| m.luvmenow.com/click?pid=29966&offer_id=61&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= | 172.67.165.172 | 302 Found | 0 B |
URL HTTP/1.1m.luvmenow.com/click?pid=29966&offer_id=61&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= IP172.67.165.172:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=29966&offer_id=61&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= HTTP/1.1
Host: m.luvmenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Tue, 17 Jan 2023 05:45:30 GMT
Content-Length: 0
Connection: keep-alive
X-Adjust-Use-Original-Forwarded-For: 1
Location: https://datify.g2afse.com/click?pid=29966&offer_id=29&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8=
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BIc4IZaJWOfUZLyPQCA7%2BF%2FR59QJlzyS2OaucKkxUurcP%2FTC%2F9%2FeXcsPSmvsZgMRXKZfYR00HCLhs%2B%2Fa4Do7kpg9HbgDMbQQMP8oL4Wto1hGU5XaOsRVly%2BwNx6SWer7Ag%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78acc8fc38b9b503-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash405f8f149ccdf0005ca0d890c96a9cb4 64de3200cef76133dfad901d6709697d6842405e 3a10790c397a419450ac2c90b941fd20bc49af1dbaeb34678836306de8febfce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A10790C397A419450AC2C90B941FD20BC49AF1DBAEB34678836306DE8FEBFCE"
Last-Modified: Mon, 16 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19427
Expires: Tue, 17 Jan 2023 11:09:17 GMT
Date: Tue, 17 Jan 2023 05:45:30 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash2258cd6b877a3aca8f4c84074e65ac4b 4e46c70941f8e497e8afc8d078644e7f81761a1c faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11621
Expires: Tue, 17 Jan 2023 08:59:11 GMT
Date: Tue, 17 Jan 2023 05:45:30 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 17 Jan 2023 04:49:12 GMT
content-type: application/json
age: 3378
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashd38f4bb41e1264b8a1e11ff0b1499d20 21c3e36bd908df43e0d49b747e270ec75cb882b0 3ff822eb56d2218ad6244fd013a82e0d27450ae21d47e08f1e3fdf4c82a8aad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FF822EB56D2218AD6244FD013A82E0D27450AE21D47E08F1E3FDF4C82A8AAD7"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17873
Expires: Tue, 17 Jan 2023 10:43:23 GMT
Date: Tue, 17 Jan 2023 05:45:30 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: c2fOskVlhIG5vxRiKdNeJpE0Dp768gQwfCF4Z+wihxZaEq3aNS226/MEMXYaebCX7JyVCZn/no4=
x-amz-request-id: 3FJAN6JS924XZ575
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 17 Jan 2023 04:56:06 GMT
age: 2964
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 05:45:30 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 314 B |
IP93.184.220.29:0
Hash19114fb9685683973ef3a78ad0fa1cb0 a430f1790d020f18cda38d22bc9a8b8cf5641e6c 31d4e576c11040163e57779b9aecf98394d5455579d7a938f0ede0bfec2f89e0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4867
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 05:45:30 GMT
Last-Modified: Tue, 17 Jan 2023 04:24:23 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 314
|
|
| datify.g2afse.com/click?pid=29966&offer_id=29&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= | 34.91.226.152 | 302 Found | 0 B |
URL HTTP/2datify.g2afse.com/click?pid=29966&offer_id=29&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= IP34.91.226.152:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=29966&offer_id=29&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= HTTP/1.1
Host: datify.g2afse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Tue, 17 Jan 2023 05:45:30 GMT
content-length: 0
location: https://t.luvmenow.com/click?pid=29966&offer_id=1521&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8=
x-adjust-use-original-forwarded-for: 1
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 17 Jan 2023 05:33:47 GMT
age: 703
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| t.luvmenow.com/click?pid=29966&offer_id=1521&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= | 104.21.11.83 | 302 Found | 0 B |
URL HTTP/2t.luvmenow.com/click?pid=29966&offer_id=1521&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= IP104.21.11.83:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=29966&offer_id=1521&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= HTTP/1.1
Host: t.luvmenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Tue, 17 Jan 2023 05:45:31 GMT
content-length: 0
location: https://t.luvmenow.com/click?pid=29966&offer_id=1946&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8=
x-adjust-use-original-forwarded-for: 1
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TDeDHy9nH9n%2F7Z941DNyJ1i9Ui9h4Ua7DyC93yNYqykB99pnq3JaqR%2F4cRAEbnOJ01gGiIbXSd6vKvkeDi78V1syC5P5OtB6%2BSMeOZZj1Um1onnPIyDw8DDeU28LfOtoAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc900bdae0afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| t.luvmenow.com/click?pid=29966&offer_id=1946&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= | 104.21.11.83 | 302 Found | 0 B |
URL HTTP/2t.luvmenow.com/click?pid=29966&offer_id=1946&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= IP104.21.11.83:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=29966&offer_id=1946&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= HTTP/1.1
Host: t.luvmenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
date: Tue, 17 Jan 2023 05:45:31 GMT
content-length: 0
location: https://datify.g2afse.com/click?pid=29966&offer_id=5246&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8=
x-adjust-use-original-forwarded-for: 1
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FYea1HQ6NtmsjhddCjeBceiVqtMgb6FLLgVC5EvIhDJHoOZ2Qg5syFVvhxj4lseY9z%2Fp0pDBeSydXAZZ2nd25qP4%2B5mhWW2ICJIE5sh8Hq64Z0kW7cVqGT87J3IE57YjGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc9016df20afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashd03545e1fc5a8876441094039811aac5 99fcc840f3516298625c528e9b408132f7fcbb9c 166fa7c7bb716b2cd02a47884ee00df31030dfb4b2a6fdae7b59b19f87739123
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 654
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 05:45:31 GMT
Last-Modified: Tue, 17 Jan 2023 05:34:37 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
|
|
| datify.g2afse.com/click?pid=29966&offer_id=5246&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= | 34.91.226.152 | 302 Found | 0 B |
URL HTTP/2datify.g2afse.com/click?pid=29966&offer_id=5246&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= IP34.91.226.152:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=29966&offer_id=5246&sub1=3q9sgmp2vb3i&sub2=29966&sub3=180575&sub4=&sub5=&sub6=&sub7=&sub8= HTTP/1.1
Host: datify.g2afse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 17 Jan 2023 05:45:31 GMT
content-length: 0
location: https://meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63c635fb660c6800015a1142&s4=29966
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=63c635fb660c6800015a1142; expires=Wed, 17 Jan 2024 05:45:31 GMT; secure; SameSite=None
afoffers={"5246":1673934331}; expires=Wed, 17 Jan 2024 05:45:31 GMT; secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 52.12.67.61 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.12.67.61:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9VFc8badaRi9SVNm+WcSpQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jlM1NCwkGltN3AAYLw/p6+o1bXo=
|
|
| ocsp2.globalsign.com/gsalphasha2g2 | 151.101.130.133 | 200 OK | 1.4 kB |
URL HTTP/1.1ocsp2.globalsign.com/gsalphasha2g2 IP151.101.130.133:0
Hash29c9ea81c7afd1b9d4f46ed8ae82fdf1 c9e67d6e79b767459f9fb8da6d62cb7263ade7ab 9c6233d8f773923bc73a08f14e05e0fec700fcd09b9edca7621de455be7a8855
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1423
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 21 Jan 2023 05:45:30 GMT
ETag: "c9e67d6e79b767459f9fb8da6d62cb7263ade7ab"
Last-Modified: Tue, 17 Jan 2023 05:45:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 17 Jan 2023 05:45:31 GMT
Age: 0
X-Served-By: cache-qpg1264-QPG, cache-bma1676-BMA
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1673934331.460298,VS0,VE208
|
|
| meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63c635fb660c6800015a1142&s4=29966 | 52.19.202.187 | 302 Found | 269 B |
URL HTTP/1.1meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63c635fb660c6800015a1142&s4=29966 IP52.19.202.187:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash90a2a290082fae992f7364656b54789e 122e2106c4c88141d1447706d47368e592423805 d5bfaf390a15a639d5c4a1e955e0e6600751d41bd7b4d52b90ad587e49f7c666
GET /?a=16295&c=43694&p=r&s1=&s2=a_63c635fb660c6800015a1142&s4=29966 HTTP/1.1
Host: meshho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 269
Content-Type: text/html; charset=utf-8
Date: Tue, 17 Jan 2023 05:45:31 GMT
Location: https://fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63c635fb660c6800015a1142&s4=29966&ckmguid=ce8acc31-89a8-470b-a83a-a74565f55634
Connection: close
|
|
| ocsp2.globalsign.com/gsalphasha2g2 | 151.101.130.133 | 200 OK | 1.4 kB |
URL HTTP/1.1ocsp2.globalsign.com/gsalphasha2g2 IP151.101.130.133:0
Hashae15b494ede90377a7936d4140b2a927 ba29c3f2ff790f6954ebd2bbacc047cc37bb5bcb afcb233f512561951013d3086e1f2f9c034438e021bf9b038d42650d0d838ed8
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1423
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 21 Jan 2023 05:45:31 GMT
ETag: "ba29c3f2ff790f6954ebd2bbacc047cc37bb5bcb"
Last-Modified: Tue, 17 Jan 2023 05:45:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 17 Jan 2023 05:45:32 GMT
Age: 0
X-Served-By: cache-qpg1264-QPG, cache-bma1676-BMA
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1673934332.898357,VS0,VE387
|
|
| fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63c635fb660c6800015a1142&s4=29966&ckmguid=ce8acc31-89a8-470b-a83a-a74565f55634 | 34.242.160.154 | 302 Found | 234 B |
URL HTTP/1.1fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63c635fb660c6800015a1142&s4=29966&ckmguid=ce8acc31-89a8-470b-a83a-a74565f55634 IP34.242.160.154:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash68caf648c45d0865ff6fd04b0eabab9c 3fcc5068749c0cb8ccd3c13f249fd86e6ff14022 27958f1179b669e793ae5927b499431bbd5b49b777a41cc3122e544986cfead3
GET /?a=16295&c=43694&p=r&s1=&s2=a_63c635fb660c6800015a1142&s4=29966&ckmguid=ce8acc31-89a8-470b-a83a-a74565f55634 HTTP/1.1
Host: fordats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 234
Content-Type: text/html; charset=utf-8
Date: Tue, 17 Jan 2023 05:45:32 GMT
Location: https://bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-741855120&source=16295&sum=#p#
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=kF5gF3LjMidVPfS28Xf/Z9uMgMdomtxOckbw6byRhWHq/F76rZqdRA==; domain=.fordats.com; path=/; HttpOnly
trk=jgaTK9g3wnNKyROt4EP/39uMgMdomtxOckbw6byRhWHq/F76rZqdRA==; domain=.fordats.com; expires=Fri, 17-Jan-2025 05:45:32 GMT; path=/; HttpOnly
c36197=kF5gF3LjMifpa7mHFjKZpdKDrG46fv0IExLm/oe03uNeCUghiDE1Zg==; domain=.fordats.com; expires=Thu, 16-Feb-2023 05:45:32 GMT; path=/; HttpOnly
Connection: close
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash871ced6cfe919499937981d7534580e9 2e8c0fb97592bd7868be241ade707d1b38e49c34 35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4055
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 05:45:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash871ced6cfe919499937981d7534580e9 2e8c0fb97592bd7868be241ade707d1b38e49c34 35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4055
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 05:45:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash871ced6cfe919499937981d7534580e9 2e8c0fb97592bd7868be241ade707d1b38e49c34 35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4055
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 05:45:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash871ced6cfe919499937981d7534580e9 2e8c0fb97592bd7868be241ade707d1b38e49c34 35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4055
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 05:45:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash871ced6cfe919499937981d7534580e9 2e8c0fb97592bd7868be241ade707d1b38e49c34 35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4055
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 05:45:32 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashad210f0ba6ce6930724549cbba76e83d e4badc3fbca9913bc11d968dac5cad1f900ff492 ad5f754d5dbe870feabfe090a46838614e96d72e78b9a2a8010ab339c67130be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9529
x-amzn-requestid: 56f2b9a5-91c6-421a-ad84-165376e23dcf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm6Fm-oAMFrDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f8-67a0c1fe6aad6e6b71e50463;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mzmFGVDfMuZte5CJUmchEQIVAuDUKdGfUpm7PRTUqnsP44IcDmbl8A==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
age: 28757
etag: "e4badc3fbca9913bc11d968dac5cad1f900ff492"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F144b7909-7293-4696-94a6-0afc31d3e351.jpeg | 34.120.237.76 | 200 OK | 8.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F144b7909-7293-4696-94a6-0afc31d3e351.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash05aa269a0f2828ea2db69313f279b38c f6304901ff8fa128627ca44eaf37072c5f4d5fd8 3f7de0fdee25471f646d0f1ab82729c449e3f05c83eec1b84a42c6b2d69dcce2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F144b7909-7293-4696-94a6-0afc31d3e351.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8868
x-amzn-requestid: deb46f6b-5234-4579-8f20-59906066d836
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZxKWEZfoAMFbzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba2f0e-6890657c300dba5c26a2118e;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 02:48:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BK2NuVnKf9BYNXXPCP3qSN7wQAMvuh_KdaRjuAA_OojxpxyY3ksCmA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 04:42:27 GMT
age: 3785
etag: "f6304901ff8fa128627ca44eaf37072c5f4d5fd8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddb60f9d-860b-4c2b-aa69-d185482f022c.jpeg | 34.120.237.76 | 200 OK | 8.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddb60f9d-860b-4c2b-aa69-d185482f022c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3aa134e9259a4f258a832e223bcd5825 3648297257e246e7ec4541fef1ee549523c04f02 3abcd9f270d477b813f145b6c6ccc6c881c705a05976627762db58c4a1f4b76a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddb60f9d-860b-4c2b-aa69-d185482f022c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8128
x-amzn-requestid: 029defe2-e597-44d5-9bf2-6c3343701baa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enjFcEt6IAMFUEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bfb222-049108b226dd013b05b6fe61;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 07:09:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PgW7278hWZLa3NnPbd_qAOdLdkkyhwNFRPWprB7KJW7vill_vbRiIQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 20:52:24 GMT
age: 31988
etag: "3648297257e246e7ec4541fef1ee549523c04f02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87b645d1-9bdf-4fcb-990e-f3dfb01d71d5.jpeg | 34.120.237.76 | 200 OK | 2.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87b645d1-9bdf-4fcb-990e-f3dfb01d71d5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash57f4bddae2488cc36924ba39e6cb5b75 84c4e591d4ec54c3f9b6749044029145103f2fb8 30f39db37bf4f4089a2c180cf3415dbcd2e73e4ad6088eb1ecf31c9f6f00d521
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87b645d1-9bdf-4fcb-990e-f3dfb01d71d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2711
x-amzn-requestid: d7f0fb1e-8a6e-4fae-99a9-7e0497a250c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ekP_UE9HoAMFuyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63be6061-389b5ce60f1febdc3e3d48d0;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 07:08:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r5J4wPWxEkUaI7C2rCwCVIZ-KvGCLNIS95-_7L2Pj3M5CSkS7Em3xg==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 06:53:17 GMT
age: 82335
etag: "84c4e591d4ec54c3f9b6749044029145103f2fb8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4645b901-7a6a-474e-a0e9-8661e378c83d.jpeg | 34.120.237.76 | 200 OK | 4.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4645b901-7a6a-474e-a0e9-8661e378c83d.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash304bb1b20c55a224a8aa28c2af0a0d0e 590f9978d35d8bff19b665505b9761f87c66b915 74a5930f8ccc54b5618892ace303d163066656b02c942273e8d6debcf2ab3614
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4645b901-7a6a-474e-a0e9-8661e378c83d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4272
x-amzn-requestid: e53617f5-3c7b-4a81-a9bb-79667a1ef7c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ej0BwETpIAMFdcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63be33a4-328c82663ce8bb024b0181d9;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 03:57:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RPQ9yl2wbB4u7VZlCLdCGijWsLz2489wJHIf1iVKNlBCNZLG168X3Q==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:59:37 GMT
age: 27955
etag: "590f9978d35d8bff19b665505b9761f87c66b915"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1490db-aa8a-4724-a608-8c0c03f98b35.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1490db-aa8a-4724-a608-8c0c03f98b35.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash805a998e9a6fc452c152ab9542b6d0cd 0bd57ea7809abfa4136506f565ac8ba45c936406 b24e0b322cacda63e43582e713cb38d80914f6b82c735307188a2ddd9829338f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1490db-aa8a-4724-a608-8c0c03f98b35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10736
x-amzn-requestid: 78c83dbb-f641-4ece-bd8d-ce9d524f100d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm5FLvoAMFn1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f8-73b261b87d3eb7b709161fdf;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hUS-ajMYSYKXI2jsZJApvgUgr0lnbrm02BXZ6rsPS5h0daBcIRtgEw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
age: 28757
etag: "0bd57ea7809abfa4136506f565ac8ba45c936406"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-741855120&source=16295&sum= | 18.193.146.82 | 302 Found | 0 B |
URL HTTP/2bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-741855120&source=16295&sum= IP18.193.146.82:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-741855120&source=16295&sum= HTTP/1.1
Host: bl.trackham.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Tue, 17 Jan 2023 05:45:32 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/EN3/n.php?cep=8bdmSlbClQ9yTZTyh8qIsYXU-C63_xfMttIhv6Ptxed0IDjZiMB7tWHpQggdWpcn59_WTgf1T6-XlFcz8cr0h3yAeWW-_VKC925n-H_hYgZBCGF-o1FJnjQmRVKse2OZ3pLCFQvW5ecH5oQPVtr9HHqIqEEywlEEIj19GplZGIGcGjnGICzBy6oRXRjaTbklYf4hGk1LLdMtQUOgHn3SrmbIaY3d-1JbL51S1ZEKVaxG2KsNWCm3poue1dv9P9oKCD4matBqxMaVcd-SOv-BSnoMakzIf9NTrgZX23DKl40bAx_mImvBPxkfA2lLQ0haQuqvMHZC64I5uV8RW2TwP7y3J9M3q4YnzSp-Fgizw-VNjQzpou1LRH_MTA0US4GzrYNYQLodakenCcUkRAIIyg&lptoken=16c373ba933561a732c6&external_id=36197-741855120&source=16295&sum=
pragma: no-cache
set-cookie: f9908105-7257-45be-97c0-9990466cb2a4-v4=OkE67CSiz8YashwA-U-CH0yLjp6GiEFoHEGTNR0Bm-M; Max-Age=86400; Expires=Wed, 18-Jan-2023 05:45:32 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=s1onP7wHX9qvQj1GEDZeHdStLqLUKjytZ0Ab9vIGfcMIqdiM0yNOhBlgrtERuhZc6hkPgqIFPY4sKjwR-OIeVYJKiUb0iDA77ExWntJULzJoYrxjTXg5P01D217ATaimT3aPacZ3JKb5m6qc93P_swaA8ZEvxd-H8VMvZRyhCDf5B_KH_Evrw_VSxeot3bs7IIjahMpdFOGpabJ4gdWY7k4wJnmnx1-Jn-b5zPsiR567rfPLg4mkqj3SsbA0_uo7oGUG1VsYfFKifhZ6TSovT7rq6So66g4DmSaHMYYpxhbaYOHGQaIOuhFV0CLKXcFjzQRr93wwzqAshH4TYKyTyNVi9T1FhlYCAH9RaE26FkhTunupWKMUU3_vTh52BBGe9N8GhUHBgs1OYgespKK8Tw; Max-Age=86400; Expires=Wed, 18-Jan-2023 05:45:32 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
|
|
| cdn-dt.fcdn.info/swpush.min.js | 104.21.234.87 | 200 OK | 11 kB |
URL HTTP/2cdn-dt.fcdn.info/swpush.min.js IP104.21.234.87:0
File typeASCII text, with very long lines (34449) Hash06fd10c15cb7d9518c48a7434d811ca7 01ed736653a5e1e517568af784bac66269cfbab6 5e7513ecc9b7c3ba1e5e52ec834601cba7e6d672f46510f8ac03a00969f96306
GET /swpush.min.js HTTP/1.1
Host: cdn-dt.fcdn.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:33 GMT
content-type: application/javascript
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2314029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Uce9%2Fb3ay11D4g%2B8v0ZZmT%2BiHmLQgNUlzwTA0noGFNx4IJ%2FCpe5hjVLsWIo%2FuKYv%2B%2Bgxshvt1pqufd%2F4N6KmmST4epzKt%2FSynYrOTc6MXVbda3FlI9ikcbukwsciQ9vdTWNv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78acc911597b71bd-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/main.js?1673934333 | 172.67.71.67 | 200 OK | 201 kB |
URL HTTP/2mycasualhookups.com/sl/common/js/main.js?1673934333 IP172.67.71.67:0
Size201 kB (201239 bytes) Hash715b486f31313c75c46c57b10aa7bd33 7b040323b4eb66f281438925bb848c6708b44840 c483e46bc06fa59e61d12996e3df22142cbc8db14694732b92fc43adce8e0a25
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /sl/common/js/main.js?1673934333 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:34 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Wed, 18 Jan 2023 05:45:33 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QOnpvY99rJtErQnRTmV0Gj%2BrRnCRcQU8PV5sv%2ByB0tHhG7qAHVgGwJV%2Be75O21h9vrOagLYvQPcObiXxsCKEfGT1VR5ytU4m8lJofqYt0bQi9KdDCsHXk3SNsdKMx70cEvViLDg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc910ba69b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/EN3/js/functions.js | 172.67.71.67 | 200 OK | 33 kB |
URL HTTP/2mycasualhookups.com/sl/html/EN3/js/functions.js IP172.67.71.67:0
File typeASCII text, with very long lines (11875) Hash42f4491babdbb3ce3cbcaa76edf8564f 8882057a5770fa9172def5af69a1d4b956ce97cc 859213f19ca33cbfd26012d07f23ba3e9a73995f1a0ca7c17bb7d37323dda4af
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /sl/html/EN3/js/functions.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:33 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=52042
expires: Wed, 18 Jan 2023 02:43:29 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 10924
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RrWOohU2ayIdc%2B2dnr27Yp4s97BK7mmv%2BbmAthH0H9g1zsg56iECF9ENf6C4rhxnunAuDp8tS%2BVisjS%2FdeSmYMJzsZSjFAMROYHZCCiHIAfGUm1r4jQHdWg0rJOXsPvXbz3kEwE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc910ca6cb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/EN3/images/1.jpg | 172.67.71.67 | 200 OK | 141 kB |
URL HTTP/2mycasualhookups.com/sl/html/EN3/images/1.jpg IP172.67.71.67:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x900, components 3\012- data Size141 kB (141134 bytes) Hashf0bb581fd22d0a746e70159e693678e2 9a0afa1464b37253d19c4ed003854122d300cf8c ed1763dc59e14b6d0731a7b4cebd0e8ef91e2048a04744643b5faef25ec5d01d
GET /sl/html/EN3/images/1.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:34 GMT
content-type: image/jpeg
content-length: 141134
cache-control: max-age=86400
cf-bgj: h2pri
expires: Tue, 17 Jan 2023 09:48:22 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 71832
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4R5shHVNVgttoIj2bdUkbVEegA3GYI9qsTWUXJv4Q5Wxsft2xPMQQy1%2BprxPUHyyk7MtK4jJ80wrC%2Buh5YG%2FsBhtC2JrB6%2Bj%2BlHdCXHTUA0a8zshKweHf69kUNJyiU50VqTC28%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78acc9143cf6b527-OSL
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/EN3/js/config.js | 172.67.71.67 | 200 OK | 209 kB |
URL HTTP/2mycasualhookups.com/sl/html/EN3/js/config.js IP172.67.71.67:0
File typeASCII text, with very long lines (332) Size209 kB (208757 bytes) Hashb80840adcb2d655255b6b128ceb89bdf 245cf140cc2e167808c49aa5cb65d34e9ebfa2eb a296cae93ea27cd7c16e6452e5b03b5e353c97ec4685e050155b17cd727c7172
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /sl/html/EN3/js/config.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:33 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=701
expires: Wed, 18 Jan 2023 02:43:29 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:26:18 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 10924
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O9%2FlsoQfDuvtqqAhAGHvLD8Vj3oz6kY3ODgZeVB5Q3APuxdp2TlhKMoKZXe1r7F9nLIh84O6ftgDbf%2FBxl%2FJJ3SXGiy9279hq9MvAHLhEw5cUsx303slSO%2FRDnj6n4RIRLDJAxw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc910ba63b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| app.api-push.com/get-keys | 172.64.163.28 | 200 OK | 917 B |
URL HTTP/2app.api-push.com/get-keys IP172.64.163.28:0
File typeJSON data\012- , ASCII text, with very long lines (2116), with no line terminators Hash513e2d6f7c4afa7a467e568b61c21860 ac4f6c25cdb7c39831cb5fbb29145329a81abee4 a1d29eaf84ca426460dada1ebf6d4d2c709ad23201f8bc53d4f9dbdc65aa4d20
POST /get-keys HTTP/1.1
Host: app.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/EN3/n.php?cep=8bdmSlbClQ9yTZTyh8qIsYXU-C63_xfMttIhv6Ptxed0IDjZiMB7tWHpQggdWpcn59_WTgf1T6-XlFcz8cr0h3yAeWW-_VKC925n-H_hYgZBCGF-o1FJnjQmRVKse2OZ3pLCFQvW5ecH5oQPVtr9HHqIqEEywlEEIj19GplZGIGcGjnGICzBy6oRXRjaTbklYf4hGk1LLdMtQUOgHn3SrmbIaY3d-1JbL51S1ZEKVaxG2KsNWCm3poue1dv9P9oKCD4matBqxMaVcd-SOv-BSnoMakzIf9NTrgZX23DKl40bAx_mImvBPxkfA2lLQ0haQuqvMHZC64I5uV8RW2TwP7y3J9M3q4YnzSp-Fgizw-VNjQzpou1LRH_MTA0US4GzrYNYQLodakenCcUkRAIIyg&lptoken=16c373ba933561a732c6&external_id=36197-741855120&source=16295&sum=#p#
Content-Length: 89
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:34 GMT
content-type: application/json; charset=utf-8
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UXr6xQwN1EFiD1NOEqNvkPMW2QCakEdS%2FuuEcV75JUps0LxwwBOGeRskLkxncQ2BW5dx%2BAAiNHNnv9rKhw4ZCQzRDj%2FksoBhkOjaFUOSYlu98bKOKsoFzdlt603SwPScKS88"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc912f94e76f0-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b | 172.64.163.28 | 200 OK | 5 B |
URL HTTP/2subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b IP172.64.163.28:0
File typeASCII text, with no line terminators Hash68934a3e9455fa72420237eb05902327 7cb6efb98ba5972a9b5090dc2e517fe14d12cb04 fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
GET /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1
Host: subscribe.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/EN3/n.php?cep=8bdmSlbClQ9yTZTyh8qIsYXU-C63_xfMttIhv6Ptxed0IDjZiMB7tWHpQggdWpcn59_WTgf1T6-XlFcz8cr0h3yAeWW-_VKC925n-H_hYgZBCGF-o1FJnjQmRVKse2OZ3pLCFQvW5ecH5oQPVtr9HHqIqEEywlEEIj19GplZGIGcGjnGICzBy6oRXRjaTbklYf4hGk1LLdMtQUOgHn3SrmbIaY3d-1JbL51S1ZEKVaxG2KsNWCm3poue1dv9P9oKCD4matBqxMaVcd-SOv-BSnoMakzIf9NTrgZX23DKl40bAx_mImvBPxkfA2lLQ0haQuqvMHZC64I5uV8RW2TwP7y3J9M3q4YnzSp-Fgizw-VNjQzpou1LRH_MTA0US4GzrYNYQLodakenCcUkRAIIyg&lptoken=16c373ba933561a732c6&external_id=36197-741855120&source=16295&sum=#p#
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:34 GMT
content-type: application/json; charset=utf-8
content-length: 5
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QVsFHeWRHoONlxjI6k9Imuj%2Ftf3AMrUxhSSSO6d6wvQWJvO1zwbbLFbZvkgXfQoFmYgrjobJZhiD0Ki27UKiAhPvP5Nvc%2BpRVwbZ5BreIGm%2FIuyvExJtwcyhqL8dpFwT9lEtCEsw2UQd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc914faae76f0-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/EN3/n.php?cep=8bdmSlbClQ9yTZTyh8qIsYXU-C63_xfMttIhv6Ptxed0IDjZiMB7tWHpQggdWpcn59_WTgf1T6-XlFcz8cr0h3yAeWW-_VKC925n-H_hYgZBCGF-o1FJnjQmRVKse2OZ3pLCFQvW5ecH5oQPVtr9HHqIqEEywlEEIj19GplZGIGcGjnGICzBy6oRXRjaTbklYf4hGk1LLdMtQUOgHn3SrmbIaY3d-1JbL51S1ZEKVaxG2KsNWCm3poue1dv9P9oKCD4matBqxMaVcd-SOv-BSnoMakzIf9NTrgZX23DKl40bAx_mImvBPxkfA2lLQ0haQuqvMHZC64I5uV8RW2TwP7y3J9M3q4YnzSp-Fgizw-VNjQzpou1LRH_MTA0US4GzrYNYQLodakenCcUkRAIIyg&lptoken=16c373ba933561a732c6&external_id=36197-741855120&source=16295&sum= | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/EN3/n.php?cep=8bdmSlbClQ9yTZTyh8qIsYXU-C63_xfMttIhv6Ptxed0IDjZiMB7tWHpQggdWpcn59_WTgf1T6-XlFcz8cr0h3yAeWW-_VKC925n-H_hYgZBCGF-o1FJnjQmRVKse2OZ3pLCFQvW5ecH5oQPVtr9HHqIqEEywlEEIj19GplZGIGcGjnGICzBy6oRXRjaTbklYf4hGk1LLdMtQUOgHn3SrmbIaY3d-1JbL51S1ZEKVaxG2KsNWCm3poue1dv9P9oKCD4matBqxMaVcd-SOv-BSnoMakzIf9NTrgZX23DKl40bAx_mImvBPxkfA2lLQ0haQuqvMHZC64I5uV8RW2TwP7y3J9M3q4YnzSp-Fgizw-VNjQzpou1LRH_MTA0US4GzrYNYQLodakenCcUkRAIIyg&lptoken=16c373ba933561a732c6&external_id=36197-741855120&source=16295&sum= IP172.67.71.67:0
GET /sl/html/EN3/n.php?cep=8bdmSlbClQ9yTZTyh8qIsYXU-C63_xfMttIhv6Ptxed0IDjZiMB7tWHpQggdWpcn59_WTgf1T6-XlFcz8cr0h3yAeWW-_VKC925n-H_hYgZBCGF-o1FJnjQmRVKse2OZ3pLCFQvW5ecH5oQPVtr9HHqIqEEywlEEIj19GplZGIGcGjnGICzBy6oRXRjaTbklYf4hGk1LLdMtQUOgHn3SrmbIaY3d-1JbL51S1ZEKVaxG2KsNWCm3poue1dv9P9oKCD4matBqxMaVcd-SOv-BSnoMakzIf9NTrgZX23DKl40bAx_mImvBPxkfA2lLQ0haQuqvMHZC64I5uV8RW2TwP7y3J9M3q4YnzSp-Fgizw-VNjQzpou1LRH_MTA0US4GzrYNYQLodakenCcUkRAIIyg&lptoken=16c373ba933561a732c6&external_id=36197-741855120&source=16295&sum= HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:33 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=300
expires: Tue, 17 Jan 2023 05:50:33 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A%2BnPoZJ3qggk4ZZbUhyg0jFCBRdDskhqMRTXfyjeVAGX3mKZhkmiWQdfMUMhGNrJi3l7YYxrX0fbhtI6ipE4FBD3xTRn64iTn2c4I9kXMqkkQ1IWeqkf%2BE9ZizkZnLMtEyLEdOI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc90cef9ab527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/EN3/css/style.css | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/EN3/css/style.css IP172.67.71.67:0
GET /sl/html/EN3/css/style.css HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:33 GMT
content-type: text/css
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=13343
expires: Wed, 18 Jan 2023 02:43:29 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 10924
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GljxOAP4X03lTN648TPbfemM16PZrbmnSpRBx7tw89gcI9GpCvbefrhg7vqdo2tTgJST8PqcA9WO1DsmAidgOld4oxFdCg3O%2BYu4KXEHfeoQ7MNDDFbaO4KLQargzNwReNPaz%2Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc910ba5bb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js IP172.67.71.67:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:33 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Wed, 18 Jan 2023 01:00:35 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 17098
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9ZAZH5hWs8gishDqZJWJfHZa8ZyAIH7%2F5kvZq0Mc%2B3BQAtY9Qw2d2gE4H4urujscGC%2BNpHUd1iYDjar7gkIumMULqD5MNasuYJDmlsZIP6M5sQYUqsjLjtPFk9Nv2tRWcZiA9cA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc910ba5fb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/lib/additional-methods.min.js | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/additional-methods.min.js IP172.67.71.67:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:33 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Wed, 18 Jan 2023 01:00:35 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 17098
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GJKgWmK7Pbiv4feDOaJx8nnZrs%2B6txua7tVRYva%2FXzVjre3x4hN8CopFBnWjy1ik2SzSejp%2BDp6fNyvVOkHcIvyjUTcjsd9VffPyoYwc8hND48IN6WMhxGWK44gtqiI7ow1stjY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc910ba61b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js IP172.67.71.67:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:33 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Wed, 18 Jan 2023 01:00:35 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 17098
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u%2Fsf0sadIO%2FtTCGMhj6Fj1Mhdw3zOD%2F5GM%2BxlT8Sdk2FfeHxSs5w%2B%2F9E8XikBinoYZq5zKelG8Z07rc%2BqaTk%2BZijbooE%2BawyYunLTX9OvWs%2F7e%2BEYjucrJQlU13YhG7bDTpHdZA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc910ba5eb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/common-langs.js | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/common-langs.js IP172.67.71.67:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /sl/common/js/common-langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:33 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Wed, 18 Jan 2023 01:00:35 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 17098
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gz4325fqTJ0NIUWfaXu8nzh10Mnh4XNNS%2FkDEORLlpYUTjRSqaqHV1f7Cb32t07O2J%2FI0V0gfLHp9B0tmNDVUHOJS0WzijcTpoSNZLa%2BZ4uSC4E7Siy1z4gBTzCvQnfR51nrXY8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc910ba66b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/css/style.css?1673934333 | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/css/style.css?1673934333 IP172.67.71.67:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /sl/common/css/style.css?1673934333 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:34 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Wed, 18 Jan 2023 05:45:33 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tTkyB%2Flkk01HBa98aJWJI4a22Pxl5ml5L3QFJkI9yNtvrZIkBvuPGLgjDiYoEIItuOxl740NL%2BmFhXRGcV9DsNO3uiaKImc%2BG2n4nJlTpbnkwnV8YVcNMzpFOnIIrexSvOS3NE0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc910ba5cb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdnjam.com/cdn/sdialog.min.css?_=4 | 172.67.166.71 | 200 OK | 0 B |
URL HTTP/2cdnjam.com/cdn/sdialog.min.css?_=4 IP172.67.166.71:0
GET /cdn/sdialog.min.css?_=4 HTTP/1.1
Host: cdnjam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:35 GMT
content-type: text/css
content-security-policy: block-all-mixed-content
etag: W/"1d16caacad4ad6c40a99319a5d183947"
last-modified: Mon, 22 Nov 2021 08:00:52 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 16F5E342988C7B8C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 2574
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w0azW%2FsdBajMB4F9BMDulclpTHzw%2BDaYiSGFqhYtqVNj2G%2BhEmwfEW4fN6DPBp6W7sFEN6ZmALYfHLKffhaJGYZJ3ikQUM2VkBNBcfvd%2F2nGhIA6cOemnb6cKGVw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc91c9d2cb4e8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/EN3/js/langs.js | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/EN3/js/langs.js IP172.67.71.67:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /sl/html/EN3/js/langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:45:33 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=38889
expires: Wed, 18 Jan 2023 02:43:29 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 10924
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Fv6VsV%2B2NYYicFSSchpBbdbAMJdBfOiVZz25ZK5hmoAx3X796VN7uzVjJJXD%2Fv%2FGCpELyT7X8V519IaRoDKzMsvw5YZKZYpXHTlA2MbuVHidTdjAtf30gfvjeRLfrZt%2FYNoD2w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78acc910ba62b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|