1oiWbsXxBQ%2Bu0sWPmSZUYbWO%2FVCGouAMv25j5l%2BvJo1UPJnolzyq0%2BiphvDXhAcRVEQPXEenQb9Uz4%2B8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77df1894daf3b4e8-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/images/6.png

104.26.13.87

200 OK

213 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES12/images/6.png
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 432 x 432, 8-bit/color RGBA, non-interlaced\012- data
Size
213 kB (212906 bytes)
Hash
9aa5b43b55579922ac9b888b654e3899
f250a8510b0e1fb10fffbbae4a669f5dfdaab36b
6f48107a5b0397734e3ec6793478c0b794efc94fb72587decabbdc4d63bec4bb

HTTP Headers

GET /sl/html/ES12/images/6.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: image/png
content-length: 212906
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
cache-control: max-age=86400
expires: Fri, 23 Dec 2022 13:50:22 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 60501
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=km9NKjvQFaxHqpVIzOvaYRnK6nObFe1DKil8JpsLHROcGL5ByiSVz7nEJRZu%2FvLvSREDqter5pCW%2FB%2FRU8jfOJvvoh8ub1qQ5CxXIJwflEy%2Fq1R%2FBjTGTArCiUgvHCtbG7KOt68%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77df1894daf5b4e8-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/images/3.png

104.26.13.87

200 OK

200 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES12/images/3.png
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 432 x 432, 8-bit/color RGBA, non-interlaced\012- data
Size
200 kB (200103 bytes)
Hash
97d6b76072d378ab7919c28506038405
48ccfb3f58883eaddd12f7cfe887465cc83bfe77
6ba593522a346d1b8f301d95da5463484f292ff411832503b85664b1040adc3f

HTTP Headers

GET /sl/html/ES12/images/3.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: image/png
content-length: 200103
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
cache-control: max-age=86400
expires: Fri, 23 Dec 2022 13:50:22 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 60501
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ev4HhZVjBUbeAJ6O6fXwbjlxjKGlPrBaVVi0fnRH6GIHtaTGl2Rjb4Cf4Mk0wb2ziyFfJsBOLKjy8Bvr%2FcA7Z1v9Pen09YBNLGjZJn%2Blf2eibwtQqwX0ksGYJWHv53R83nGXx2k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77df1894caf1b4e8-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/images/7.png

104.26.13.87

200 OK

153 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES12/images/7.png
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 432 x 432, 8-bit/color RGBA, non-interlaced\012- data
Size
153 kB (153311 bytes)
Hash
bf59d8f1b43bd73c63b7766e8772b8f6
8f6ae4a15bc620ccc9e6686149edfe0909bdfe0f
7454c3889dfa1deedabed959f525407287c3ae629e36b63b2338e1c2562b83e7

HTTP Headers

GET /sl/html/ES12/images/7.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: image/png
content-length: 153311
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
cache-control: max-age=86400
expires: Fri, 23 Dec 2022 13:50:22 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 60501
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DLiCxYXhUSC966K3rwtYRgL5ZoX%2BbuxmMHm4se3nzM7GRGgsTXym06%2FfAxSTL%2FlI1Iq6FWMC40hjfF%2BeO6%2BIkpGKkVUm0v3xJFGW4nj2ZsSnns7OZ6bKb1KVWWXSNZ8qCjkQ784%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77df1894daf6b4e8-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/images/2.png

104.26.13.87

200 OK

254 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES12/images/2.png
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 432 x 432, 8-bit/color RGBA, non-interlaced\012- data
Size
254 kB (254011 bytes)
Hash
b9e170e7d966ab6909608dfb9ad856ff
e32033df7d52e8b71b369db37ba74212233d43df
175fb64d5f42163b6735d8e3df33fb46f571d2cb8e5714c0b6c301ef4853bdda

HTTP Headers

GET /sl/html/ES12/images/2.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: image/png
content-length: 254011
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
cache-control: max-age=86400
expires: Fri, 23 Dec 2022 13:50:22 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 60501
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aWjEoc9xOgJWYwU%2BtFMdC2T%2BtO7gzcRBbuKXzAQHktlm%2FF5jXmBQ%2FEm7LEM6Y3vA0B9x392fYYCoCXe9XKYAjNY5u0HsVVYEHRX4Cau%2B%2F0nMQfE%2B%2FUUzEbfJyW8v7GT1CKtCEyk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77df1894caf0b4e8-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
cdd6031bf9c11ab3b0cdcf7f7570689f
2cab1c14b52b0c39f495a24cdf866e2651a816b1
0fc3bdbd2227f7b28bd1c66e480a05090ccc5acf1b2ebfce97f5bcd262241f45

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=142475
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 06:38:44 GMT
Etag: "63a4d67f-118"
Expires: Sat, 24 Dec 2022 22:13:19 GMT
Last-Modified: Thu, 22 Dec 2022 22:13:19 GMT
Server: nginx
Content-Length: 280

mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js

104.26.13.87

200 OK

8.1 kB

URL HTTP/2
mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (23122)
Size
8.1 kB (8096 bytes)
Hash
d8ba93e26fe83c3beaa45c4437941df8
090f1dba49decda94d05a8e191f02db4f53577e4
a5c01e237fc67fb17dbe29da7b159ec9d32bcc8812457074febfc278c0426556

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Fri, 23 Dec 2022 20:37:22 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 36081
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gtU3wm8CaH0VB%2FuxQePqcEXNf8dCY6SiSrDapDEbxQgkVmuDoMOSBTdz54S64zMgvq3Hfrw3f%2B7nfPPFAVGcYQODNdxago0jX3kwydB9g%2Fr1tEpEQC8wTRvX%2FkcxNaNYnFwiEoY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1894bad4b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/css/fonts.css

104.26.13.87

200 OK

596 B

URL HTTP/2
mycasualhookups.com/sl/html/ES12/css/fonts.css
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (6174), with no line terminators
Size
596 B (596 bytes)
Hash
d89622470a67f805b1f5ff3917ab42a3
d8949e508c3fd5965a0bfd327cf85b56764f8205
4dc82031f878592cd9d514d3c707f6d0f7a7ef641ccec6d5530e9ef4a1b3f05e

HTTP Headers

GET /sl/html/ES12/css/fonts.css HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: text/css
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=7188
expires: Fri, 23 Dec 2022 20:43:36 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 35707
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BrJKhciRFCb5lmZjofvzIKqaEJNBCIbcEIZfRTzfhU3rrF3ru67XIULLQyIdTzs1VHhblUJQXr0jt1OjntrkKfMajR8gVq5pfChl6wqW3l2egTBjqb%2Bp7FwO0qZIc1H4yW7p5WM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1894bacfb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4135
Expires: Fri, 23 Dec 2022 07:47:39 GMT
Date: Fri, 23 Dec 2022 06:38:44 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4135
Expires: Fri, 23 Dec 2022 07:47:39 GMT
Date: Fri, 23 Dec 2022 06:38:44 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4135
Expires: Fri, 23 Dec 2022 07:47:39 GMT
Date: Fri, 23 Dec 2022 06:38:44 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4135
Expires: Fri, 23 Dec 2022 07:47:39 GMT
Date: Fri, 23 Dec 2022 06:38:44 GMT
Connection: keep-alive

mycasualhookups.com/sl/html/ES12/images/logowhatsSex.svg

104.26.13.87

200 OK

12 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES12/images/logowhatsSex.svg
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Size
12 kB (11933 bytes)
Hash
b7c7613b81def3c18376d309f552e167
65f06e825e170776a91c5a88b1b77b7bbb027d20
0e6c0c52f26e191088187fe80637a0fb2592e1e6098a8f24621193a43a5ec70b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/html/ES12/images/logowhatsSex.svg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: image/svg+xml
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
cache-control: max-age=86400
expires: Fri, 23 Dec 2022 20:43:36 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 35707
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l2c5rC2gI69TmGTkLu8cSNScXmJdFW3kN3ccEhHRY4EV6M01O39xVYDuelOEeFag3p20jaRhbMbo632Mk%2BiH6AHg184u76%2Bmp%2FL14%2BGCaWLf6hvj%2FKJGhC99iKd4YYKKGoAiBLE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77df1894caeeb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef779b-50c4-426a-bb0e-48c0920e42f4.jpeg

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef779b-50c4-426a-bb0e-48c0920e42f4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5642 bytes)
Hash
fcdd5fc33823bcbfee082a3c0f2b083a
ed38fa97bee58621ef44a2ea6fbe4c291a12e12e
0ef1916483458d2c629077614f5ba5ea268c85679e60e8e14c7d4ca4993b674a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef779b-50c4-426a-bb0e-48c0920e42f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5642
x-amzn-requestid: e4e58ace-9158-4419-b3da-ed0e5502fdd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dVJviFUAoAMFifg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ebcc9-1c38199e663a289b775de5df;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 07:10:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mzvZGPyOX4WZRbAxoQBD67MXDgmTr4p8AYahUn6OSqrekrz5uI2cug==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 05:59:59 GMT
age: 2325
etag: "ed38fa97bee58621ef44a2ea6fbe4c291a12e12e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F257007ab-90ff-4ebd-93a2-9587a6c927b6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.5 kB (2495 bytes)
Hash
37ffea06e6cf128e4e43c662f4e8ad21
2d7b97172e7a0481a6eb1ccf0aa970d8934b2146
54a17f81719e2113d10e4bfadda1770b2f7d7827d6dc718327a1e469a4e07eca

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F257007ab-90ff-4ebd-93a2-9587a6c927b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2495
x-amzn-requestid: 9fe89a74-d6ce-4c60-94d6-42f3ff69a1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkUhqH68IAMFYGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4ce0a-3c64c13f25da86714b698121;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: giGN-w7dHck4wGdPQY0t1Io_Ms1uUMDLJv-C7Pw0zsB4fIRV9_Flwg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 21:38:11 GMT
age: 32433
etag: "2d7b97172e7a0481a6eb1ccf0aa970d8934b2146"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47ee94a5-9c56-4939-b124-56487f665b25.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11460 bytes)
Hash
187fd7f19c2b5452c58da85ac9010790
ae6a889ca7a320d976dd68c00cfe9fbd9e4b20be
a4baaa24e3ec3d41805bf1fe31f7d8c8572f7339950f65f356d9bdd8b101fa80

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47ee94a5-9c56-4939-b124-56487f665b25.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11460
x-amzn-requestid: e44d67f8-de86-44d3-8c81-30f8f9165623
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkVD-EK5oAMF3eQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4cee6-040b15d4132e0af7118d6217;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:40:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y_HOu1dDbdlkh8mU2QQwmIwiddfI8ZplWJbk8WBJcehxIeppmfzxsw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 21:59:48 GMT
etag: "ae6a889ca7a320d976dd68c00cfe9fbd9e4b20be"
content-type: image/jpeg
age: 31136
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4d8b8ab-ff79-4e93-97dc-b4b7d18e0b5b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6645 bytes)
Hash
0c276f786c96caac3f6a2b1cb20e4993
233988de2b66d8d97e0f21cbd1a182a9b4bd162f
bd5418d62aabf5e38f5c06409d0e1144f101d045072513150d5f16ffc2df169c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4d8b8ab-ff79-4e93-97dc-b4b7d18e0b5b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6645
x-amzn-requestid: 0f18f9e7-c8b3-4250-8156-96d3ea8a9749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: diVuQE5fIAMFeXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a40327-520100d2431fabd14317afe3;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 07:11:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UYAT01ECmYKrp25iLBix5K0qdahEvfppThLwVjcQOffxq0UI9PEKsg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 07:16:19 GMT
age: 84145
etag: "233988de2b66d8d97e0f21cbd1a182a9b4bd162f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F580b4499-2ffd-427f-93ed-4c39a78dd125.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12794 bytes)
Hash
7ee73339f3e7eaeb4c1ecab1a24632a8
48ff42e4329102d6a006b8f947bfaf29c0a5de17
ae5787d0df124d7d95ccaaf58148bb46c931610ca908cd58787748da5b75a1c0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F580b4499-2ffd-427f-93ed-4c39a78dd125.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12794
x-amzn-requestid: 82617475-f461-429b-b38d-0c84eee33754
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dk55IGPioAMFi1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a509d3-0dfc997d3853974a08914362;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 01:52:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -24dBoLhaZcF6kjZCYp8EJSAYmslMmv15G3oPgPAydPxVA0j51Vs3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 01:52:20 GMT
age: 17184
etag: "48ff42e4329102d6a006b8f947bfaf29c0a5de17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/images/main-bg.jpg

104.26.13.87

200 OK

154 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES12/images/main-bg.jpg
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size
154 kB (153708 bytes)
Hash
eed524fcdeb983585afa43b3576e3a04
99a21f9bc3464e1c173111f58778bbf96faf2b36
09b0626944c96d79726bdb6aa04d3400b744f822b99547e231de360700f5d588

HTTP Headers

GET /sl/html/ES12/images/main-bg.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/ES12/css/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:44 GMT
content-type: image/jpeg
content-length: 153708
cache-control: max-age=86400
cf-bgj: h2pri
expires: Fri, 23 Dec 2022 09:46:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 75116
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PoTk8Z2g0F0xz6eq9R4g35vC21cpT%2FmF8%2BtHYoSDU8OnSMk9s0ZMCbiVIP2wH82bbGWPk39sG%2FxJNwvjbqzGCC6xAHwlpORQIGwq6F3hxZgG0N%2BGVfWLANj9sv95jQ%2FYVVVemcw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77df18986d27b4e8-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 06:38:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 06:38:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v17/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2

216.58.207.227

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v17/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15056, version 1.0\012- data
Size
15 kB (15056 bytes)
Hash
0edb76284a7a0f8db4665b560ee2b48f
02496387a5f7bf7b79df52c7b76ece4ebc7a0710
74201a4b97ec1d5e86252dd0180eafd8c5378a9235864dbcd682f3575b41c85b

HTTP Headers

GET /s/opensans/v17/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:16 GMT
expires: Sat, 16 Dec 2023 13:33:16 GMT
cache-control: public, max-age=31536000
age: 579928
last-modified: Tue, 23 Jul 2019 19:30:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v17/mem8YaGs126MiZpBA-UFVZ0b.woff2

216.58.207.227

200 OK

14 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v17/mem8YaGs126MiZpBA-UFVZ0b.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 14380, version 1.0\012- data
Size
14 kB (14380 bytes)
Hash
33543c5cc5d88f5695dd08c87d280dfd
600db9374e47e4f73a59ccc0a99bcc42f4a3e02a
9c50a96c859b9beea47b71740bd14e7f69a4df586d015f47434037f8def53b52

HTTP Headers

GET /s/opensans/v17/mem8YaGs126MiZpBA-UFVZ0b.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:14 GMT
expires: Sat, 16 Dec 2023 13:33:14 GMT
cache-control: public, max-age=31536000
age: 579930
last-modified: Tue, 23 Jul 2019 19:30:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/css/styles.css

104.26.13.87

200 OK

8.1 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES12/css/styles.css
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
assembler source, ASCII text, with very long lines (748)
Size
8.1 kB (8062 bytes)
Hash
bb3b30d8caf367f51523c305754f4093
4fbea30c637374e5166f6cfb9c500a2917d6927c
58cebcd5ab1f69b51eff978156a670a19ddaed45b299a3f7892c3c768bea6eb2

HTTP Headers

GET /sl/html/ES12/css/styles.css HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: text/css
cache-control: max-age=86400
cf-bgj: minify
cf-polished: status=cannot_optimize
expires: Fri, 23 Dec 2022 20:43:36 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 35707
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P5BWsfGEsQymY7ntATFiR%2FkA30Wx%2Ff3tY4gpemu7PTohKLPovDSnPV5jiywr1KZ3SVmCC2uXYkkAXTQPJ1xDNQUkeXiSn0Sm%2FBs8GTTCcKDE0FvAZgbnW63czCGLxfuxwmthZus%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1894bad0b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 06:38:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b

172.64.163.28

200 OK

5 B

URL HTTP/2
subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b
IP
172.64.163.28:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
5 B (5 bytes)
Hash
68934a3e9455fa72420237eb05902327
7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa

HTTP Headers

GET /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1
Host: subscribe.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/ES12/n.php?cep=mPmCfDSRN31w7sk6iUrk0FKTyX6kkuUD4n75nfARNEH-OIXe43U81fSFNCc3vLOZpibzatIdj6k3kdw0m8RdngRAX-yY58CyhdhLARXbCkKdxmc-tcou19BFZn5SPSOsnDpjFoJcI77-vjkVEEjkLXRsmm0qLbUZy2EOEvrMNYqV6Mll9CT8leppbyS0i4MVZQh7G6pbk3C4a_z9jwldvaLCfdFqc-blxHzQNQEBvzEamG3CdgjY-1NOYEffHUeTxbUguF2Stw5Yva7dZBSQgtw7GvXD99veXd4N8IHhDLviSiIE9cCPue9zAIiDSWIpb42unnwxYivZ0C4I0bnH6FJN9la3aHsEJ2aXI-kJLz65210pN4USrZ_JAywEp8_ER0Cl4XWFnlxaPxZ8nWBtV1V8pNIw9joenFnj9FCqHOtimPn-uwF_GTj0ZPqo2ooy&lptoken=169371b8775893c023fa&external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:44 GMT
content-type: application/json; charset=utf-8
content-length: 5
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9RAXZu0re%2BkDWuB6B1TB5jCrMwcTWPzCkCpL0uT1nz4KWi0mFicFB%2BH7Zp0SnFtp05NAq4qoSCZHJxsD3we05xBxDDGDoXzbzcydnhWAByqMXFUtlKfUzK1CgRaE4ZF3wq1DQpqxah%2Fy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1899199d76cf-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/EmMTM2F0_rU

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/EmMTM2F0_rU
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
384974b2904c51798d306f876ae77fb1
40ade904a51d0eb4dec4915f88e04523ad6b727e
50d65a2fcf597e68d1905399c1ad098aa318214ff72df519c6ac32835422a338

HTTP Headers

POST /s/gts1p5/EmMTM2F0_rU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 06:38:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdnjam.com/cdn/sdialog.min.css?_=4

104.21.58.242

200 OK

1.8 kB

URL HTTP/2
cdnjam.com/cdn/sdialog.min.css?_=4
IP
104.21.58.242:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (6775)
Size
1.8 kB (1769 bytes)
Hash
4cf0fb569d4cd9f438b10b257440afac
56de81fc44b5d353e17ef08d240932ea41d415af
f7a8e788ae2ffe60c2a60ae410cad4c43cf821118efd2c684f8419a35bb13ac7

HTTP Headers

GET /cdn/sdialog.min.css?_=4 HTTP/1.1
Host: cdnjam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:46 GMT
content-type: text/css
content-security-policy: block-all-mixed-content
etag: W/"1d16caacad4ad6c40a99319a5d183947"
last-modified: Mon, 22 Nov 2021 08:00:52 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 16F5E342988C7B8C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OGvppvGtwj4EV4wNwLIOeactwRl2xdlSWKxVgaRvID6MBm3vQfAPRQ6HkCSCHGCdscOa8qZdXeKzKMT7gB1hGq9U9Y0HRJgPx51ZI3yDk5aHgVOy574%2F0iH1O6Rg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df18a2ff2fb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/js/config.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/ES12/js/config.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/html/ES12/js/config.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=701
expires: Fri, 23 Dec 2022 20:43:36 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:28:35 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 35707
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y3wCzkh7qSrztDFiXfwUDbtgmWM1nutKWqd8XIVaxzpH%2FQ2264dzVsROnq1fNtZYB6s%2Fi%2B4dSsCqG90OGuTktkZIhDIAcd2aGDgtp%2FXPARjAbrqSGPGAR%2BB1wsIqNewh%2B80pB10%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1894bad8b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/lib/additional-methods.min.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/lib/additional-methods.min.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Fri, 23 Dec 2022 20:37:22 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 36081
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=brHh2ICgSEEyGg1e3j36mn3PUK3%2BNH1VQZWeHhmzJ95Muga982d9c%2BF%2FKjRAC%2F%2BJap4BfOE%2FppndEwREn%2F2vTK%2BjWOHfTrKH%2F%2BQDzF%2FHBrkje0s3ZOCjsfksujSquycCAzDK5oU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1894bad6b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/cookies-policy.html

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/cookies-policy.html
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/cookies-policy.html HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:45 GMT
content-type: text/html
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Fri, 23 Dec 2022 06:43:44 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uZwuChIuskAyI34QmH1f%2Bo%2FkSm5gBhf8Vy%2BddYIb6bIe7tBLreG0HZRz1FLct9iqkPlXJFp2axBZAbPxc%2BVuEUDWx9fSfQkKbq8jYi0LlJqgpBR3CeGAtpPIhSV29eiEjSwE1v0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df18986d2bb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

v2.trckguardlnk.com/click?a=519&sub_id1=59b0df186bd274a69b5fdf579ff4d0ce90be9607&o=2202&sub_id3=a170c180_3645

35.156.69.71

200 OK

0 B

URL HTTP/2
v2.trckguardlnk.com/click?a=519&sub_id1=59b0df186bd274a69b5fdf579ff4d0ce90be9607&o=2202&sub_id3=a170c180_3645
IP
35.156.69.71:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /click?a=519&sub_id1=59b0df186bd274a69b5fdf579ff4d0ce90be9607&o=2202&sub_id3=a170c180_3645 HTTP/1.1
Host: v2.trckguardlnk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:42 GMT
content-type: text/html; charset=UTF-8
server: nginx/1.20.0
x-powered-by: PHP/7.4.21
set-cookie: U-dd28e50635038e9cf3a648c2dd17ad0a=unique; expires=Sun, 22-Jan-2023 06:38:42 GMT; Max-Age=2592000; path=/; secure; SameSite=None
o_dd28e50635038e9cf3a648c2dd17ad0a=bdc89bea-c01f-4987-9d58-2d951c3a5ad4; expires=Fri, 30-Dec-2022 06:38:42 GMT; Max-Age=604800; path=/; secure; SameSite=None
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/privacy-policy.html

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/privacy-policy.html
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/privacy-policy.html HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:44 GMT
content-type: text/html
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Fri, 23 Dec 2022 06:43:44 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EBZ%2Fv8BsoHa10SBTbdvP33ol%2F0l5lIliogeYQzxtstL26n08ROAwYd0yzxyLJSlg0Y3qthOgJ%2FGmfPanpWR3aV7%2BMVrZ0KuRMSs0Ttnm02xYtwCCAjwH8HqE9Dk6XjyBTRFh7wA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df18986d29b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Fri, 23 Dec 2022 20:37:22 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 36081
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EGjY9hb6pINbwTFan%2FoRzW3dNgIdw82ilssWid15RKkpK61ACbU6Bae0gSTh2ezpef3QobPfq3HOChrq7feBifFyJti0TslwgsoEGg8QhhBmGKJvXAeYDO5l0Um4914ZODTaCJI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1894bad3b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/common-langs.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/common-langs.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/common-langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Fri, 23 Dec 2022 20:37:22 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 36081
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IarIX%2FzYzrwAF5lU3oXx%2FZodxgL5tT%2FgBIoVGSJEkKvY5VVBDzdoTYHokGCToYlNE4hAGZI2tXm1weqf6b8zF3q%2BsVdF5oYPmZr4gkR%2Fjt4anfxHkQSR1dLT9%2Bd5LApsv4hHsFs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1894cadcb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/js/main.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/ES12/js/main.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/html/ES12/js/main.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=1466
expires: Fri, 23 Dec 2022 20:43:36 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 35707
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nw0BZuuz%2F8dOav8umgZOUbSpXUFL2IClSqMS5miCI6dW83A5qJMgGOn3LycPckFRAstQPU%2FTsTBZnmvOIAGBukf6mRh%2FTXon%2FdqpM%2BJppZLMMjmhSMC%2B4PEkM8iVupxsrGTGBsw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1894caedb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn-dt.fcdn.info/swpush.min.js

104.21.234.87

200 OK

0 B

URL HTTP/2
cdn-dt.fcdn.info/swpush.min.js
IP
104.21.234.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /swpush.min.js HTTP/1.1
Host: cdn-dt.fcdn.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:44 GMT
content-type: application/javascript
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 157220
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8cFHcuNzm168M1HYshdNbLTd25KDMpcYmv4VTSe2EQGXLzRjIzSnBgNoij9n7z%2Fts%2FbPsSJb54q72SFSedhRy4V0dRICCJDqrgtj80QmB5ROKcrnrT9Ki%2BPpahX0KqMT9If3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77df1895da8b72cc-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/css/style.css?1671777523

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/css/style.css?1671777523
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/css/style.css?1671777523 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:44 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 24 Dec 2022 06:38:44 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CfU6KNU5O8HjIgBQl%2FBFHXIEuzId0yxXbnu9wQi2hxwOXEcYLXYvRtR85IM5MZP1IZjHn709lCmYMyYlwnacpa3nMAzfTSw1NTH7GXq3CabdumKjSJmR6KoJdHEJqgmwO8lYpCc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1894bad2b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/common/privacy-policy.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:44 GMT
content-type: application/javascript
last-modified: Tue, 20 Dec 2022 16:36:20 GMT
etag: W/"63a1e484-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qcZgqhvze%2FnIpG83het64rZ5yZvMIN%2BQv6wYSoS4mIHs0V66Efjm8PGt5i3huhH4pyJeZnOh3LvsSsoGJtBLLh1L5FzNabYx%2FLv%2FI060QcqNpMKf36JY%2ByCEc1GaNrQWuSCO5Ec%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77df1899addcb4e8-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 25 Dec 2022 06:38:44 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/n.php?cep=mPmCfDSRN31w7sk6iUrk0FKTyX6kkuUD4n75nfARNEH-OIXe43U81fSFNCc3vLOZpibzatIdj6k3kdw0m8RdngRAX-yY58CyhdhLARXbCkKdxmc-tcou19BFZn5SPSOsnDpjFoJcI77-vjkVEEjkLXRsmm0qLbUZy2EOEvrMNYqV6Mll9CT8leppbyS0i4MVZQh7G6pbk3C4a_z9jwldvaLCfdFqc-blxHzQNQEBvzEamG3CdgjY-1NOYEffHUeTxbUguF2Stw5Yva7dZBSQgtw7GvXD99veXd4N8IHhDLviSiIE9cCPue9zAIiDSWIpb42unnwxYivZ0C4I0bnH6FJN9la3aHsEJ2aXI-kJLz65210pN4USrZ_JAywEp8_ER0Cl4XWFnlxaPxZ8nWBtV1V8pNIw9joenFnj9FCqHOtimPn-uwF_GTj0ZPqo2ooy&lptoken=169371b8775893c023fa&external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/ES12/n.php?cep=mPmCfDSRN31w7sk6iUrk0FKTyX6kkuUD4n75nfARNEH-OIXe43U81fSFNCc3vLOZpibzatIdj6k3kdw0m8RdngRAX-yY58CyhdhLARXbCkKdxmc-tcou19BFZn5SPSOsnDpjFoJcI77-vjkVEEjkLXRsmm0qLbUZy2EOEvrMNYqV6Mll9CT8leppbyS0i4MVZQh7G6pbk3C4a_z9jwldvaLCfdFqc-blxHzQNQEBvzEamG3CdgjY-1NOYEffHUeTxbUguF2Stw5Yva7dZBSQgtw7GvXD99veXd4N8IHhDLviSiIE9cCPue9zAIiDSWIpb42unnwxYivZ0C4I0bnH6FJN9la3aHsEJ2aXI-kJLz65210pN4USrZ_JAywEp8_ER0Cl4XWFnlxaPxZ8nWBtV1V8pNIw9joenFnj9FCqHOtimPn-uwF_GTj0ZPqo2ooy&lptoken=169371b8775893c023fa&external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sl/html/ES12/n.php?cep=mPmCfDSRN31w7sk6iUrk0FKTyX6kkuUD4n75nfARNEH-OIXe43U81fSFNCc3vLOZpibzatIdj6k3kdw0m8RdngRAX-yY58CyhdhLARXbCkKdxmc-tcou19BFZn5SPSOsnDpjFoJcI77-vjkVEEjkLXRsmm0qLbUZy2EOEvrMNYqV6Mll9CT8leppbyS0i4MVZQh7G6pbk3C4a_z9jwldvaLCfdFqc-blxHzQNQEBvzEamG3CdgjY-1NOYEffHUeTxbUguF2Stw5Yva7dZBSQgtw7GvXD99veXd4N8IHhDLviSiIE9cCPue9zAIiDSWIpb42unnwxYivZ0C4I0bnH6FJN9la3aHsEJ2aXI-kJLz65210pN4USrZ_JAywEp8_ER0Cl4XWFnlxaPxZ8nWBtV1V8pNIw9joenFnj9FCqHOtimPn-uwF_GTj0ZPqo2ooy&lptoken=169371b8775893c023fa&external_id=b3969352eed21efa1e01f0a3379f3948&source=519_a170c180_3645 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=300
expires: Fri, 23 Dec 2022 06:43:43 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=et7iDFgKMbEKfDx2ZMY7KweywDAzg9xwUcGWGH%2BYoJLK35oBkh71462QsnSIMIwOY55mn0xmyECBO4sa51FJy3gEVe0HCJtw4I5ZI5sEoW28escFs%2FWh1i2LGZmOVhK2OB2JMOg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df18910843b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/main.js?1671777523

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/main.js?1671777523
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/main.js?1671777523 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:44 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 24 Dec 2022 06:38:44 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iu4lLnUg1LpCHg0FnkVorsf2TVBSschotnKAtWYIaF03vY0g0qn%2FaDsEiGFt1gO0lpn12YSzOc9R8BlmYPp8aek%2FossRFs%2BOh1ERafD%2BJzyjCggjmTjQwneZSB43XyQ%2FxttXwFw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1894cadeb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/unsubscribe.html

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/unsubscribe.html
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/unsubscribe.html HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:45 GMT
content-type: text/html
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Fri, 23 Dec 2022 06:43:44 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iovIwm%2Fe2BroAFPWMfwODcs%2F80YFLqNLlWtCPuR2GWn9FY%2F2aPxuH40fuUGSiYa8byZmcYtuUfurE%2Bg5jHEBq9qhkvc5jXDuoHZz81bvpnNul9j3%2FgfRxgcmifp7EzNCCVSkOh8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df18986d2db4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES12/js/langs.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/ES12/js/langs.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/html/ES12/js/langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Dec 2022 06:38:43 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=41184
expires: Fri, 23 Dec 2022 20:43:36 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 35707
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z1QMio855CfFqhKg68iQwo6KEvLqIDsb6dS75e644o%2B2Ce42AutX3L6b8jOZJQgaQqtqDwLvUJI6TwFgnMcnQsPOsp5mjXlVJ4Kejyfrt5y9uWmvnDH%2BpWM987pfeVgnem9t7bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df1894bad7b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations