Report - m.luvmenow.com/click?pid=34496&offer_id=5246&sub1=2j19n2k7puu7&sub2=34496&sub3=21&sub4=3ijaoa47put6&sub5=27775&sub6=103789&sub7=frd&sub8=

Report Overview

Submitted URL
m.luvmenow.com/click?pid=34496&offer_id=5246&sub1=2j19n2k7puu7&sub2=34496&sub3=21&sub4=3ijaoa47put6&sub5=27775&sub6=103789&sub7=frd&sub8=
IP
172.67.165.172
ASN
#13335 CLOUDFLARENET
Submitted
2023-01-31 07:19:33
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
m.luvmenow.com	unknown	2022-06-21T02:24:53Z	2023-03-13T07:01:22Z	468 B	899 B	104.21.11.83
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.39.57.61
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	54 kB	34.120.237.76
cdn-dt.fcdn.info	230544	2019-03-21T03:06:06Z	2023-03-13T05:21:27Z	369 B	12 kB	104.21.234.87
app.api-push.com	307671	2021-12-06T13:20:56Z	2023-03-12T17:27:29Z	1.0 kB	846 B	172.64.162.28
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
cdnjam.com	204001	2021-02-18T08:53:51Z	2023-03-13T05:21:39Z	387 B	939 B	188.114.97.1
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.36.76.226
ocsp2.globalsign.com	1544	2012-05-23T20:10:04Z	2023-03-13T05:14:17Z	357 B	1.9 kB	104.18.21.226
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	361 B	1.9 kB	104.18.20.226
toomoffr.com	unknown	2022-01-07T16:13:24Z	2023-03-05T06:22:26Z	550 B	989 B	52.19.202.187
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.1 kB	4.3 kB	142.250.74.131
subscribe.api-push.com	unknown	2022-06-02T03:41:52Z	2023-03-12T16:55:30Z	1.6 kB	1.6 kB	172.64.162.28
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
meshho.com	unknown	2022-02-03T21:33:01Z	2023-03-13T03:50:10Z	503 B	572 B	52.19.202.187
bl.trackham.com	unknown	2022-09-23T15:40:01Z	2023-03-12T16:55:28Z	527 B	1.5 kB	18.193.146.82
mycasualhookups.com	unknown	2016-03-19T23:05:44Z	2023-03-13T06:42:30Z	8.3 kB	242 kB	104.26.13.87

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-31	medium	mycasualhookups.com/sl/common/css/style.css?1675149564	Phishing
2023-01-31	medium	mycasualhookups.com/sl/common/privacy-policy.html	Phishing
2023-01-31	medium	mycasualhookups.com/sl/common/unsubscribe.html	Phishing
2023-01-31	medium	mycasualhookups.com/sl/html/ES11/js/config.js	Phishing
2023-01-31	medium	mycasualhookups.com/sl/common/js/common-langs.js	Phishing
2023-01-31	medium	mycasualhookups.com/sl/common/js/main.js?1675149564	Phishing
2023-01-31	medium	mycasualhookups.com/sl/common/cookies-policy.html	Phishing
2023-01-31	medium	mycasualhookups.com/sl/common/js/lib/additional-methods.min.js	Phishing
2023-01-31	medium	mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js	Phishing
2023-01-31	medium	mycasualhookups.com/sl/html/ES11/js/modernizr.custom.js	Phishing
2023-01-31	medium	mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js	Phishing
2023-01-31	medium	mycasualhookups.com/sl/html/ES11/js/langs.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-04-26
Pretty URL mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 11:32:14 Times Seen106339 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js	23 kB	2023-03-07	2024-04-26
Pretty URL mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2024-04-26 09:36:53 Times Seen991 Hash 93c1dd8416ac2af1850652d5b620a142 6a76e4c7db479053350580469aa010febfdcacd0 17a879e50c3ab3078afaded288e257fb66e94806b76ff7e796b54226f9848f50 Loading...

	mycasualhookups.com/sl/common/js/common-langs.js	15 kB	2023-03-07	2023-07-02
Pretty URL mycasualhookups.com/sl/common/js/common-langs.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:51 Last Seen2023-07-02 18:22:18 Times Seen47 Hash 9dd6dd34babf310236383a7eb7d569e3 f396ed09424e282aa4e7b96d463541fc42556f46 7ae9fc07390e221821ced9edb8e092859afbc5653d7878c3d3074ed24be2c050 Loading...

	mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-26
Pretty URL mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-26 12:02:44 Times Seen55034 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	mycasualhookups.com/sl/html/ES11/js/langs.js	56 kB	2023-03-08	2023-05-27
Pretty URL mycasualhookups.com/sl/html/ES11/js/langs.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:46 Last Seen2023-05-27 15:21:35 Times Seen8 Hash cda11bf858e3dd834feed2b622c45dfd 18efdfea52b1ad6e41eb529d7956cd709b6d3c3c b99e5fc9cf0d70faf1af853800ec164558e3b41e190cee738f757a95eab0ee95 Loading...

	mycasualhookups.com/sl/html/ES11/js/modernizr.custom.js	8.2 kB	2023-03-08	2023-12-30
Pretty URL mycasualhookups.com/sl/html/ES11/js/modernizr.custom.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:46 Last Seen2023-12-30 19:11:29 Times Seen49 Hash aa685a6fe2731d8fe81fcc141e06262d 10de94f68da5053aad017f4757120dc36e700113 b15d8d7171b88ce0d81d1313c66a3373f3d5262af7664d4221dde7a2665e0192 Loading...

	cdn-dt.fcdn.info/swpush.min.js	34 kB	2023-03-07	2023-08-07
Pretty URL cdn-dt.fcdn.info/swpush.min.js IP 104.21.234.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2023-08-07 07:25:23 Times Seen135 Hash af2540aefe6334edb036a720947abb72 f17f394267c73b004d0f2c6dfb8a790aa2d7bf7e 7af8787e4bc78270a5a72a75f86a45ae9d3bd803c3c57ec3efb84d2aabe102a2 Loading...

	mycasualhookups.com/sl/common/unsubscribe.html	1.9 kB	2023-03-07	2023-04-05
Pretty URL mycasualhookups.com/sl/common/unsubscribe.html IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2023-04-05 02:02:09 Times Seen17 Hash b65ff9705865169981f3ac388816cc72 c79a72e04d9b766e27ea4fe8d2a0cc5d9c484c41 67da9ca751409ddfd1a8b1b7a1fdfe5b66b37e6d9b1d0c4e083fb357debca5de Loading...

	mycasualhookups.com/sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum=#p%23	90 B	2023-03-07	2023-04-05
Pretty URL mycasualhookups.com/sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum=#p%23 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2023-04-05 02:02:09 Times Seen17 Hash 366614100df3a1aad7eaa097204bb879 462a34ed6013dced533568a3bafe7bb7da1b212d b52856d21909444a7b1f4afb75479ca00aa7a05fc60cdf860dcb3ce4f0b75f01 Loading...

	mycasualhookups.com/sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum=#p%23	1.6 kB	2023-03-07	2023-03-26
Pretty URL mycasualhookups.com/sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum=#p%23 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:13:35 Last Seen2023-03-26 09:18:48 Times Seen2 Hash 10d9f0a94adc6d77165d22833a3d8939 10d67b780bebe701a94accaeb774c834f40f8183 fe29ea898b1b83349cd56e41caa133d9972637853e5a57eb85f5e0f652fa8073 Loading...

	mycasualhookups.com/sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum=#p%23	487 B	2023-03-08	2023-05-21
Pretty URL mycasualhookups.com/sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum=#p%23 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:57 Last Seen2023-05-21 15:59:11 Times Seen18 Hash eb3361ce29dba68e5f6374b4129a7240 e9226d27e25cff9e8fd1026b4107d90919d59c14 8eb0cb2db6b9f3b562f0b58f4c9b1f6c48c31cce516872a20efbd90a5c6d33ff Loading...

	mycasualhookups.com/sl/common/js/lib/additional-methods.min.js	18 kB	2023-03-07	2024-04-10
Pretty URL mycasualhookups.com/sl/common/js/lib/additional-methods.min.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:43 Last Seen2024-04-10 02:04:24 Times Seen257 Hash 3a53c5eac97b98ed3833970d43bf7fc9 b8805460b5754be8b16a223df737d9577da4c182 8b1554032d2cfbf0e858518df6460b2b4336be2cfb1f188dfd1108a3ae50b2e8 Loading...

	mycasualhookups.com/sl/html/ES11/js/config.js	395 B	2023-03-08	2023-08-07
Pretty URL mycasualhookups.com/sl/html/ES11/js/config.js IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:57 Last Seen2023-08-07 07:25:23 Times Seen53 Hash 628061c41e011910d93e2eb32b7e8a24 edaa1d1ca254452b8c77111a7d2dd928276b5971 33015ae6fe9c43a1d94f0b77b94a17e903ca8be952608b85f70ce0df0193161b Loading...

	mycasualhookups.com/sl/common/js/main.js?1675149564	7.4 kB	2023-03-07	2023-08-07
Pretty URL mycasualhookups.com/sl/common/js/main.js?1675149564 IP 104.26.13.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:51 Last Seen2023-08-07 07:25:23 Times Seen115 Hash b87e1c868deb5fadb6c9661630d4f0db e893295cfb31b37a247c509c53b1eae346c528fc 44523924092ddcf715dae1c6c23059400dfb24781643ddb760b0f6b82724a0a8 Loading...

HTTP Transactions (53)

URL IP Response Size

m.luvmenow.com/click?pid=34496&offer_id=5246&sub1=2j19n2k7puu7&sub2=34496&sub3=21&sub4=3ijaoa47put6&sub5=27775&sub6=103789&sub7=frd&sub8=

104.21.11.83

302 Found

0 B

URL HTTP/1.1
m.luvmenow.com/click?pid=34496&offer_id=5246&sub1=2j19n2k7puu7&sub2=34496&sub3=21&sub4=3ijaoa47put6&sub5=27775&sub6=103789&sub7=frd&sub8=
IP
104.21.11.83:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click?pid=34496&offer_id=5246&sub1=2j19n2k7puu7&sub2=34496&sub3=21&sub4=3ijaoa47put6&sub5=27775&sub6=103789&sub7=frd&sub8= HTTP/1.1
Host: m.luvmenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Tue, 31 Jan 2023 07:19:22 GMT
Content-Length: 0
Connection: keep-alive
X-Adjust-Use-Original-Forwarded-For: 1
Location: https://meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63d8c0facbd35600014a5272&s4=34496
Set-Cookie: afclick=63d8c0facbd35600014a5272; expires=Wed, 31 Jan 2024 07:19:22 GMT; secure; SameSite=None
afoffers={"5246":1675149562}; expires=Wed, 31 Jan 2024 07:19:22 GMT; secure; SameSite=None
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1YBzxAaywzlBPd3YE7xv1OLHqC11a8bNFMrceUY5gXDj51tVQ%2FhaiKQ8lNmYRR%2F8t12dDvMU4dDhTTgTPJjwLLUiy9Zjgu1AGWIe48pAs%2FwS0ZwJb1SlDQu%2FI%2BTAmzfG4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7920adbecc240b06-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15084
Expires: Tue, 31 Jan 2023 11:30:46 GMT
Date: Tue, 31 Jan 2023 07:19:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14727
Expires: Tue, 31 Jan 2023 11:24:49 GMT
Date: Tue, 31 Jan 2023 07:19:22 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 06:35:52 GMT
content-type: application/json
age: 2610
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6033
Expires: Tue, 31 Jan 2023 08:59:55 GMT
Date: Tue, 31 Jan 2023 07:19:22 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: /YCjVdQf1IcjtriI4HAr/Cg1PrADd7BRzl62psaf/HM0euaziCRuvDaP6bN9RquHmZfiD4ObpKk=
x-amz-request-id: DQRB2Z8D2GQTZ9VA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 06:51:04 GMT
age: 1698
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 07:19:23 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 06:41:42 GMT
age: 2261
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsalphasha2g2

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsalphasha2g2
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1423 bytes)
Hash
5f4b16e41138a7612007eaa4a1b71499
b3f6b48875cfed497359a683725f2cd21b5f4bd5
a73bbf88c6790c6f1082c55efb4c0f739499f570872d074a529b14da01dc630b

HTTP Headers

POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 07:19:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 04 Feb 2023 06:49:44 GMT
ETag: "b3f6b48875cfed497359a683725f2cd21b5f4bd5"
Last-Modified: Tue, 31 Jan 2023 06:49:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7920adc13933b51d-OSL

meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63d8c0facbd35600014a5272&s4=34496

52.19.202.187

302 Found

270 B

URL HTTP/1.1
meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63d8c0facbd35600014a5272&s4=34496
IP
52.19.202.187:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
270 B (270 bytes)
Hash
1ff82a9984577412966ef1d7856d1c26
ca572f58327933c6556bccdfc976c6300d6f80f6
18e6396d61162ed0eb634a64e6d96a2e213d1b4a743ee61a2e2875fca7a1363c

HTTP Headers

GET /?a=16295&c=43694&p=r&s1=&s2=a_63d8c0facbd35600014a5272&s4=34496 HTTP/1.1
Host: meshho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 270
Content-Type: text/html; charset=utf-8
Date: Tue, 31 Jan 2023 07:19:23 GMT
Location: https://toomoffr.com/?a=16295&c=43694&p=r&s1=&s2=a_63d8c0facbd35600014a5272&s4=34496&ckmguid=edd5c00e-3473-4602-811a-e027486e8ed9
Connection: close

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4268
Expires: Tue, 31 Jan 2023 08:30:31 GMT
Date: Tue, 31 Jan 2023 07:19:23 GMT
Connection: keep-alive

ocsp.globalsign.com/alphasslcasha256g4

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/alphasslcasha256g4
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1437 bytes)
Hash
6951e2b7fd6618f6675132aea44dbc17
a699e8cf0f20642b6bd64c0ac2f03965757b4fe9
a690f521fc81192c763b1e7d05c7df9077e01125faf3b275e03a89becbbd5ab9

HTTP Headers

POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 07:19:24 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Sat, 04 Feb 2023 06:12:10 GMT
ETag: "a699e8cf0f20642b6bd64c0ac2f03965757b4fe9"
Last-Modified: Tue, 31 Jan 2023 06:12:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7920adc4bd591c02-OSL

push.services.mozilla.com/

52.39.57.61

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.57.61:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ErZWmd8bz6jrVbqoaklTuw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5BCs4E+e7BG5cyQz8RzyV0fHp+Q=

toomoffr.com/?a=16295&c=43694&p=r&s1=&s2=a_63d8c0facbd35600014a5272&s4=34496&ckmguid=edd5c00e-3473-4602-811a-e027486e8ed9

52.19.202.187

302 Found

234 B

URL HTTP/1.1
toomoffr.com/?a=16295&c=43694&p=r&s1=&s2=a_63d8c0facbd35600014a5272&s4=34496&ckmguid=edd5c00e-3473-4602-811a-e027486e8ed9
IP
52.19.202.187:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
234 B (234 bytes)
Hash
3eb0df96a69c780d6d3bd8eef396796c
c11af0bb6eb268dcc2bde71b3e9ac64e861fb6fc
3cfc7932dc3603973dea14b74375fbe23ce430e56033210da74d43a5f2ffeca4

HTTP Headers

GET /?a=16295&c=43694&p=r&s1=&s2=a_63d8c0facbd35600014a5272&s4=34496&ckmguid=edd5c00e-3473-4602-811a-e027486e8ed9 HTTP/1.1
Host: toomoffr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 234
Content-Type: text/html; charset=utf-8
Date: Tue, 31 Jan 2023 07:19:24 GMT
Location: https://bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-742986790&source=16295&sum=#p#
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=YlB8ZH2pJgJVPfS28Xf/Z5Eh0uRon5S90ql836lN0uYyOo0DXo/a+A==; domain=.toomoffr.com; path=/; HttpOnly
trk=t3veAIjazn2Fr0MZKohWU5Eh0uRon5S90ql836lN0uYyOo0DXo/a+A==; domain=.toomoffr.com; expires=Fri, 31-Jan-2025 07:19:35 GMT; path=/; HttpOnly
c36197=YlB8ZH2pJgKMNiiFnYZ26JGr1kFsHUyPGz+N3I32s4JeCUghiDE1Zg==; domain=.toomoffr.com; expires=Thu, 02-Mar-2023 07:19:35 GMT; path=/; HttpOnly
Connection: close

bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-742986790&source=16295&sum=

18.193.146.82

302 Found

0 B

URL HTTP/2
bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-742986790&source=16295&sum=
IP
18.193.146.82:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-742986790&source=16295&sum= HTTP/1.1
Host: bl.trackham.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
server: nginx
date: Tue, 31 Jan 2023 07:19:24 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum=
pragma: no-cache
set-cookie: f9908105-7257-45be-97c0-9990466cb2a4-v4=lvt_mpcLhO6-z4Oy3tImt3wySaOYK3MPI66L379D3y8; Max-Age=86400; Expires=Wed, 01-Feb-2023 07:19:24 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=JUcW7UFChqOkwuHeyEPmeM_kqpyI-id2FWaJwWFFT_mh7mhgnebsoKfdihhQM3nGNp8FyDtSfz3ywahJhfiG5bfwNRW5Pc-z_gfQyqR-t9tYhBd_a6uPaKVxU7oiGiW-WeZGtm3yzeKoLyTRiNR4xncN1_CR9wrySxvcdg3u4HAOAzTGasWHOFgeWoWzQVN6c5f4zkkmKGIGjKhcZpWaZHgXmgwuUoXAd8jEDGs37lj4Waf053uBFU8i4ja0E6c_D5HyFJ7fdYRCuT5czK2gnasI_w_Eco79Q3H2-LM-4eQF_GQn9B59IAzKWosszIQ7o8OXGw4hYnTQ2Bqm9ycKfV0Fs_JErL5USE9-J-3ZD4x_PEParfT6b3_HqerRp-XQr3N_4xKwF6UVFXEdA3rXhA; Max-Age=86400; Expires=Wed, 01-Feb-2023 07:19:24 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/QsXoNUJjkNc

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/QsXoNUJjkNc
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
532bcc7a2b96bd9b0aa878122b5185ec
ae9e12b32886f366aa6715917390f87d4b30de24
3d9cae14d1a501a14e3d5ee75d10a99248ba307d517f52ace16d1106ff588011

HTTP Headers

POST /s/gts1p5/QsXoNUJjkNc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 07:19:24 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

mycasualhookups.com/sl/html/ES11/images/01.jpg

104.26.13.87

200 OK

59 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES11/images/01.jpg
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x600, components 3\012- data
Size
59 kB (58814 bytes)
Hash
51df31f09df7b6f59095d090ee85ef8b
f907f6d8368c98a4c93ac30fa07baf896463f0e8
4098ee580cbb67c6b532037b0cabd518805f634c38afab3ea10ed3ed11661ada

HTTP Headers

GET /sl/html/ES11/images/01.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:24 GMT
content-type: image/jpeg
content-length: 58814
cache-control: max-age=86400
cf-bgj: h2pri
expires: Wed, 01 Feb 2023 03:32:21 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 13623
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KfA4SnnKuy5JUPD0kzghlBWmyYAasXzoTTfHPNerOd%2FLddpTReZYyI3yPajiC8gP4efDphIGHtkmI89Z1sVt0s7JBOwhfpO5FSGkfZXh8Pk5HupiQGWpTvbiteo69k2nbdiYM64%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7920adccbe62b51d-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/K0TBC4DjskA

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/K0TBC4DjskA
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4d09eb3776fb550b558272850714ab84
41ca431bf2db4c21d4ef0f76da3c4cab9c8c96c7
46ba8174d50b0b30336f3a221a99ab7b125d167389ac3a9d78e93cf1c564ee9a

HTTP Headers

POST /s/gts1p5/K0TBC4DjskA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 07:19:25 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14885
Expires: Tue, 31 Jan 2023 11:27:30 GMT
Date: Tue, 31 Jan 2023 07:19:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14885
Expires: Tue, 31 Jan 2023 11:27:30 GMT
Date: Tue, 31 Jan 2023 07:19:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14885
Expires: Tue, 31 Jan 2023 11:27:30 GMT
Date: Tue, 31 Jan 2023 07:19:25 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9700 bytes)
Hash
1e575f4c5e3aa793f846cadc8baf386c
f482a4e8e80ea5b6afc29e5cc1a9a2b8c2f0434d
09a5bbe4fb7f23ee43228267f30c1ef0cd8747e515e01c963df0756b866f23ea

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9700
x-amzn-requestid: 059475a7-d7de-4a44-9fc7-11fb24e201b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_9G8DIAMF64A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e399-57fea3031d1e93ec02308fac;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vzubP2I1xR5NF1amWIPiIlp6yPykWhz-CEbwDiJOs-eTWkTE-fvfjA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 04:16:21 GMT
age: 10984
etag: "f482a4e8e80ea5b6afc29e5cc1a9a2b8c2f0434d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5903 bytes)
Hash
42a648f9d34d8fb703f0b80a52e0deec
7ccefd66211d249ae5266c3b6ae3375a19e5cb6d
a57f8792e8caa2a31045a141d019f53f51b633d5d04baebdae97387740c6639d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5903
x-amzn-requestid: f6fca787-17c1-4edd-9ab0-a00e2fccc7a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboufGeSoAMF-1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d487f6-58be6bdc5e3e767e1ea47b86;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:27:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZKuBcZgC6yolu1QcaXZKAIIDynG3Zywq1d7sWI8Jlq3ULwlr6XlhWQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 13:04:11 GMT
age: 65714
etag: "7ccefd66211d249ae5266c3b6ae3375a19e5cb6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5965fef2-c5a7-4a82-bcdc-41aebc355aff.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7334 bytes)
Hash
83d9e98a4575077e7400343c7f2038d2
6ac3ca84e97fa35afff9045f35d45499c0b34a23
da6d6d90a5ea8f5a864f3739591693b5f4b9793f2c4bb971486572f6bf2e940c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5965fef2-c5a7-4a82-bcdc-41aebc355aff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: e62c149b-ca5f-4d0c-8d2d-e8bb2a7f9d8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvSzH2soAMFiYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d49278-1214fc750a312e46527b2fd7;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:11:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DHpGf24wNNYDg2RxvPCY6S011xYLiXzP1pP7O-kPNKnnP50CihUfDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:28:52 GMT
age: 13833
etag: "6ac3ca84e97fa35afff9045f35d45499c0b34a23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde59a1de-2b64-4d28-8e63-6d511c4c70d5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (9972 bytes)
Hash
d143b65b98551bde96a7f026808d4583
3e995e5933e6f8c15ecd3bc642ce1778a11f7ca7
004be88ebe2a4840bb718a5148fcf7d2dc1400f6c1c880cee4428d66ba91dbd9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde59a1de-2b64-4d28-8e63-6d511c4c70d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9972
x-amzn-requestid: fc482a0d-3033-492d-86bf-fedd44c7cac2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFNnUHmyIAMF3gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb8fc8-7091fe260abb90766f87e7cf;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 07:10:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GfEXQhD_Og-PS-aycWJ75R5LL1r5hJtXd5MZ3OaYc6nb-bUHo0cnSA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 23:35:46 GMT
age: 27819
etag: "3e995e5933e6f8c15ecd3bc642ce1778a11f7ca7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffea501ff-acf4-4b37-aa0a-baf417cf3694.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5394 bytes)
Hash
60fc180ec5b99ac357db8775775c3c11
c9856a488e82bc330881377528bf2e53274ef5f3
a31fd6fc84f79b0f5fb79cccf490ddf61eb58bdaf57ca27f57a911332e550d11

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffea501ff-acf4-4b37-aa0a-baf417cf3694.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5394
x-amzn-requestid: 16d876fb-0afd-4b5d-b19e-1029506fd6f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIgq2E4CIAMFiFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce178-1f08dc2105b6e182677004e7;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:10:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FoTKdVc567GRCEDn8JoMOs4-enQPpdvFhPafmSRsgCFZC78q8ba5pA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 12:51:52 GMT
age: 66453
etag: "c9856a488e82bc330881377528bf2e53274ef5f3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9600 bytes)
Hash
3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v9Wphg34UGE5kkZ9RKBcphcpPuCn54oVyepzTW5rZ3J9nkL9J501PA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 22:03:23 GMT
age: 33362
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn-dt.fcdn.info/swpush.min.js

104.21.234.87

200 OK

11 kB

URL HTTP/2
cdn-dt.fcdn.info/swpush.min.js
IP
104.21.234.87:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (34449)
Size
11 kB (11254 bytes)
Hash
06fd10c15cb7d9518c48a7434d811ca7
01ed736653a5e1e517568af784bac66269cfbab6
5e7513ecc9b7c3ba1e5e52ec834601cba7e6d672f46510f8ac03a00969f96306

HTTP Headers

GET /swpush.min.js HTTP/1.1
Host: cdn-dt.fcdn.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:25 GMT
content-type: application/javascript
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 408537
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yVXMXnunNVxsJvO%2BrXjA%2BOuWR%2FLr7WL9fk9Coxwz0fI5HGpyGmaoIUE4XEA%2BfRtJEAToOeFijM4Hq%2BEJ%2B15IHa61%2FnJeOTEndOZXK2r0Yqc5L1dtlx00%2BV7cxmGKB6Hvr85X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7920adcd3c0a889e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/K0TBC4DjskA

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/K0TBC4DjskA
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4d09eb3776fb550b558272850714ab84
41ca431bf2db4c21d4ef0f76da3c4cab9c8c96c7
46ba8174d50b0b30336f3a221a99ab7b125d167389ac3a9d78e93cf1c564ee9a

HTTP Headers

POST /s/gts1p5/K0TBC4DjskA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 07:19:25 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1p5/K0TBC4DjskA

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/K0TBC4DjskA
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4d09eb3776fb550b558272850714ab84
41ca431bf2db4c21d4ef0f76da3c4cab9c8c96c7
46ba8174d50b0b30336f3a221a99ab7b125d167389ac3a9d78e93cf1c564ee9a

HTTP Headers

POST /s/gts1p5/K0TBC4DjskA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 07:19:25 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b

172.64.162.28

204 No Content

0 B

URL HTTP/2
subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b
IP
172.64.162.28:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1
Host: subscribe.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,x-referer
Referer: https://mycasualhookups.com/
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Tue, 31 Jan 2023 07:19:25 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: content-type,x-referer
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VkfN213JbX9oruKkBvF43%2F%2B3K8ARyPvao%2FEC%2BZiZ2Ab%2BqnpLgy8%2Fp%2F69GYZ6e%2By1BvzHOuxaAN07swxuBmuid0heYmuRqPFAy%2B0AUDgmRQGCLzPWG14nZYx9LHp6ijk3mFq1YROvM25a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adcf19147591-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES11/images/background.jpg

104.26.13.87

200 OK

169 kB

URL HTTP/2
mycasualhookups.com/sl/html/ES11/images/background.jpg
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2004x1252, components 3\012- data
Size
169 kB (168960 bytes)
Hash
2b6088cd8d158a4f966a6ce1328c5836
4062b023c6c57587b39f20ba4e6ac72b2b9c6d90
cac4b7afd29dd2df665ca848b63831cd74bd010732880d70e01ec5039db2df6f

HTTP Headers

GET /sl/html/ES11/images/background.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/ES11/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:25 GMT
content-type: image/jpeg
content-length: 168960
cache-control: max-age=86400
cf-bgj: h2pri
expires: Tue, 31 Jan 2023 10:49:46 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 73779
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g26D3ObY936QCOJE0hOOJVzFBTrtFZw0HQUi9F%2BIyuUwXAW1BVMdH%2B2aVULpjtSEZgWFaIMk5cEtBJwJxwxqmCLcjSMR6i26GNU8bBaF81yhbIMs%2B8lpMXN%2Forww6yYeTF6rk7c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7920add01a10b51d-OSL
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES11/images/bg.png

104.26.13.87

200 OK

938 B

URL HTTP/2
mycasualhookups.com/sl/html/ES11/images/bg.png
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 4 x 4, 8-bit/color RGBA, non-interlaced\012- data
Size
938 B (938 bytes)
Hash
4a31108b720e625e216849d8cc915a7c
2f402a077c309a2921b5f1b3c658b1a5cc1dcf51
bbbb6afb30bdc0a925e7ce10fdcd74613185d5fc2060c1dc2efee7693a4c8d1f

HTTP Headers

GET /sl/html/ES11/images/bg.png HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/ES11/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:25 GMT
content-type: image/png
content-length: 938
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
cache-control: max-age=86400
expires: Wed, 01 Feb 2023 03:32:21 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 13624
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rYT6PkRYz6lWmzEmIrg48UxL%2FLeIH%2Bqt0vOAFl4435yw2eePIrSWwck8D7rxYJ%2FjlBWdc4zperD4J96idAJbd2YNG9H33FacdnxCROiH802F234KMqe13Rw9HXF69rd5wXdn%2BHk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7920add03a2bb51d-OSL
X-Firefox-Spdy: h2

subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b

172.64.162.28

200 OK

5 B

URL HTTP/2
subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b
IP
172.64.162.28:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
5 B (5 bytes)
Hash
68934a3e9455fa72420237eb05902327
7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa

HTTP Headers

GET /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1
Host: subscribe.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum=#p#
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:25 GMT
content-type: application/json; charset=utf-8
content-length: 5
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qP3fE0kIFtK4wQn1p2HEkMIoooCzYQqt0Uj5x%2BT0yLE1Z25QXu2%2FbogpoThpkxkzFlah5ewFeuUelZ7SwlwZzbIKfweBfSXPIj2wYEVx7AGjHdWFjHrFsf4vxCeEbczweNLtxODlEXUf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adcff9a27591-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/EmMTM2F0_rU

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/EmMTM2F0_rU
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
580c053850f42e37249faecfd30b8430
516938679d55bb07db42094d3994753dac562cbb
cab1ee23eb4691a2c383658d0fe8a835e9fe5de073bbaab16672adfc5342e567

HTTP Headers

POST /s/gts1p5/EmMTM2F0_rU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 07:19:26 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1p5/EmMTM2F0_rU

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/EmMTM2F0_rU
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
580c053850f42e37249faecfd30b8430
516938679d55bb07db42094d3994753dac562cbb
cab1ee23eb4691a2c383658d0fe8a835e9fe5de073bbaab16672adfc5342e567

HTTP Headers

POST /s/gts1p5/EmMTM2F0_rU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 07:19:26 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

mycasualhookups.com/sl/common/css/style.css?1675149564

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/css/style.css?1675149564
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/css/style.css?1675149564 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:25 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Wed, 01 Feb 2023 07:19:25 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BU%2Bf0QDY0lKPRnyQyz%2BIUZnUz007wogO0d03nm4UccoXkIp0rZEL96DmAd%2BmddEjDnYU5DNQCEoC%2FaeqH8zuYJqQ1oXTG3Fpm6NnzT3bysNE5MjxnrYQSIS4%2Bw9mMEmEpGhAYy8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adccae4ab51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/privacy-policy.html

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/privacy-policy.html
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/privacy-policy.html HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:25 GMT
content-type: text/html
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Tue, 31 Jan 2023 07:24:25 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dlEEkCvEn%2Bg6IugxPVJXFmtwExCIoKxH73oWVZsc%2F4xW3KGAf%2F11%2FjhT5i3HY98zGTgiQcUyvtNWy1YlY66I67Dkqps%2FBXzZiBYKQOERGnvNwxcM1YzSp4B2v6osvhAp8ftrE1g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920add02a1bb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/unsubscribe.html

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/unsubscribe.html
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/unsubscribe.html HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:25 GMT
content-type: text/html
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Tue, 31 Jan 2023 07:24:25 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i%2FR1HuhSHvXBTLWRFbGlCEin5WjE60a7cOsgYC6SIdiDbuOvFfSgNTd%2BujWszy%2BjJJDzZwXPW5rgHWFNQN0dcqsG%2BwgZGrcqNfOqSYDmTKaLi9Tl35Dmf6f9q%2B%2B9pEvK2wCUGGw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920add02a20b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES11/css/style.css

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/ES11/css/style.css
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sl/html/ES11/css/style.css HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:24 GMT
content-type: text/css
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=8344
expires: Tue, 31 Jan 2023 10:33:53 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 74730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TbeZ%2FPKJYGRHBOkf7Jd5FkdZHLdZttsdu%2F5iZ8itN2k%2FXxuf5xDFCrqPBvEs%2FeD9TXrGwBsJLqWlZVB3vOt4%2FZWLKIZRODr%2BHMksLjnS5f5n7IEdrTMaRx5%2BCFBfr4jyvVD6i1E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adccae48b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES11/js/config.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/ES11/js/config.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/html/ES11/js/config.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:24 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=701
expires: Tue, 31 Jan 2023 10:33:53 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:27:45 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 74730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=COfv%2FcOaQmb0P8LB44QEQzO%2BgmI8BfUcW%2BXB2w6bN4YnymZgJl7ACM5FJhg%2F7tt3XqHBsPO01eQu%2FvTyZFYyYMc%2BNzhJ0B5RnmotmGc47JHPpFsTa0qTEiMOtRHbfl%2B80w%2FRsL4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adccbe5cb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/common-langs.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/common-langs.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/common-langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:24 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Tue, 31 Jan 2023 08:22:31 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 82613
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E654TXnPMK0sFhDbNmQwEb8KWbGMBGjejJFvgPyYR8rxDZeQN06hUg%2B7OFBFrWKiU0vHk3G9zwSjt9ooh8hNF0uG7zu%2B5A2rhYqKBjeiOopds79R4uZJ3pZqFzVFTRmG2Hm63sY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adccbe5eb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

app.api-push.com/get-keys

172.64.162.28

200 OK

0 B

URL HTTP/2
app.api-push.com/get-keys
IP
172.64.162.28:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /get-keys HTTP/1.1
Host: app.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum=#p#
Content-Length: 89
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:25 GMT
content-type: application/json; charset=utf-8
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kEMi579o9tihuqNHdwZzyYtn9tV3ZY65tNC2lO00BFqHo8l8gg%2FRwpscYMgvaB0r51yVzN0EmNFoVoWsHnn2le2RJ443merKxeFma2JgBqozuz%2BlFetF6m1XZ%2BzL66OI%2Fy5u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adce78b07591-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/main.js?1675149564

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/main.js?1675149564
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/main.js?1675149564 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:25 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Wed, 01 Feb 2023 07:19:25 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H0NsfgZKF%2F8FQ1TZHSL4MUJMQCxpwzdg%2FLM2%2FuoHHqcI3wDK3g37MRz4YupBk4Lj3ejG8J%2FztLysPNX4GZ7Di%2BCejVZm7%2FOznEvJssVUYecFjaIsmT7K8kxeS%2FwR%2B%2FuIT1%2B%2FhEE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adccbe5fb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/cookies-policy.html

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/cookies-policy.html
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/cookies-policy.html HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:25 GMT
content-type: text/html
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Tue, 31 Jan 2023 07:24:25 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dv%2BXSfyvuNwATsdNnG9R3aIWk4Dj3sqmkwgrBG6ccREVhJ0zigWxPIeXp7NlX5DsKgFHGhZMrl%2BP6qO9vbYMw2GJ4NuZTRLt%2BoV5PX%2FLaMzMfF9zFd4sTP1ijWi8uzhHZKc8DA0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920add02a1db51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum=

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum=
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sl/html/ES11/n.php?cep=G9FPljO-vc8c40ka_PZn4YqJa2oyki9FoZ2RhTReUOb9V-xBTLtTDmDgfICmskoiv0OI9PX1ydiRdbr3PCJB5-uNIqfLwDFW5A1glrpgLejbHUlVEuJle47HX6G3KfkWNTv79YbiX8Zs7Qz_EGGw--34JlM0V_H5KBhyJvcy5jSPw8HnaZO0eJu9_xKlc5OD5t3q3QwbhZyk1ydxuD41Ahphc6_RCZ6kiJTmXWPtZoBnDR_gaKx2xqlywRxd4JB0xA0h78XDwOSB1CXailmi4XDEr2AqoDsiW9hDcrKzevO2qOloGbyTJdRd74QLrjtRRZIoJhkn87Y3TExPWm7BMg1-MVJPae9dZXrTSOrR5iELuU4to2T-779fAUt7xKcmiJUYFDx0QEtT0-E-7SKR0g&lptoken=1687757c15f61383641a&external_id=36197-742986790&source=16295&sum= HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:24 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=300
expires: Tue, 31 Jan 2023 07:24:24 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a5RpHteE%2BnuZqeKrLlqlc%2BaYzE%2F1aSIiFQYaNa3JT50cSFn%2BbowmsnPd5bGpwIA24KzRE7OFM5vT9B7gCFAcDoHpnbnRtoq1p1oYSZnZcGTxjJbNb%2B28UJsDNr5280x0doqNYiQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adc8c989b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/lib/additional-methods.min.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/lib/additional-methods.min.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:24 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 31 Jan 2023 08:22:31 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 82613
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=clgcl2NamohDWK%2Fv8pgnOcYKuAIKqakRAHln0r5%2FJJ7%2FlU35xzvXvB%2B8Dw%2F2rXFt2qapoMMUYl07UEnfNkfNMOfeWqywW9Tec58lrZMpLqH%2F4NMdkBbvZjKsBBEWpa2%2BAqR3G0c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adccae58b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:24 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 31 Jan 2023 08:22:31 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 82613
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QfVE5TUnd5QZqpupsiK66OMPAmLx5KXsgIN%2FUb4Zgu8qsL15EBOfCudiIp9D6ytqGi4SZBUUxb7Opkh1hdfvX2TYal0yHP9OXyjFZpAsYr5Do%2FBgpuikUjDpizXbPYqfnpCg00E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adccae57b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES11/js/modernizr.custom.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/ES11/js/modernizr.custom.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/html/ES11/js/modernizr.custom.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:24 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=8371
expires: Tue, 31 Jan 2023 10:33:53 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 74730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fc2G7oe%2BIW%2BBrRyIHwUVuBKo%2Bz1FQcF2%2Bv%2BwaOYSGO8KOdZWYwz5AoPvLeB3WXONsHAjYKftjKZy%2F9hJKXHVzDbCYnJ%2FfGxyA2NYcHi0q4Ylo5HHUZ0sqFit2NtEqRGtA3wjRu8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adccbe60b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:24 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 31 Jan 2023 08:22:31 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 82613
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F%2Fx%2FCmisDm9XWU1uLT85Gd9kyFJyxs688kGJa4LAuvsdJFX4thXmpCmUgycOynrUrxYdnv%2Bc7%2BJsjq23ck0bOv33dlSrV7%2F0ZHeagzch4dnkqQ43HFVp2fOLSZhW1oYlW%2F0kCko%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adccae4bb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/html/ES11/js/langs.js

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/html/ES11/js/langs.js
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sl/html/ES11/js/langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:24 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=68596
expires: Tue, 31 Jan 2023 10:33:53 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 74730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nv5kBMUGhjXAwmCZiMqG%2F3NNApq7%2BSqfdLwhcJ1U%2BHxRfztMuduxhDX35caMJLKGntO9%2F6NlpgmWxmPMkmqVkGtybmYbd1P7OSRCgCqSVLa3Gmj5b0I1IrmBXslzqiSTcQKH4pA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920adccbe59b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycasualhookups.com/sl/common/favicon.ico

104.26.13.87

200 OK

0 B

URL HTTP/2
mycasualhookups.com/sl/common/favicon.ico
IP
104.26.13.87:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sl/common/favicon.ico HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:25 GMT
content-type: image/x-icon
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 10795043
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cHQk%2BDg5kvujgvR91KF%2FxJs92RG5%2BA%2BkTcwewH6EzjRHaiFQGkqZ1c4ORgLv91q%2FJs%2Fa5yFmP3xOi%2BkOK7vWONu%2F98p7xU6OPI0cVAk7BOhnU2saA%2FygrRnGs9JTdIXi%2B4jFgyk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7920add0ba98b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdnjam.com/cdn/sdialog.min.css?_=4

188.114.97.1

200 OK

0 B

URL HTTP/2
cdnjam.com/cdn/sdialog.min.css?_=4
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cdn/sdialog.min.css?_=4 HTTP/1.1
Host: cdnjam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 31 Jan 2023 07:19:26 GMT
content-type: text/css
content-security-policy: block-all-mixed-content
etag: W/"1d16caacad4ad6c40a99319a5d183947"
last-modified: Mon, 22 Nov 2021 08:00:52 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 16F5E342988C7B8C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 1540
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0xWbyLfZ0uBWx1wLtzBwb%2BCYTYiOlqZaosTpWk3U5XlZwBPaspP%2Bgi%2FNeo4w355HqzhZHEmzjqzH1AJcN0wqWJVpEAUUfwyNcaOk72MczLxTlXPic9isYC8O3e%2Fe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7920add89d7bb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML