Report - v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub

Report Overview

Submitted URL
v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310
IP
3.66.74.238
ASN
#16509 AMAZON-02
Submitted
2022-11-28 11:16:44
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
28

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
v2.trckguardlnk.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	2.6 kB	18.194.62.185
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	337 B	1.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
ocsp.r2m01.amazontrust.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	1.0 kB	54.230.80.227
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.218.164.174
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700 B	1.4 kB	142.250.74.3
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.5 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.2 kB	93.184.220.29
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
bl.trackham.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	535 B	1.6 kB	18.193.146.82
mycasualhookups.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	351 kB	104.26.12.87
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	51 kB	34.120.237.76
fonts.google.com	31986	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	9.9 kB	142.250.74.46
cdn-dt.fcdn.info	230544	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	12 kB	104.21.234.87
app.api-push.com	307671	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	3.3 kB	172.64.139.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-28	medium	mycasualhookups.com/sl/common/js/common-langs.js	Phishing
2022-11-28	medium	mycasualhookups.com/sl/common/css/style.css?1669634195	Phishing
2022-11-28	medium	mycasualhookups.com/sl/html/RU2/js/langs.js	Phishing
2022-11-28	medium	mycasualhookups.com/sl/common/privacy-policy.html	Phishing
2022-11-28	medium	mycasualhookups.com/sl/common/js/lib/additional-methods.min.js	Phishing
2022-11-28	medium	mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js	Phishing
2022-11-28	medium	mycasualhookups.com/sl/common/js/main.js?1669634195	Phishing
2022-11-28	medium	mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js	Phishing
2022-11-28	medium	mycasualhookups.com/sl/html/RU2/js/config.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-28	medium	trckguardlnk.com	Sinkholed
2022-11-28	medium	trckguardlnk.com	Sinkholed
2022-11-28	medium	trckguardlnk.com	Sinkholed
2022-11-28	medium	trckguardlnk.com	Sinkholed
2022-11-28	medium	trckguardlnk.com	Sinkholed

JavaScript (13)

	URL	Size	First Seen	Last Seen
	v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=2202	174 B	2023-03-11	2023-03-11
Pretty URL v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=2202 IP 18.195.157.163 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:52:22 Last Seen2023-03-11 21:52:22 Times Seen1 Hash 14843d8f14b58230e91b1b1a5556882f b6abda3a44f0efb0476fb40b1156e58171e5ba8f e3e30f28a41fbb0919606d65d08225bf44f72d5e14d75c9322f0eca61e9735b8 Loading...

	mycasualhookups.com/sl/common/js/lib/additional-methods.min.js	18 kB	2023-03-07	2024-04-10
Pretty URL mycasualhookups.com/sl/common/js/lib/additional-methods.min.js IP 104.26.12.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:43 Last Seen2024-04-10 02:04:24 Times Seen257 Hash 3a53c5eac97b98ed3833970d43bf7fc9 b8805460b5754be8b16a223df737d9577da4c182 8b1554032d2cfbf0e858518df6460b2b4336be2cfb1f188dfd1108a3ae50b2e8 Loading...

	mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-04-18
Pretty URL mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js IP 104.26.12.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-18 02:22:47 Times Seen105063 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js	23 kB	2023-03-07	2024-04-15
Pretty URL mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js IP 104.26.12.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2024-04-15 20:34:02 Times Seen984 Hash 93c1dd8416ac2af1850652d5b620a142 6a76e4c7db479053350580469aa010febfdcacd0 17a879e50c3ab3078afaded288e257fb66e94806b76ff7e796b54226f9848f50 Loading...

	mycasualhookups.com/sl/html/RU2/js/config.js	395 B	2023-03-08	2023-08-07
Pretty URL mycasualhookups.com/sl/html/RU2/js/config.js IP 104.26.12.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:57 Last Seen2023-08-07 07:25:23 Times Seen53 Hash 628061c41e011910d93e2eb32b7e8a24 edaa1d1ca254452b8c77111a7d2dd928276b5971 33015ae6fe9c43a1d94f0b77b94a17e903ca8be952608b85f70ce0df0193161b Loading...

	mycasualhookups.com/sl/common/unsubscribe.html	1.9 kB	2023-03-07	2023-04-05
Pretty URL mycasualhookups.com/sl/common/unsubscribe.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2023-04-05 02:02:09 Times Seen17 Hash b65ff9705865169981f3ac388816cc72 c79a72e04d9b766e27ea4fe8d2a0cc5d9c484c41 67da9ca751409ddfd1a8b1b7a1fdfe5b66b37e6d9b1d0c4e083fb357debca5de Loading...

	mycasualhookups.com/sl/common/js/common-langs.js	15 kB	2023-03-07	2023-07-02
Pretty URL mycasualhookups.com/sl/common/js/common-langs.js IP 104.26.12.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:51 Last Seen2023-07-02 18:22:18 Times Seen47 Hash 9dd6dd34babf310236383a7eb7d569e3 f396ed09424e282aa4e7b96d463541fc42556f46 7ae9fc07390e221821ced9edb8e092859afbc5653d7878c3d3074ed24be2c050 Loading...

	cdn-dt.fcdn.info/swpush.min.js	34 kB	2023-03-07	2023-08-07
Pretty URL cdn-dt.fcdn.info/swpush.min.js IP 104.21.234.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2023-08-07 07:25:23 Times Seen135 Hash af2540aefe6334edb036a720947abb72 f17f394267c73b004d0f2c6dfb8a790aa2d7bf7e 7af8787e4bc78270a5a72a75f86a45ae9d3bd803c3c57ec3efb84d2aabe102a2 Loading...

	mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855	90 B	2023-03-07	2023-04-05
Pretty URL mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855 IP 104.26.12.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2023-04-05 02:02:09 Times Seen17 Hash 366614100df3a1aad7eaa097204bb879 462a34ed6013dced533568a3bafe7bb7da1b212d b52856d21909444a7b1f4afb75479ca00aa7a05fc60cdf860dcb3ce4f0b75f01 Loading...

	mycasualhookups.com/sl/common/js/main.js?1669634195	7.4 kB	2023-03-07	2023-08-07
Pretty URL mycasualhookups.com/sl/common/js/main.js?1669634195 IP 104.26.12.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:51 Last Seen2023-08-07 07:25:23 Times Seen115 Hash b87e1c868deb5fadb6c9661630d4f0db e893295cfb31b37a247c509c53b1eae346c528fc 44523924092ddcf715dae1c6c23059400dfb24781643ddb760b0f6b82724a0a8 Loading...

	mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855	787 B	2023-03-07	2023-03-29
Pretty URL mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855 IP 104.26.12.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:22:35 Last Seen2023-03-29 21:39:06 Times Seen2 Hash 2a5677061f07f9b6ada204560a4abf6b be6639e32a12e7a7519c2b177c7ad4bd4b2edb55 1802b68430b22e5596b969a19a629d39c85f46f98a54460592f619c0bbaed148 Loading...

	mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855	487 B	2023-03-08	2023-05-21
Pretty URL mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855 IP 104.26.12.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:57 Last Seen2023-05-21 15:59:11 Times Seen18 Hash eb3361ce29dba68e5f6374b4129a7240 e9226d27e25cff9e8fd1026b4107d90919d59c14 8eb0cb2db6b9f3b562f0b58f4c9b1f6c48c31cce516872a20efbd90a5c6d33ff Loading...

	mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-18
Pretty URL mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-18 02:44:17 Times Seen54343 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

HTTP Transactions (54)

URL IP Response Size

v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310

18.194.62.185

301 Moved Permanently

134 B

URL HTTP/1.1
v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310
IP
18.194.62.185:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
134 B (134 bytes)
Hash
4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310 HTTP/1.1
Host: v2.trckguardlnk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Mon, 28 Nov 2022 11:16:33 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://v2.trckguardlnk.com:443/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3959
Expires: Mon, 28 Nov 2022 12:22:32 GMT
Date: Mon, 28 Nov 2022 11:16:33 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2025
Cache-Control: max-age=172113
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:16:33 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:05:06 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 10:17:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3527
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2736
Expires: Mon, 28 Nov 2022 12:02:09 GMT
Date: Mon, 28 Nov 2022 11:16:33 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Cdayaobt4m0A3/j7ElR6z54OdmMq1jgkiTaNkPsqMNl1XN+3qCBsH8FQhCrjy6biylE5apVYcKCt6sHnqygGRw==
x-amz-request-id: XNY3BW83856P7K62
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 10:45:00 GMT
age: 1894
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 11:16:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
34ff7c08312ab357f47f915f7f1441da
78bceb7c302f678f58f4f316268a23af8bb893d3
26ecba9732fd5c5cd94792bd42554bd9bd9aa31e728ad4ec6307327ef48891d8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=87928
Date: Mon, 28 Nov 2022 11:16:34 GMT
Etag: "6383355a-1d7"
Expires: Tue, 29 Nov 2022 11:42:02 GMT
Last-Modified: Sun, 27 Nov 2022 10:00:58 GMT
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8F0dAdIam1fGttZfUP0LH0jeBh-Mi2OskIEOLjc7XHvOHQdxxpJhcQ==
Age: 6064

v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310

18.195.157.163

302 Found

329 B

URL HTTP/2
v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310
IP
18.195.157.163:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310 HTTP/1.1
Host: v2.trckguardlnk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
date: Mon, 28 Nov 2022 11:16:34 GMT
content-type: text/html; charset=UTF-8
location: https://v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4309
server: nginx/1.20.0
x-powered-by: PHP/7.4.21
set-cookie: U-c96c08f8bb7960e11a1239352a479053=unique; expires=Wed, 28-Dec-2022 11:16:34 GMT; Max-Age=2592000; path=/; secure; SameSite=None
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3438
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:16:34 GMT
Last-Modified: Mon, 28 Nov 2022 10:19:16 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.218.164.174

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.218.164.174:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yJFwpksoQto0R1MBy73muA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: T75w1YXPrU0GhzWRlQE5GlEsTP0=

bl.trackham.com/c40fc32b-aea7-4400-9940-2d3ec633506e?external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855

18.193.146.82

302 Found

0 B

URL HTTP/2
bl.trackham.com/c40fc32b-aea7-4400-9940-2d3ec633506e?external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855
IP
18.193.146.82:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c40fc32b-aea7-4400-9940-2d3ec633506e?external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855 HTTP/1.1
Host: bl.trackham.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855
pragma: no-cache
set-cookie: c40fc32b-aea7-4400-9940-2d3ec633506e-v4=9wIxubUrd-ELv_-wQLtJZQ3j5vT06bel1p2_kyX9kzw; Max-Age=86400; Expires=Tue, 29-Nov-2022 11:16:35 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=kZtVXz63NN6LqgQ0BapGTseAPeyBcfyh5PWGcke75QPmUQ7ckwNNKT6rTbHC-j-X_Df74sRXI5FL9StSF2J9Mh61kI253v4x7PPQGg9UUEFY1ILIv96uFfpEQ5SpVT6MWMeVxAdPMAUS8dMrqQ-GF4X9hfJ8fIWWT2p5CMfY_xA5AYsrSlb0d7dtkb7Vb9TvlOC-9wHxMoIIv5qJVeNwmh5huLtHUmjZpLPN224ELKkR602xDU04vRIBJcRTey2axquyUUTyA8Wo1p8ME5be-F6oHq0CqFZHjmDsOzZS-BYOA4005dutoAD1Il-XT5ZWJacYuvYudUEYDXTulu3uU8EPADp7crs3tApILWFBoxfXbsLwICK2B_hb6ayQBniHjANMOBUqA4oIeaEwVn2TfRTv-kSF9sW0B-KyzBNgH7Yn-4PCudp93qPRZWrquUEh; Max-Age=86400; Expires=Tue, 29-Nov-2022 11:16:35 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2

v2.trckguardlnk.com/favicon.ico

18.195.157.163

200 OK

318 B

URL HTTP/2
v2.trckguardlnk.com/favicon.ico
IP
18.195.157.163:0
ASN
#16509 AMAZON-02

File type
MS Windows icon resource - 1 icon, 16x16, 16 colors, 4 bits/pixel\012- data
Size
318 B (318 bytes)
Hash
a976d227e5d1dcf62f5f7e623211dd1b
a2a9dc1abdd3d888484678663928cb024c359ee6
66332859bd8e3441a019e073a318b62a47014ba244121301034b510dc7532271

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: v2.trckguardlnk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: U-c96c08f8bb7960e11a1239352a479053=unique; U-f2b5e92f61b6de923b063588ee6e7c48=unique; U-dd28e50635038e9cf3a648c2dd17ad0a=unique; o_dd28e50635038e9cf3a648c2dd17ad0a=46de84e7-1e89-487f-b036-c60dd26a9c14
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: image/x-icon
content-length: 318
server: nginx/1.20.0
last-modified: Tue, 04 May 2021 06:35:26 GMT
etag: "6090eb2e-13e"
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/Dt6OUty8wSY

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/Dt6OUty8wSY
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5f1b000e9f660ddd92f73bb2b89f83ca
7dc8bff967e59a3a4e91a5b4aa0a3cef0c6f94f2
f9be81e686c1f8038fc0a06d34dd3a0e9053600e2498da969e6e00d2a552e166

HTTP Headers

POST /s/gts1p5/Dt6OUty8wSY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:16:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

mycasualhookups.com/sl/html/RU2/images/p1.png

104.26.12.87

200 OK

72 kB

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/p1.png
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 470 x 470, 8-bit colormap, non-interlaced\012- data
Size
72 kB (71788 bytes)
Hash
494bbc5aef3a6bf81a7a6d280cd30a91
21dd9687dad7c2f7fc97494f84136178791fbf62
fa7f290f3c686364205a6e48f3a90425b0de1509667c4cba327b6bded85fc783

HTTP Headers

GET /sl/html/RU2/images/p1.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: image/png
content-length: 71788
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85007
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t6WL%2BJOvJt28lF2IiaHAJdbg8gokxzu1tyh1j5sIKvz4yFvQSM7ggrKB1orVA2yEHroReNfzBXc5yxhMU%2FcqQLGovyidqueu%2B65DhJ%2FOO6ODL1Zk4Yc2%2B2nWyd0IKuH4iKBUUpQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cab660b49-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/images/p2.png

104.26.12.87

200 OK

56 kB

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/p2.png
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 470 x 470, 8-bit colormap, non-interlaced\012- data
Size
56 kB (55912 bytes)
Hash
d17402bdc0fcf83d5878d9074160707f
cb809d72be0902532628bc6766345a2383ba7510
0d05698c116356d975e2996f4db6522dfef1ab6b0f26666b6ec67c5bf601e369

HTTP Headers

GET /sl/html/RU2/images/p2.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: image/png
content-length: 55912
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Tue, 29 Nov 2022 01:51:19 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 33916
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O%2BmacduhCMFmpXOo83UeKkn6rnVYps3ShB4xafsa8PqcvFQ8wZPVElMvfSs%2Fsodsz8EV8d9B%2BRG6owpWHW3mTcIouY3ic8IoyLHb5dDq0oqGrqAhuqNLaqG4eZSJ0OhN8v3o1Ck%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cab6c0b49-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/images/m4.png

104.26.12.87

200 OK

13 kB

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/m4.png
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size
13 kB (12580 bytes)
Hash
70c557deb46154f4594a4a68c6f459b2
12c80c7e03a8b02333835196bc9e76227633a87d
0ce2024114ad366085043259ac2657ca445ab8200685ca945e8b8a9ebd7b0186

HTTP Headers

GET /sl/html/RU2/images/m4.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: image/png
content-length: 12580
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85006
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7uqweMwYQ8YeOwQpNot1HoJbW4wyyfFAmUmQP9zYyP8tql91sHSUBf3BBDbL27cDNUIP6yTr3fu3obKb2jKhDv4QdV9aCcM0pyGzBDViRuC%2B4dVmgnuogDPv%2FWiJulTJ0sHeX0s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb8f0b49-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/images/p4.png

104.26.12.87

200 OK

78 kB

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/p4.png
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 470 x 470, 8-bit colormap, non-interlaced\012- data
Size
78 kB (78226 bytes)
Hash
bd41111acd12d477e09e11090dbefb58
a17a15bd3a700417f9f325bb65aa2b28bd5b82c7
b1088758ed8635e8bd3cf3b1db1a89569af3bfdc606444f4ba8bd4bdbe22f291

HTTP Headers

GET /sl/html/RU2/images/p4.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: image/png
content-length: 78226
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85007
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k4l9anT36NEDVr0t6zC23u9dLQzUZutLJRjo%2BIQez4K5XQUrG2VIZ24oRb3svlWLG48P0TvRWIkURVCHY0M%2B3BqWF78OBoVpmwhmkhrmZyA3CereEOsxMz%2BNBgH66bFsSF9bFuY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cab760b49-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/images/m2.png

104.26.12.87

200 OK

13 kB

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/m2.png
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size
13 kB (13364 bytes)
Hash
09574b395fb72dad469685d2955ff37f
56b46b108e724d0e49d458b3ded7321b0f58c16c
1f751083fcd680a2583b1024f3067ba7400432a8413b2c2779d15a88531db6da

HTTP Headers

GET /sl/html/RU2/images/m2.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: image/png
content-length: 13364
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Tue, 29 Nov 2022 01:51:19 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 33916
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EUMmgujCTqMSvOiWN0BcZfukIgf5R0i2PkCVtsFSBwEnnm5oUSPAkmEABAquh1ijqJlEDpuVkNgh%2BtolSYAq3%2FzrqADv9trhZS6RrEFac3MhjUgZlFsqp8yT%2BJ%2FhFCtlYIukfHE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb890b49-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/images/m3.png

104.26.12.87

200 OK

11 kB

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/m3.png
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size
11 kB (11098 bytes)
Hash
296818e43acc9a58fb83db7091802257
5beea1ab17c5446a423c21becadca646c47195d8
9427ea76fcdb78ef95a266713426fc848ec47c0a848db2708c42120e29c13179

HTTP Headers

GET /sl/html/RU2/images/m3.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: image/png
content-length: 11098
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85006
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mcM%2BfIeFLVYg%2B9RkMSoGdOk1mXej2bC3heMCBJ9vl2cOERHCi2NS9AqQqY%2BEsgBnRHrvLXw2RMFy7spqtDQzThp9IwbyIp5LqTcArWWCQkGZL%2B4zWWef6woLdfxX2si8V7RnwSs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb8c0b49-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/images/m5.png

104.26.12.87

200 OK

13 kB

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/m5.png
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size
13 kB (13059 bytes)
Hash
8eea83352f8e64280addd3cb6b9613bd
3392e29069d3996a394bbaf13e6342dc990450ba
4b39a98216d3813d0aee7dc6cee9a37d4a9910feeedb7853892948c752aaad82

HTTP Headers

GET /sl/html/RU2/images/m5.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: image/png
content-length: 13059
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Tue, 29 Nov 2022 01:51:19 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 33916
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oELUNoZiJ81oGT0OKaMO%2F2TOyBbgDy39ybgytRbfX8Y6%2FUcogyiA1NgFsNKmrud9pxBgFaJFWl9DPVzhAjXDMxY7PjdoTCRJC8ZHiWk1iMVHYWFyWLbX2rMdBtya1u9Rel4qidc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb980b49-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/images/m1.png

104.26.12.87

200 OK

13 kB

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/m1.png
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size
13 kB (13181 bytes)
Hash
c8afa3eeb639bd0be03958c7c41d9b0e
9f994ff365870aca072d551ade941740462aad29
039d6dca957e3c0aadfb23beaabad3dfba54aed212d80ba877ef518d7c65d43e

HTTP Headers

GET /sl/html/RU2/images/m1.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: image/png
content-length: 13181
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85006
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=55eLJuSH5WzlP9FOFzel1knN65DIKOZp9kx%2FAv5TUuxzswjE5Mclu8dTjYvWk1nI%2Fnfv8nRJuKAoSYfys3lABD0A8qNn6OwO5u%2B7kFNBkrE9GB2K%2BWhSXT9%2Fb7ZSv%2BoM5MGPysg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb840b49-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/images/m6.png

104.26.12.87

200 OK

12 kB

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/m6.png
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size
12 kB (12057 bytes)
Hash
a480372e36452358657427972871d48f
2fd2321bdd8a948676c59b06c68349f792ffdc05
870440a46aa0d05ee4b6118e968fc819b75483a563e905cf1c622ee887db1acb

HTTP Headers

GET /sl/html/RU2/images/m6.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: image/png
content-length: 12057
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85006
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IhkqubeNPP%2F6ATKai2RM5cyow3SGX3UZZGPa8V3y0OhBm%2F2EfqyU3Nv7pm7cfwQ8umKw7wlFr0eggudiXEQfrdEkg079yd%2BaZRyrUh2bOM9eiupXLXLYKbTznf0icniUmlwKuNg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb9d0b49-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
6bafb0f1bfd41ffd9e80ed8b58d3d00b
e54028cd9b1364582c527b83e3a0b0d6c8a70f67
89eaf8c3af2323c100f0f6e271c86865464286374f05e2923e0f583a79c9ca60

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6061
Cache-Control: max-age=131867
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:16:36 GMT
Etag: "6383e102-117"
Expires: Tue, 29 Nov 2022 23:54:23 GMT
Last-Modified: Sun, 27 Nov 2022 22:13:22 GMT
Server: ECS (amb/6B74)
X-Cache: HIT
Content-Length: 279

mycasualhookups.com/sl/common/js/common-langs.js

104.26.12.87

200 OK

6.5 kB

URL HTTP/2
mycasualhookups.com/sl/common/js/common-langs.js
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (12768)
Size
6.5 kB (6549 bytes)
Hash
7430e5046cabdbf90754b32edafae04d
abe9525eb2cf598fd2e7840199fd956583b87d1b
2e11890e98e5aa0464853991e83451ba38dfcc196a2365e12c0b14a99f66c605

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/common-langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Mon, 28 Nov 2022 16:48:43 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 66471
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7RWfjCVSDogncuof3CTI%2FWeO7Unw6RyAbYSGmTqf5tOQ8YQ0aYqg2iD%2FwvkWN5Q%2BL6l%2F7BuEZCpW1JQmR0Zj5dkGO3jiqYJXHR4hAAU2fi5mcyTU3BO6y96djuyM9UyxtyJV5Sg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13cab630b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
6bafb0f1bfd41ffd9e80ed8b58d3d00b
e54028cd9b1364582c527b83e3a0b0d6c8a70f67
89eaf8c3af2323c100f0f6e271c86865464286374f05e2923e0f583a79c9ca60

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6061
Cache-Control: max-age=131867
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:16:36 GMT
Etag: "6383e102-117"
Expires: Tue, 29 Nov 2022 23:54:23 GMT
Last-Modified: Sun, 27 Nov 2022 22:13:22 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11345
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 11:16:36 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11345
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 11:16:36 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11165 bytes)
Hash
a8935783026c10470f60033d3a860f7b
65941dd34eb1063a3f7fe2b6790a11a484a06b9a
e88c706458faf5b5512212692392c7c1a0d8e60af62962267166f5cb60ee9c89

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11165
x-amzn-requestid: 9e35d865-adea-4d2a-b20f-beb014cdd42f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JE2VIAMFYgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-7cf4db38152cdfa1448cba3d;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: SFO5-C3, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4YRocKXYUOkfho0bEHNX0xMxhhKNH2Cm3XtQDtQK7x2dFOsipPjfCw==
via: 1.1 dec8fa38a453902521b941c7cd70d33c.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:26:45 GMT
age: 46191
etag: "65941dd34eb1063a3f7fe2b6790a11a484a06b9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.google.com/specimen/Noto+Sans

142.250.74.46

200 OK

8.8 kB

URL HTTP/2
fonts.google.com/specimen/Noto+Sans
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
data
Size
8.8 kB (8776 bytes)
Hash
cc25ccd5f31e89ea851b66e81a6b4af3
9d820a69caaf374437a42a4488df6a670e4fe395
876452740e701bd5c55b3f61d60b4b9bdea73477a2b3ac21aff5d35ef5e952be

HTTP Headers

GET /specimen/Noto+Sans HTTP/1.1
Host: fonts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 28 Nov 2022 11:16:36 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin-allow-popups
content-security-policy: script-src 'nonce-xRvtRZQbc8gaUroiUnMC7A' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=kn-qlnl28WNtEwnLOYUugi61uoz5AfcPnmYDLRIqG663kK1hClQphANoW840gLPHZlofwz-euknXgk28lehrMjuS0CJah6C0p0bZdtl6F5TGqvfn12l9Q7t6OTGxK7wYPGfyVxfLsyAsWa-AGCNV2JrI7gca_ymWeehPQKbQako; expires=Tue, 30-May-2023 11:16:36 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9430 bytes)
Hash
1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 47690
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74165307-11fe-455f-9c90-106d24a6495f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6498 bytes)
Hash
1bb306213437ea24ab879adc9e3b6da4
771d38e18cdfa54052f7cb150b73c03154eb4368
d4cce7533fd59ef11fb8fec4bc114d5be0bacaa9134e3f1536e0d6bac1f58ffb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74165307-11fe-455f-9c90-106d24a6495f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6498
x-amzn-requestid: 2499eb0e-74c9-4c04-ba58-3e65fc452c34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR8IwHU4oAMFaAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383da37-12f14e7a30bc1a75499cb272;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:44:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WaCfMUy6EtOLWvJy1jFbKp9KQzG5v7nq27sIo7d8gFeGesFd4uWdEw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:24:14 GMT
age: 46342
etag: "771d38e18cdfa54052f7cb150b73c03154eb4368"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10119 bytes)
Hash
15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _jTN1lFL0_PS-9DYgE6O2V6s6AYnlGJs0xCEHn761Mxq_asytlaRoQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:40 GMT
age: 48296
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8885 bytes)
Hash
3a1a4e00f1f15827cf651f373863c379
70c2a238f06ca7e56ef80c83738e081bf0de3330
3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:13:33 GMT
age: 3783
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn-dt.fcdn.info/swpush.min.js

104.21.234.87

200 OK

11 kB

URL HTTP/2
cdn-dt.fcdn.info/swpush.min.js
IP
104.21.234.87:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (34449)
Size
11 kB (11254 bytes)
Hash
06fd10c15cb7d9518c48a7434d811ca7
01ed736653a5e1e517568af784bac66269cfbab6
5e7513ecc9b7c3ba1e5e52ec834601cba7e6d672f46510f8ac03a00969f96306

HTTP Headers

GET /swpush.min.js HTTP/1.1
Host: cdn-dt.fcdn.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:36 GMT
content-type: application/javascript
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 432810
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J2VQ6Q0vtA9gRvfbr8m17Wc54snkadttQ5FRoIol2gHToJyjDp3bQwJ%2BooO6R8MDi%2Fj4AJtaIH0ViWiHm1MSGE2gEyt5ZyjNxy6Z7TVD4XpqWN4ZXxtZ4hwbrfx%2BiuNcmtMA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13d8e8a74fd-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/images/bg.jpg

104.26.12.87

200 OK

37 kB

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/bg.jpg
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x900, components 3\012- data
Size
37 kB (36598 bytes)
Hash
c80c180ac6a28573549e83964002870d
f41e5a44394bd1ab5d2ca4aff4a7ced9a5e8ee5a
b60b1d5cdb8a5f8ffb975fbb3cd7201f6f27d647ef21b5dbf27839c260381517

HTTP Headers

GET /sl/html/RU2/images/bg.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/RU2/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:36 GMT
content-type: image/jpeg
content-length: 36598
cache-control: max-age=86400
cf-bgj: h2pri
expires: Mon, 28 Nov 2022 11:39:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85008
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w4BENrWO7%2BDIy32iTZDvaX19Z7Oi8LNWiqABWZ6knXa6m3wxEWxL1Il3x3znAmtTG2n8eIHB7sAAC2ViMs7VyWE1dO4qOOAbEZC5bLE%2FN9Ia8c4ZerP2EL81%2FLhaNK8%2BO5zeu4E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b1401f9a0b49-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/images/age.png

104.26.12.87

200 OK

3.6 kB

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/age.png
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 127 x 113, 8-bit colormap, non-interlaced\012- data
Size
3.6 kB (3644 bytes)
Hash
0798f2a9127a2f7d93d2ddd886776b9e
d187d1c08c21c66314943ee855f4d5fb768acd28
0d828a8f43a3fb3ef10e9f925633d3e4a711f39620085bbd310379e9cd4bbacc

HTTP Headers

GET /sl/html/RU2/images/age.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/RU2/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:36 GMT
content-type: image/png
content-length: 3644
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85007
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EbWE%2FEh2IGoyY4cwQP9LrDYwxMc5HmSXeVuwmtFFvvfT34LR%2BVtez2DrxsPxVKVFjLGo7irjriRqABE7Sr%2FB%2FC%2BJr2HfN09fCxMOH502uM8Kj65z%2FSgnYpcQaoDKm4wzXwpCxf0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b1401f9b0b49-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/favicon.ico

104.26.12.87

200 OK

434 B

URL HTTP/2
mycasualhookups.com/sl/common/favicon.ico
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Size
434 B (434 bytes)
Hash
63d1053e9fe9f7eb81819c89f257feef
59af5293706f43199cbe46304a97a0ac06f0a934
5b0aa29f3b8062052e5a87b2af0c0e7d94d6e7c625614acef4ea6b225e761b95

HTTP Headers

GET /sl/common/favicon.ico HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:36 GMT
content-type: image/x-icon
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 5279674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BPKpGwZnHZLdAvnoW9lpjNb%2FzWcbPS9ujbWFxkE%2BIRjnbf%2FLQTkRenvy3JZ%2BPuykRdGp%2F4ULTdUMjR%2Bd8t59UqLPTQqROCLgbm%2FRGfaFHhYBrP02MIdTHuM2rBRHhYEPiZ0dr88%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b140d87c0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/css/style.css?1669634195

104.26.12.87

200 OK

4.0 kB

URL HTTP/2
mycasualhookups.com/sl/common/css/style.css?1669634195
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
4.0 kB (4045 bytes)
Hash
c969024082babbba7625ccfe1200ad70
c33a7ec8815beab95a821a724650f2c8bb3a7a58
c70dcb06da7b83355c6f741b7856aee6a14fe1fae9bc1496012b908ddd9be7b1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/css/style.css?1669634195 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:36 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 29 Nov 2022 11:16:36 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PuqY3XHvJgitnNaJ7aOneEx54KSg2d6V704JDBXc1Oxgi4Qb5uAdh91gb2G3ZM1FTjUpTHA9gqcEyGrdTuXM0CDCMOz0xetZQbhVz28XPfvPdscJAjGHpDFNlmZVSF8gcHgYFGY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13c9b4a0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
1e88fec673d64cf456aec0474bd4633c
8aa2f295f006a62dfde270ae7ddde642b2c88c3d
23ef93f07479c535314aa9ed488a8337e1cb511306074785c2d4b3623ed42fd8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:16:38 GMT
Etag: "6383694e-118"
Server: ECS (amb/6B9A)
Content-Length: 280

app.api-push.com/get-keys

172.64.139.29

200 OK

2.5 kB

URL HTTP/2
app.api-push.com/get-keys
IP
172.64.139.29:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (2116), with no line terminators
Size
2.5 kB (2494 bytes)
Hash
0dc8f1546e9e5b6e80a22f221b231834
6be7ea979397c7d2b26b5ae473ef1f4ade261ea5
5f307794ff5da9a6ada9d3f74ccd34e5dce7e70d48fbd3d1ebbdad6a1e4c7ba2

HTTP Headers

POST /get-keys HTTP/1.1
Host: app.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855
Content-Length: 89
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:36 GMT
content-type: application/json; charset=utf-8
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CVovr3v4OwIFd3BKFU4dwY4GyjV4F67Ha7ouCtacPhuowLJIE%2FeAeTcCYXVqRIbxhnUTLr30Ta7%2B39qC9LF2yQqxqh128iJHU%2F9pkgvn%2BCs2S2f7SKE2Jtg7LeM%2FTY2FdLZ3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13f2a8f88bf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4309

18.195.157.163

302 Found

0 B

URL HTTP/2
v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4309
IP
18.195.157.163:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4309 HTTP/1.1
Host: v2.trckguardlnk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: U-c96c08f8bb7960e11a1239352a479053=unique
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 302 Found
date: Mon, 28 Nov 2022 11:16:34 GMT
content-type: text/html; charset=UTF-8
location: https://v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=2202
server: nginx/1.20.0
x-powered-by: PHP/7.4.21
set-cookie: U-f2b5e92f61b6de923b063588ee6e7c48=unique; expires=Wed, 28-Dec-2022 11:16:34 GMT; Max-Age=2592000; path=/; secure; SameSite=None
X-Firefox-Spdy: h2

v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=2202

18.195.157.163

200 OK

0 B

URL HTTP/2
v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=2202
IP
18.195.157.163:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=2202 HTTP/1.1
Host: v2.trckguardlnk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: U-c96c08f8bb7960e11a1239352a479053=unique; U-f2b5e92f61b6de923b063588ee6e7c48=unique
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:34 GMT
content-type: text/html; charset=UTF-8
server: nginx/1.20.0
x-powered-by: PHP/7.4.21
set-cookie: U-dd28e50635038e9cf3a648c2dd17ad0a=unique; expires=Wed, 28-Dec-2022 11:16:34 GMT; Max-Age=2592000; path=/; secure; SameSite=None
o_dd28e50635038e9cf3a648c2dd17ad0a=46de84e7-1e89-487f-b036-c60dd26a9c14; expires=Mon, 05-Dec-2022 11:16:34 GMT; Max-Age=604800; path=/; secure; SameSite=None
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/js/langs.js

104.26.12.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/RU2/js/langs.js
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/html/RU2/js/langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=33329
expires: Mon, 28 Nov 2022 16:37:13 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 67162
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eXn%2BSPuiJ7drsK25y8QHOWDyO2rqFDmg4qi%2BG2lk8EWOVpxWQ82gmrq%2BC%2FmQqFQtnvv1tbl0QwAZ%2BI6WY1efpLnlv83qlei%2BZxU0KPDJ0jesqIQKRntI29Vygrq%2FdbtI%2B1axipk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13cab530b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/images/p3.png

104.26.12.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/RU2/images/p3.png
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sl/html/RU2/images/p3.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: image/png
content-length: 76183
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85007
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zOVN2YgtzdOV7pBfLzN2k1P%2FGoKA8L3j5IDw6hd88a6lWoXrXUelJfIf0XqE5snH3VZPTb0ENmrytT3SiXqLibrBk6lFktpwcdPJ3BqCH%2FJ2%2B0ysXS87ydVmfAXM0lrXAOcebko%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cab730b49-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/css/style.css

104.26.12.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/RU2/css/style.css
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sl/html/RU2/css/style.css HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: text/css
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=8687
expires: Mon, 28 Nov 2022 16:37:12 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 67163
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=004lhcdd3jwjyfEO92JairhJr9%2BkytBGcSpaE2XgydRhHG7hTjxsEs1LYizNfow1zpLSITRCaNpMCcq3xoUj%2BxlQc5wum5k3Y5NB6Iw1jfjMEJLHZVoo0pUms1mH7XV3S51sO2g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13c9b480b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/privacy-policy.html

104.26.12.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/privacy-policy.html
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/privacy-policy.html HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:36 GMT
content-type: text/html
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Mon, 28 Nov 2022 11:21:36 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1pC9Dxihxh3HM8F3xBJAOzRHqBtph6AU387UvhV%2Fu1xYqS%2BzRch0RUiWUYHThxU3vPM632vfdLVeQuH3rEl7a1p6gMIaGs6ZzZxxIxIhBGsLDuR2bzoUpwXoqgzwsxOr41iIfuQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b1401f7f0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855

104.26.12.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=300
expires: Mon, 28 Nov 2022 11:21:35 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DIvvYjAeNW5L1aV6eUb%2BB3JmaKHilq4j6AdoYZel5Zys%2BNii7Lp5Zg72jj0wjR3iBdhVqt41E9pChqnoAFpvtCpOz8K7ZLh2McJ3QjXrrUo9A38Johyf3d7qfRp83PqibbRW2bg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b1390ee50b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/lib/additional-methods.min.js

104.26.12.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/lib/additional-methods.min.js
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 16:48:43 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 66471
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kxXEKBl%2BB76vxbipRoEGTXKU%2FlpcGQNPuA4B7%2BR4uJ%2FjmPb8sXT3kJO4rzKT%2FRYa%2Fq3pWjQNo7qU9iFZ0TuFbBdFcgSXgY4Oa7%2Fs8uUbDZpGnCOWnkS%2F1ern%2Bl01Gy0iQD7BHO0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13c9b4e0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js

104.26.12.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 16:48:43 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 66471
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c3MUDBoVlzgrqk9Oo3DndSc8VisLZPzi3JNHmbDN9%2BMfVz0EtXlpowTYqBP8rk2C6t%2FeaDIY%2FXhIydNLGXTQZmH6ED7YmsPHxb5AqqggaPtNLebEvS3Hn%2FQ4Q%2BuUQe6gWYgEz5o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13c9b4d0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/main.js?1669634195

104.26.12.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/main.js?1669634195
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/main.js?1669634195 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:36 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 29 Nov 2022 11:16:36 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uXBQMtIiLxp3uhkv4NuJe40gzBeBFePBQ7MTn3A7fNd%2BwvTHkw8sjxB0LGnUkEGGPmEjiRKy0%2F0JdZi5xPOzu6adkGCATDTGt4AD3Sn%2FvT0k6SIWRbIh%2BtrX62In4M%2F3wQJxpb4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13cab640b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js

104.26.12.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 16:48:43 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 66471
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xAdVGkUALxZChPcb2YJ%2Bp4JDqumcVV5OlEQ2c3GTqimnkkrneTZvCcgeDpqkyZB67bIEbkvmXDTQn7UexIRJIRh9OkKfI03CCQII0xJXGg98INWlsBNBgMdmkLYQCy2X7lCGu%2Bg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13c9b4b0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/RU2/js/config.js

104.26.12.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/RU2/js/config.js
IP
104.26.12.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/html/RU2/js/config.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 11:16:35 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=701
expires: Mon, 28 Nov 2022 16:37:13 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:29:38 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 67162
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e4j2G8ycVxcb7ibYn83LcJ%2Bt%2FWci15hzIOxknOhKVPNhtbttbG7A1jEfcY2P6dY2FuJs6bGjmyWCVIS41mHCA3g7e4TDptLF1wpocAdX0lfZfDXFPxp%2F%2BUcph3h82tpPBCOJChk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13cab5f0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations