| hot-desire.com/ |  104.21.235.204 | 301 Moved Permanently | 0 B |
IP104.21.235.204:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: hot-desire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 15 Dec 2022 00:24:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 15 Dec 2022 01:24:08 GMT
Location: https://hot-desire.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0zDq%2FdZjyNsxckm0uCrRO5Ki7fLR4ccUZpE6ZSmJANeWD80JNu55DCTj1MlgDVC8KJefTjh%2FVcRisdwSUx4gScSunWvoKgZxoZy97BdgHDyic1OvqlR0MZgkrGBUwsrAhw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 779b08dcbed2dd27-LHR
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ |  23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash3c0c53379f331e934f61070074d41035 420f6e542cbf741838566f22e475a80e2f600d21 4b7213ec107cdf1c2cd61a124453fb682ec291af0004d071105c87e2fe7528f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B7213EC107CDF1C2CD61A124453FB682EC291AF0004D071105C87E2FE7528F5"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15659
Expires: Thu, 15 Dec 2022 04:45:07 GMT
Date: Thu, 15 Dec 2022 00:24:08 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash555d8608594803d49eeb9581c6b70702 d01e0201e0ba0cf751ef97226620338a853bc635 2885cdac311a30161a8ac9ef8e54c788afafd4f86ed197a651fc6d8bda077908
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2885CDAC311A30161A8AC9EF8E54C788AFAFD4F86ED197A651FC6D8BDA077908"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15280
Expires: Thu, 15 Dec 2022 04:38:48 GMT
Date: Thu, 15 Dec 2022 00:24:08 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 15 Dec 2022 00:08:54 GMT
content-type: application/json
age: 914
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashd29881eeb0456eff8cf415ad2ce64ba0 e3cfdd5f56ff88066257ec8f4726f53e3a733bd3 2cd90072f113163f976ddb8bc7017884efd3f764e7e8961b04e3ba5ec0a17d85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CD90072F113163F976DDB8BC7017884EFD3F764E7E8961B04E3BA5EC0A17D85"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5522
Expires: Thu, 15 Dec 2022 01:56:10 GMT
Date: Thu, 15 Dec 2022 00:24:08 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tjIDz7wxe/p4SXkgkK2/TkWkT46dpmH3MMTSLPbzbvFAPTZZ/e3ek/UwzBL9aqS/t5xGl04zph8=
x-amz-request-id: E5PB2F983TDDQ1WA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 14 Dec 2022 23:52:33 GMT
age: 1895
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashebd7de07f350de58825639868d328153 96f6f89fd68d92105463e5a33138183220595a2b f69f9d750578d4d81c95e1b706fa0730eee64cca1d3face710277d68abb047f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=139396
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 00:24:08 GMT
Etag: "6399e6ac-117"
Expires: Fri, 16 Dec 2022 15:07:24 GMT
Last-Modified: Wed, 14 Dec 2022 15:07:24 GMT
Server: nginx
Content-Length: 279
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 00:24:08 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashebd7de07f350de58825639868d328153 96f6f89fd68d92105463e5a33138183220595a2b f69f9d750578d4d81c95e1b706fa0730eee64cca1d3face710277d68abb047f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=139396
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 00:24:08 GMT
Etag: "6399e6ac-117"
Expires: Fri, 16 Dec 2022 15:07:24 GMT
Last-Modified: Wed, 14 Dec 2022 15:07:24 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 14 Dec 2022 23:33:20 GMT
age: 3049
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash210b7a2584ae55362c4b582e325f37f7 5f1982f961f1c5db96bbb66af075bab3cb535963 cb3767debad90cb8a34ce287de194cdb2a4f7146e7b51560fd2e0eb11fbfbc2f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1289
Cache-Control: max-age=119056
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 00:24:09 GMT
Etag: "63999230-1d7"
Expires: Fri, 16 Dec 2022 09:28:25 GMT
Last-Modified: Wed, 14 Dec 2022 09:06:56 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 52.43.158.219 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.43.158.219:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Wi4btTGYvx+SOjhi0/Ktug==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 26pUyG6s8JH/HOkuPRMMpUQhfpU=
|
|
| m.luvmenow.com/click?offer_id=5246&pid=31430&ref_id=s8hnpa7cb0g1&sub1=28582&sub2=91.90.42.154&sub3=s8hnpa7cb0g1&sub4=&sub5=&sub6=&sub7=&sub8= | 104.21.11.83 | 302 Found | 0 B |
URL HTTP/2m.luvmenow.com/click?offer_id=5246&pid=31430&ref_id=s8hnpa7cb0g1&sub1=28582&sub2=91.90.42.154&sub3=s8hnpa7cb0g1&sub4=&sub5=&sub6=&sub7=&sub8= IP104.21.11.83:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?offer_id=5246&pid=31430&ref_id=s8hnpa7cb0g1&sub1=28582&sub2=91.90.42.154&sub3=s8hnpa7cb0g1&sub4=&sub5=&sub6=&sub7=&sub8= HTTP/1.1
Host: m.luvmenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 15 Dec 2022 00:24:10 GMT
content-length: 0
location: https://meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_639a692a21e612000124bde6&s4=31430
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=639a692a21e612000124bde6; expires=Fri, 15 Dec 2023 00:24:10 GMT; secure; SameSite=None
afoffers={"5246":1671063850}; expires=Fri, 15 Dec 2023 00:24:10 GMT; secure; SameSite=None
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YlCN8c%2FAXaTlYG2kA5Uw7YjvEsVWPE97CCZIvm9POO%2F44ccEMNVRdkqZUDzeqBxXZCjS%2FSN88ia55AxUOCrTMVFYBIE4gXD7fAy6T6q86CW8kiONWyZpeORqzDcPkPX2EA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08e01ef7b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp2.globalsign.com/gsalphasha2g2 | 104.18.21.226 | 200 OK | 1.4 kB |
URL HTTP/1.1ocsp2.globalsign.com/gsalphasha2g2 IP104.18.21.226:0
Hash31183485f3e8df2e4daea565439ca58a 08a9ced02415e5cac379558ab70cd393b9b7684b 053f07228db9ce80747297b6fdef05cc17b839347e8c98c5e9090d8a5090b30f
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 00:24:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 18 Dec 2022 21:18:51 GMT
ETag: "08a9ced02415e5cac379558ab70cd393b9b7684b"
Last-Modified: Wed, 14 Dec 2022 21:18:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 353
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 779b08e8691d0b02-OSL
|
|
| meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_639a692a21e612000124bde6&s4=31430 |  34.242.160.154 | 302 Found | 269 B |
URL HTTP/1.1meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_639a692a21e612000124bde6&s4=31430 IP34.242.160.154:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashbbb8fbef0e20828dc53f8da02bb113d9 8e63ad1ac5a118c0ac1fc87993d371b4ddd57975 380e0dff821b4e2f08916fff914fa46910c4adb25dcfdee35ee8f3217e7624d1
GET /?a=16295&c=43694&p=r&s1=&s2=a_639a692a21e612000124bde6&s4=31430 HTTP/1.1
Host: meshho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 269
Content-Type: text/html; charset=utf-8
Date: Thu, 15 Dec 2022 00:24:10 GMT
Location: https://fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_639a692a21e612000124bde6&s4=31430&ckmguid=7c179ff4-11f0-4506-b503-d9553b86ff98
Connection: close
|
|
| ocsp2.globalsign.com/gsalphasha2g2 | 104.18.21.226 | 200 OK | 1.4 kB |
URL HTTP/1.1ocsp2.globalsign.com/gsalphasha2g2 IP104.18.21.226:0
Hashb27153ba7bfe98a80892b2ed248153aa 1fb2737e374e52dc108713fbf3425cfc08b9b069 a22807c3b69ad5a98415a6271b51db9f49a5db7871b88b9018289abd0b34e531
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 00:24:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 18 Dec 2022 21:18:53 GMT
ETag: "1fb2737e374e52dc108713fbf3425cfc08b9b069"
Last-Modified: Wed, 14 Dec 2022 21:18:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 352
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 779b08e9b9cf0b02-OSL
|
|
| fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_639a692a21e612000124bde6&s4=31430&ckmguid=7c179ff4-11f0-4506-b503-d9553b86ff98 | 54.154.42.150 | 302 Found | 234 B |
URL HTTP/1.1fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_639a692a21e612000124bde6&s4=31430&ckmguid=7c179ff4-11f0-4506-b503-d9553b86ff98 IP54.154.42.150:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash1587315254ebe1961f38a54d02cc79cc 9ab9079824466c0a69890ebb518411f076270a73 92c048ee13f95473470b92cd23da04939fa91dbb4f91737c46e159d53b144774
GET /?a=16295&c=43694&p=r&s1=&s2=a_639a692a21e612000124bde6&s4=31430&ckmguid=7c179ff4-11f0-4506-b503-d9553b86ff98 HTTP/1.1
Host: fordats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 234
Content-Type: text/html; charset=utf-8
Date: Thu, 15 Dec 2022 00:24:10 GMT
Location: https://bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-739807593&source=16295&sum=#p#
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=21s9AvvtBMf0/LOJgrl3UiUu4w8DpPoPCITQ7FgtpwiM/7gTT7xPCw==; domain=.fordats.com; path=/; HttpOnly
trk=hN1PTc4VpxABflLY7+sDKiUu4w8DpPoPCITQ7FgtpwiM/7gTT7xPCw==; domain=.fordats.com; expires=Sun, 15-Dec-2024 00:24:09 GMT; path=/; HttpOnly
c36197=21s9AvvtBMdX0CSQupqbsSo4dEGSaJFz6AgB6qEWBlZeCUghiDE1Zg==; domain=.fordats.com; expires=Sat, 14-Jan-2023 00:24:09 GMT; path=/; HttpOnly
Connection: close
|
|
| bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-739807593&source=16295&sum= |  18.193.146.82 | 302 Found | 0 B |
URL HTTP/2bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-739807593&source=16295&sum= IP18.193.146.82:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-739807593&source=16295&sum= HTTP/1.1
Host: bl.trackham.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Thu, 15 Dec 2022 00:24:10 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/ES11/n.php?cep=3e8Kl6mVm4-IZzTuGZwoR6ttW4RMA7-GzSGUssTcLjPLdyodXgVgbD0ptPYOazfftRYXgUpirnMJ_1v2ow7a8n5Xkkox4munV6XTYYvjo-RlD8Gc1jwJE6mSzj4cGsA15xkm5fPWefiNbPtrKiIr9mGz857M8OtbBMysbN-M9CrkdAVwacaLkXLFKHEIpejaDRa0k3SJFr3UHrQgL_xI_y25ZsnelDWqj9rtVR5NDGOFeOz2cTp5Js2HmjDiesaT7HQjjspFfcnelSMRsxp-8vZWRruT_V4RjQQ_oFSOw2wuhbgy_BqKpgMYQLrHgmxCuMvsEqCVVL6OZutwKXKspZglN28ZycivgF5yVASGJa1RS5__4Zm9x5_zpPfxSTDhPx2XkU6swqN2fDfj60b6Qg&lptoken=16c071390615563e50c2&external_id=36197-739807593&source=16295&sum=
pragma: no-cache
set-cookie: f9908105-7257-45be-97c0-9990466cb2a4-v4=__WvMNxJJTpFbfSFQ23Xwz_M9GnkhUys3sCkgJs1X14; Max-Age=86400; Expires=Fri, 16-Dec-2022 00:24:10 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=W-CGUhBbq4zdfywyKpqbUYY4rlaNacd_k4aTapuRvHfeKqzEKJ0TbGjU3n0CfHg89WFCKSfZGbjFIHDYpQeV78-ZtS5fDQ0aBTVPaaAy_Xvql1sguUIh0-ruiMnHsHX3nXiuHDsrR7vSqcCsaGUCArimlbe_GVdNxjJrM9c4MwVDrtuUHjNRYft5OCAXwTiLtDCrt3eD1Xnm-cVPOAVg8-efHno8TdS1wnSTd39ComdXPH_tMJRJsMtV9btZwSl70QufzORA36HBQstJoc9O2i0zDMfQJfUzp7gA195m5rVykMawA29GAI94HofLCgW0eakTT9za9dMm4HyGWz6QuyqcD8rGRE7q58hfrZJvJy1o8g3jW7fcUpzhIgH28IWth78mkMyD4xvEbd5fgnpjMA; Max-Age=86400; Expires=Fri, 16-Dec-2022 00:24:10 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/Dt6OUty8wSY | 142.250.74.131 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/Dt6OUty8wSY IP142.250.74.131:0
Hashe66feed826b9311254d1f86f8361e720 aa64d383d004bcdc55bbec68a863b1e6cd3518ce 6ed8936aeed55d0b90562d1b18d3ac2db927eb26689ba933ccd463869f674e85
POST /s/gts1p5/Dt6OUty8wSY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 00:24:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash08f7321e01de2d111fc8100424937061 01ea459fe9270ea25e3cec2228d1cf3cd61d80b8 36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4020
Expires: Thu, 15 Dec 2022 01:31:10 GMT
Date: Thu, 15 Dec 2022 00:24:10 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash08f7321e01de2d111fc8100424937061 01ea459fe9270ea25e3cec2228d1cf3cd61d80b8 36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4020
Expires: Thu, 15 Dec 2022 01:31:10 GMT
Date: Thu, 15 Dec 2022 00:24:10 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash08f7321e01de2d111fc8100424937061 01ea459fe9270ea25e3cec2228d1cf3cd61d80b8 36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4020
Expires: Thu, 15 Dec 2022 01:31:10 GMT
Date: Thu, 15 Dec 2022 00:24:10 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F886cc6e3-a038-4e4d-8da0-caf399786ff4.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F886cc6e3-a038-4e4d-8da0-caf399786ff4.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb76e8c43482cb1f6e9d3f5dd55185382 364236e338c799f7d7a604882451428d12cdc7c7 375600e8bedfec8fa85da9298fc3322b91e97261dee7fd94b1dad8e6f4faed67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F886cc6e3-a038-4e4d-8da0-caf399786ff4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4523
x-amzn-requestid: 5404595d-f42f-49a0-9438-093b2fb1b852
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dBXWTGEcIAMFdnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6396d28e-17f927945ee836a91a3148e0;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 07:04:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JBIoHXeeJIsyl_wj57ZEP_f1mg3eq0WJjgKveuc_DslNZzSiVf62Og==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 07:19:07 GMT
age: 61503
etag: "364236e338c799f7d7a604882451428d12cdc7c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f56798-4039-4a1a-9490-f61d1b1e77da.jpeg | 34.120.237.76 | 200 OK | 5.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f56798-4039-4a1a-9490-f61d1b1e77da.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash672ae812012d060ba75fbb8cb9d6038c 2ab1016451432b6cd1d6b9756c6cc6a926ffa7ce cd9c002af775a6ba6ff8902a67e19c2ed2663d23bf8a1c3fe763598a60ba8d69
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f56798-4039-4a1a-9490-f61d1b1e77da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5259
x-amzn-requestid: 21c0e355-e696-4785-a162-5f96e02836f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c3fV1HHKIAMFsjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6392df58-608335604793d9f46939a81a;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 07:10:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BYwjCf0sQ3F2gNE6x5Q5K6D_PhMXV-T8kPGRpVHIdouM_I9sU7bMOw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 01:48:41 GMT
age: 81329
etag: "2ab1016451432b6cd1d6b9756c6cc6a926ffa7ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F789b3579-e18f-4137-9016-fe77da33e730.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F789b3579-e18f-4137-9016-fe77da33e730.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash43eaf6688d03f8c725155d489878edf9 d1e5800030de5916d12ae7f0ccf59f0d4a105fa5 069386dfdfc06e668c0aa4bd6bdf2c948a8b9ed051e3e32eede5d362f9d48466
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F789b3579-e18f-4137-9016-fe77da33e730.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13489
x-amzn-requestid: 0ba623aa-2112-4328-94d8-9c0ddf204e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c-ERYE53oAMF7yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639580d5-6d50b25f49cae43752e25a86;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 07:03:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UMxAU_3TGyas4vg-bUmfTlkZ2NpCX2rQ7loyqpJofgw3LsLUHzXacw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 21:58:57 GMT
age: 8713
etag: "d1e5800030de5916d12ae7f0ccf59f0d4a105fa5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01abf6b9-c226-4fb9-a04c-780bd7d2c72b.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01abf6b9-c226-4fb9-a04c-780bd7d2c72b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8cb5e379cd1deb179af4327a86d050a0 b2fa0167851b144bac3d3bd15d3757fa0af3bfd4 2bb59761578f1cf22838c159b92f09a4b498f9edfc71f011c7e46ec237d48cf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01abf6b9-c226-4fb9-a04c-780bd7d2c72b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4458
x-amzn-requestid: 3deddf47-7d8e-44fa-a99e-f91115c41a34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c83JiEjmoAMFgQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63950570-511c31485398647522ec02f7;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 22:17:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sQvYfsIlJjW-_wYeU8W39ithdlePThC78UZ7wjR0k3Bjb_qJ_Hz3dQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 01:52:56 GMT
age: 81074
etag: "b2fa0167851b144bac3d3bd15d3757fa0af3bfd4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fdd629d-f240-4f70-976e-0a71b7c9ed76.jpeg | 34.120.237.76 | 200 OK | 5.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fdd629d-f240-4f70-976e-0a71b7c9ed76.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash950417131e4e9f1238fc585984f327b5 da28ff9df8e2e423cce7ae247a3e8c8469507c4b 0504b92466cf49c1072ba9d9776d921c76fbe3a1542bc202e9751d9c40566597
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fdd629d-f240-4f70-976e-0a71b7c9ed76.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5834
x-amzn-requestid: 63e69ca6-85d6-43e2-9d42-ddff1617fd7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dJ9R8EAZoAMFtUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639a4272-40e8a981097612402ae21532;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 21:38:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: BUQNBTltYqTVBkbt9QQtXS3vQjvM26E6SuvPdIFqVuq1eusUVL5K3g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 22:32:22 GMT
age: 6708
etag: "da28ff9df8e2e423cce7ae247a3e8c8469507c4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0d2294cdacdc84b8b19874ba56035a6d 53009a81b15e464d5529d36b1e04b841b2ae034e 67d59aa026b43ed3f698f3853b986fc7c07e4e6e5f7b3551e59238f79978480a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7616
x-amzn-requestid: 71bbe208-11e3-4280-bf09-bff8bd18fcb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c82fXGmPoAMF3Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63950462-12393ca432808b7f0b2771dc;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 22:12:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7aqhogNxvIgQ_WqzVaVjsoulT568Lgsn_I-nLNpCi_rhcUs7AiCkkQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 17:01:37 GMT
age: 26553
etag: "53009a81b15e464d5529d36b1e04b841b2ae034e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/ES11/images/01.jpg | 104.26.13.87 | 200 OK | 59 kB |
URL HTTP/2mycasualhookups.com/sl/html/ES11/images/01.jpg IP104.26.13.87:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x600, components 3\012- data Hash51df31f09df7b6f59095d090ee85ef8b f907f6d8368c98a4c93ac30fa07baf896463f0e8 4098ee580cbb67c6b532037b0cabd518805f634c38afab3ea10ed3ed11661ada
GET /sl/html/ES11/images/01.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: image/jpeg
content-length: 58814
cache-control: max-age=86400
cf-bgj: h2pri
expires: Thu, 15 Dec 2022 22:20:57 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 7394
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7dFBHHCfkEuZ52TELn3rjjFu7gcOzn6KKaKAnzoX%2B2TgzBpdOHVi%2B90IEH%2BaWCu8UYO1kPBE%2BiIfxvanuSW16RApeHL4odvQNFnJbbzq171N8nIBHI4lB%2Bm99BR0L5T%2Fx%2FesHYg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 779b08ef6883fac0-OSL
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js | 104.26.13.87 | 200 OK | 32 kB |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js IP104.26.13.87:0
File typeASCII text, with very long lines (65451) Hash8e0a5586f224dfd081c89ef40cfae30c 70d7ac6cbfb715237ce779d84b4f249d7f87541a bac07c29b33f66b1a2ecf373cbc9ed03e3ee01f5f33275d29170066d56476ed6
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Thu, 15 Dec 2022 19:15:22 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18529
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y1LL0q6ZrTfYEEqXrmOlZAv5FL2HbDIzcdv%2BrTYgwwcM3ERXwpVDqoBtezY%2FhxSrrLyiBwjEO4O1RSaVNn8grYNJvc8V03KYsSd67qroB%2BmzSyj7EMxl29JK5gruhQsBVXWHYJ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08ef6879fac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash6e33dba2c65a15a1740f8958f94c8063 c93fe68fa218a967d831a8c7ee7205b147f2853f e0ae9288549b35b081d8055fc835d556099abdf1d6fd5d348122de90904f9403
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=164952
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 00:24:11 GMT
Etag: "639a4a83-117"
Expires: Fri, 16 Dec 2022 22:13:23 GMT
Last-Modified: Wed, 14 Dec 2022 22:13:23 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
|
|
| mycasualhookups.com/sl/html/ES11/css/style.css | 104.26.13.87 | 200 OK | 2.2 kB |
URL HTTP/2mycasualhookups.com/sl/html/ES11/css/style.css IP104.26.13.87:0
File typeASCII text, with very long lines (6417), with no line terminators Hashe40079f93a989dea98b6adf4044513ad 4671565e355e89f9ab45207ebb75b8067c9e374a 12f2f1611ee1b1d488031cd61936c68a830e2565732ace43c62f57cab0d774c8
GET /sl/html/ES11/css/style.css HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: text/css
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=8344
expires: Thu, 15 Dec 2022 22:20:57 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 7394
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uHgqpJlqoTuthOuFnhPZs8LucTR%2FMe54mK3tcCNI8762JblyorgCZnV%2FXVNS76XByzLbyDuBqAttPzuxDyCIu6DAuIcMEIO4THCEVrr6a8CMiFf0Fhj1xT0SOr4II2iyvAHlsjU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08ef6876fac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash0b20a471b133c2e03d194c346b8ac9b2 74b7f77ac2ddea5751d3a5a0a3ad70c599f8be92 0e686c0b842717e369904f83e9170ba0f25aa289ad05eac512400e14a2ff89d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 689
Cache-Control: max-age=115606
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 00:24:11 GMT
Etag: "63998710-117"
Expires: Fri, 16 Dec 2022 08:30:57 GMT
Last-Modified: Wed, 14 Dec 2022 08:19:28 GMT
Server: ECS (amb/6BBC)
X-Cache: HIT
Content-Length: 279
|
|
| cdn-dt.fcdn.info/swpush.min.js | 104.21.234.87 | 200 OK | 11 kB |
URL HTTP/2cdn-dt.fcdn.info/swpush.min.js IP104.21.234.87:0
File typeASCII text, with very long lines (34449) Hash06fd10c15cb7d9518c48a7434d811ca7 01ed736653a5e1e517568af784bac66269cfbab6 5e7513ecc9b7c3ba1e5e52ec834601cba7e6d672f46510f8ac03a00969f96306
GET /swpush.min.js HTTP/1.1
Host: cdn-dt.fcdn.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: application/javascript
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1222043
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rpjkXxW%2F5PQYusXp6yaoZ7%2BmDbEAs1Djp%2FPr2Vc2%2FycKgZdQNASaEyNvdYVlGYPiZMW%2Bz00083nCwNqZMHmdxo0Rib2oZyxrV%2BVquaqpWn2MaIWn%2FaMfuWtPsj8M39puK8%2BN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 779b08f029abdd4c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash0b20a471b133c2e03d194c346b8ac9b2 74b7f77ac2ddea5751d3a5a0a3ad70c599f8be92 0e686c0b842717e369904f83e9170ba0f25aa289ad05eac512400e14a2ff89d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3817
Cache-Control: max-age=118734
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 00:24:11 GMT
Etag: "63998710-117"
Expires: Fri, 16 Dec 2022 09:23:05 GMT
Last-Modified: Wed, 14 Dec 2022 08:19:28 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
|
|
| mycasualhookups.com/sl/common/css/style.css?1671063851 | 104.26.13.87 | 200 OK | 170 kB |
URL HTTP/2mycasualhookups.com/sl/common/css/style.css?1671063851 IP104.26.13.87:0
Size170 kB (169806 bytes) Hashf66050a39bd574a5ab594068dfde50fa 9049c768b772a44d8f14c57c393387c865bd96f2 28d2bc3ae38f00f5326f21a6900c213c7f1686c0e8a4863ed4bd0888a0c55be6
GET /sl/common/css/style.css?1671063851 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Fri, 16 Dec 2022 00:24:11 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8UwYBqYAi%2BMbw72TWnDVXnEruZjMx2%2BSxW3WlWxEKNCrNwMeNu8HFx%2BkBEx851GER9UQRgI%2FMwXASNaTpDc1m0jihCqnC4fTPyhZLJROHx7EvA1DVaO1kaTdyjJ8LXBzxlpisJ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08ef6877fac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/ES11/images/bg.png | 104.26.13.87 | 200 OK | 938 B |
URL HTTP/2mycasualhookups.com/sl/html/ES11/images/bg.png IP104.26.13.87:0
File typePNG image data, 4 x 4, 8-bit/color RGBA, non-interlaced\012- data Hash4a31108b720e625e216849d8cc915a7c 2f402a077c309a2921b5f1b3c658b1a5cc1dcf51 bbbb6afb30bdc0a925e7ce10fdcd74613185d5fc2060c1dc2efee7693a4c8d1f
GET /sl/html/ES11/images/bg.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/ES11/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:12 GMT
content-type: image/png
content-length: 938
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
cache-control: max-age=86400
expires: Thu, 15 Dec 2022 22:20:58 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 7394
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9kFrkOx055%2B2LnGKx3SOQjDqCHOgBVswy%2BEEdvyS3RMm3pcu9VBCTMwJNV09rhLT3fCQMM2WHnmOnxzVzgaeaezgfGY7e3CMgThrSikByBIW0Wv%2FE3O8KlIJ%2FXvg5zPtuYJ0jSw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 779b08f2f9affac0-OSL
X-Firefox-Spdy: h2
|
|
| app.api-push.com/get-keys | 172.64.163.28 | 200 OK | 917 B |
URL HTTP/2app.api-push.com/get-keys IP172.64.163.28:0
File typeJSON data\012- , ASCII text, with very long lines (2116), with no line terminators Hash513e2d6f7c4afa7a467e568b61c21860 ac4f6c25cdb7c39831cb5fbb29145329a81abee4 a1d29eaf84ca426460dada1ebf6d4d2c709ad23201f8bc53d4f9dbdc65aa4d20
POST /get-keys HTTP/1.1
Host: app.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/ES11/n.php?cep=3e8Kl6mVm4-IZzTuGZwoR6ttW4RMA7-GzSGUssTcLjPLdyodXgVgbD0ptPYOazfftRYXgUpirnMJ_1v2ow7a8n5Xkkox4munV6XTYYvjo-RlD8Gc1jwJE6mSzj4cGsA15xkm5fPWefiNbPtrKiIr9mGz857M8OtbBMysbN-M9CrkdAVwacaLkXLFKHEIpejaDRa0k3SJFr3UHrQgL_xI_y25ZsnelDWqj9rtVR5NDGOFeOz2cTp5Js2HmjDiesaT7HQjjspFfcnelSMRsxp-8vZWRruT_V4RjQQ_oFSOw2wuhbgy_BqKpgMYQLrHgmxCuMvsEqCVVL6OZutwKXKspZglN28ZycivgF5yVASGJa1RS5__4Zm9x5_zpPfxSTDhPx2XkU6swqN2fDfj60b6Qg&lptoken=16c071390615563e50c2&external_id=36197-739807593&source=16295&sum=#p#
Content-Length: 89
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: application/json; charset=utf-8
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6AdWza3rT1M32Zf0o372qdzYIjD6viOAHa6GRIzkbwcskhhglAQEVvsePVb4JaA09kAPOTo6KxLOJfuuTtlv%2BO%2BvXWftphRR%2BPe4EjEjk1azbZNB2pGdO8j0%2BQjBko0aUebL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08f1cccf23a8-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b | 172.64.163.28 | 200 OK | 5 B |
URL HTTP/2subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b IP172.64.163.28:0
File typeASCII text, with no line terminators Hash68934a3e9455fa72420237eb05902327 7cb6efb98ba5972a9b5090dc2e517fe14d12cb04 fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
GET /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1
Host: subscribe.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/ES11/n.php?cep=3e8Kl6mVm4-IZzTuGZwoR6ttW4RMA7-GzSGUssTcLjPLdyodXgVgbD0ptPYOazfftRYXgUpirnMJ_1v2ow7a8n5Xkkox4munV6XTYYvjo-RlD8Gc1jwJE6mSzj4cGsA15xkm5fPWefiNbPtrKiIr9mGz857M8OtbBMysbN-M9CrkdAVwacaLkXLFKHEIpejaDRa0k3SJFr3UHrQgL_xI_y25ZsnelDWqj9rtVR5NDGOFeOz2cTp5Js2HmjDiesaT7HQjjspFfcnelSMRsxp-8vZWRruT_V4RjQQ_oFSOw2wuhbgy_BqKpgMYQLrHgmxCuMvsEqCVVL6OZutwKXKspZglN28ZycivgF5yVASGJa1RS5__4Zm9x5_zpPfxSTDhPx2XkU6swqN2fDfj60b6Qg&lptoken=16c071390615563e50c2&external_id=36197-739807593&source=16295&sum=#p#
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:12 GMT
content-type: application/json; charset=utf-8
content-length: 5
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7dzXWnjLBnrw2dVovrg830bzpngLwqcMksVM1FM9SpM9XX2M%2BftlOktS%2FayJC7fjmVTWfZQ8%2Fyh%2B57zgDTJbVlFPmhmHmANoiYQOKfLXExFdF1MaL0%2BQbnm01f7WLjbnEk4EsiDVVqup"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08f3ff0a23a8-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash17e5f401afc53959e44175c294d2eef2 e697398c9a215bc45fd3f47caa914506adcc34a1 947197c5d17163d5bfc19c78757e446457a3bfecc2e78a5deb4815d7223e3ed5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4605
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 00:24:13 GMT
Etag: "6399d2ce-118"
Last-Modified: Wed, 14 Dec 2022 23:07:28 GMT
Server: ECS (amb/6BC2)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash17e5f401afc53959e44175c294d2eef2 e697398c9a215bc45fd3f47caa914506adcc34a1 947197c5d17163d5bfc19c78757e446457a3bfecc2e78a5deb4815d7223e3ed5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4605
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 00:24:13 GMT
Last-Modified: Wed, 14 Dec 2022 23:07:28 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280
|
|
| mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js IP104.26.13.87:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Thu, 15 Dec 2022 19:15:22 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18529
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qS9JyGqxt0vV4DSEg2u1Dg7%2BZMSl6Ium%2FsNANed%2FMbbHE2hHF9Fb7%2BHn5LV5cHHZ%2FGXGabr2%2F6g5JSwVeZx1g2Lwa2rTF1cSrw%2FBs5P82lPkizcJyx2nH2NlMWy48MazI4Ncj%2FU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08ef687afac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/lib/additional-methods.min.js | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/additional-methods.min.js IP104.26.13.87:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Thu, 15 Dec 2022 19:15:22 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18529
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NNvorGOveAmov%2FTeD0xCMZz5QBEJcR26LEMUlc1K9yF9zHs0lmCJLS7LPaj4%2FnlukVpt8C5D8K2dJPAyU84UcQ6YhocBl7onRJA3CmeqOk4H8AIw3U3sY8DnGg4HXw8B7SjNkmA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08ef687dfac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/ES11/js/config.js | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/ES11/js/config.js IP104.26.13.87:0
GET /sl/html/ES11/js/config.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=701
expires: Thu, 15 Dec 2022 22:20:57 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:27:45 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 7394
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S1pK%2BJkv3DoWIFvZvBEJwhWO9283TOf4P1GTmJTOAdgpll2jePRbm9xJPDSr%2Bdk2jC59GUmN0PM9F%2B4YeEf1q9Bt0N%2Bg4banl6RhIvVMF5qb9sbXJOUdXUxy1NW0oohfj6bAC0g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08ef687ffac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/common-langs.js | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/common-langs.js IP104.26.13.87:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/common-langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Thu, 15 Dec 2022 19:15:22 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18529
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o%2F9YrEAfcZI7suHp3VXgvp2QUHcxzTHKsOwL9w5CkvsYNU5MRrAH%2B0uh2nU17%2B%2BoPrbWr6FQJu8rZC6TDNDylD8gddYeYHzYzxK%2FW4LNkuANNfYIK%2BWn%2BWWgSebfzfqOU2mNAug%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08ef6880fac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/ES11/js/langs.js | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/ES11/js/langs.js IP104.26.13.87:0
GET /sl/html/ES11/js/langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=68596
expires: Thu, 15 Dec 2022 22:20:57 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 7394
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fy81EsyjNp2xSxtvKQObTcmkmj9qayoz%2BPTf%2BXOXvUnPKGZSz6KFGQypfzLXx7tLYQGgvxyhY2LvCH03JIZhqfW4Ok9MLh8%2BsPTAZIVhcj8HrCft4b%2Bj8fGK6FtLgVmF4n%2BomTA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08ef687efac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP104.26.13.87:0
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/common/cookies-policy.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:12 GMT
content-type: application/javascript
last-modified: Mon, 12 Dec 2022 12:08:17 GMT
etag: W/"639719b1-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oFxh2zOf6bAZAunaLH4cjw4XmVN64ztdYrMASF7e1LmzEtIKX0YkahUPGL8Kd7thd704c3RGYAiG1ZkhB9Ns56iTu8XUTiy0QKrqGjqn5f81tDfYPFmYJT%2FMeUleHRashHKmp2o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 779b08f45a22fac0-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 17 Dec 2022 00:24:12 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/favicon.ico | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/favicon.ico IP104.26.13.87:0
GET /sl/common/favicon.ico HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:12 GMT
content-type: image/x-icon
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 6709330
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dnViL%2FL9mERmTRTMVZLiSmwTXoDD%2FC8HO76%2BZ7JQ0Mf79a0bNra7VIjfde69v2m%2Ba7VzTamHdS%2BCOwMrvy1aKCf1b4Dz6%2BfprfTM2m4z9tsSfLVe6pUov9mtSbKOOIKViLTrmUo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 779b08f43a1bfac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| hot-desire.com/ | 104.21.235.203 | 302 Found | 0 B |
IP104.21.235.203:0
GET / HTTP/1.1
Host: hot-desire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 15 Dec 2022 00:24:08 GMT
content-type: text/html; charset=UTF-8
location: https://m.luvmenow.com/click?offer_id=5246&pid=31430&ref_id=s8hnpa7cb0g1&sub1=28582&sub2=91.90.42.154&sub3=s8hnpa7cb0g1&sub4=&sub5=&sub6=&sub7=&sub8=
cache-control: no-cache, no-store, must-revalidate,post-check=0,pre-check=0
expires: 0
last-modified: Thu, 15 Dec 2022 00:24:08 GMT
pragma: no-cache
set-cookie: _subid=s8hnpa7cb0g1;Expires=Sunday, 15-Jan-2023 00:24:08 GMT;Max-Age=2678400;Path=/
_token=uuid_s8hnpa7cb0g1_s8hnpa7cb0g1639a6928d45a24.75003873;Expires=Sunday, 15-Jan-2023 00:24:08 GMT;Max-Age=2678400;Path=/
9bf24=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjI5MTAxNVwiOjE2NzEwNjM4NDh9LFwiY2FtcGFpZ25zXCI6e1wiMjg1ODJcIjoxNjcxMDYzODQ4fSxcInRpbWVcIjoxNjcxMDYzODQ4fSJ9.qIcnakIvMMpT5UaISaUF9wqDbR2Oow_R5qwuX_-NSDQ;Expires=Friday, 29-Nov-2075 00:48:16 GMT;Max-Age=1671150248;Path=/
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aFtYWMHjmYSfyQTT0XWISQPNWwYu98kKAw8VY%2FPWVoc09FhEbyap8s5IWA6K5iSfj8yA1ao%2Fgb9PWzK13htx2Besu5IQEClJgJvjPb5lnRTKbiKgxLqy6c5TFzrVI98Vww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08df1d6923dd-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjam.com/cdn/sdialog.min.css?_=4 |  188.114.97.1 | 200 OK | 0 B |
URL HTTP/2cdnjam.com/cdn/sdialog.min.css?_=4 IP188.114.97.1:0
GET /cdn/sdialog.min.css?_=4 HTTP/1.1
Host: cdnjam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:13 GMT
content-type: text/css
content-security-policy: block-all-mixed-content
etag: W/"1d16caacad4ad6c40a99319a5d183947"
last-modified: Mon, 22 Nov 2021 08:00:52 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 16F5E342988C7B8C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 2204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BR%2BEvgzyA2D7MswvJ7gUD53TP2ovkB7iNOjsWqnPqm6DXfnZn7P4dBUDfscsLa1BrgYsX4eJxIRx1yI%2BlernAHcWjOPfI9%2BZpBj0q%2B6u9c6f1wpokYZAzmTD25bB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08fbbf750b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/main.js?1671063851 | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/main.js?1671063851 IP104.26.13.87:0
GET /sl/common/js/main.js?1671063851 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Fri, 16 Dec 2022 00:24:11 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FbHQUJjMa%2BPlJViuSg0WP1nqiGlS4WPHcFhsJUyd8bLFTyYCu4IwC%2FuW5n9Yr2jLbDeGHRAVKHuqy9ytNFW5Vd%2BWRW5Ou15oKgvNhVjhxVB969M8%2Fhv9YazpdgbRGu9w2his5wo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08ef6881fac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/ES11/n.php?cep=3e8Kl6mVm4-IZzTuGZwoR6ttW4RMA7-GzSGUssTcLjPLdyodXgVgbD0ptPYOazfftRYXgUpirnMJ_1v2ow7a8n5Xkkox4munV6XTYYvjo-RlD8Gc1jwJE6mSzj4cGsA15xkm5fPWefiNbPtrKiIr9mGz857M8OtbBMysbN-M9CrkdAVwacaLkXLFKHEIpejaDRa0k3SJFr3UHrQgL_xI_y25ZsnelDWqj9rtVR5NDGOFeOz2cTp5Js2HmjDiesaT7HQjjspFfcnelSMRsxp-8vZWRruT_V4RjQQ_oFSOw2wuhbgy_BqKpgMYQLrHgmxCuMvsEqCVVL6OZutwKXKspZglN28ZycivgF5yVASGJa1RS5__4Zm9x5_zpPfxSTDhPx2XkU6swqN2fDfj60b6Qg&lptoken=16c071390615563e50c2&external_id=36197-739807593&source=16295&sum= | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/ES11/n.php?cep=3e8Kl6mVm4-IZzTuGZwoR6ttW4RMA7-GzSGUssTcLjPLdyodXgVgbD0ptPYOazfftRYXgUpirnMJ_1v2ow7a8n5Xkkox4munV6XTYYvjo-RlD8Gc1jwJE6mSzj4cGsA15xkm5fPWefiNbPtrKiIr9mGz857M8OtbBMysbN-M9CrkdAVwacaLkXLFKHEIpejaDRa0k3SJFr3UHrQgL_xI_y25ZsnelDWqj9rtVR5NDGOFeOz2cTp5Js2HmjDiesaT7HQjjspFfcnelSMRsxp-8vZWRruT_V4RjQQ_oFSOw2wuhbgy_BqKpgMYQLrHgmxCuMvsEqCVVL6OZutwKXKspZglN28ZycivgF5yVASGJa1RS5__4Zm9x5_zpPfxSTDhPx2XkU6swqN2fDfj60b6Qg&lptoken=16c071390615563e50c2&external_id=36197-739807593&source=16295&sum= IP104.26.13.87:0
GET /sl/html/ES11/n.php?cep=3e8Kl6mVm4-IZzTuGZwoR6ttW4RMA7-GzSGUssTcLjPLdyodXgVgbD0ptPYOazfftRYXgUpirnMJ_1v2ow7a8n5Xkkox4munV6XTYYvjo-RlD8Gc1jwJE6mSzj4cGsA15xkm5fPWefiNbPtrKiIr9mGz857M8OtbBMysbN-M9CrkdAVwacaLkXLFKHEIpejaDRa0k3SJFr3UHrQgL_xI_y25ZsnelDWqj9rtVR5NDGOFeOz2cTp5Js2HmjDiesaT7HQjjspFfcnelSMRsxp-8vZWRruT_V4RjQQ_oFSOw2wuhbgy_BqKpgMYQLrHgmxCuMvsEqCVVL6OZutwKXKspZglN28ZycivgF5yVASGJa1RS5__4Zm9x5_zpPfxSTDhPx2XkU6swqN2fDfj60b6Qg&lptoken=16c071390615563e50c2&external_id=36197-739807593&source=16295&sum= HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 15 Dec 2022 00:24:11 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=300
expires: Thu, 15 Dec 2022 00:29:11 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9aPri%2Frq3MjekkoIG93CoKfyyPhe%2BpkQuW9dz%2F8GQ3p4UvqT9EhLjHWptYt1xKjoX7GtRsNh7bZgFfioLIBjTXxqmV9rhOdoaPZWc5Amjb7XgGWnh5ARMlro1FN%2BLlvpEi40yqM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b08eb6f96fac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
104.21.235.204