| woulda1.com/?a=16295&c=43694&p=r&s1=&s2=a_636e90fa081c500001d2c41a&s4=28575 |  52.215.199.159 | 302 Found | 268 B |
URL HTTP/1.1woulda1.com/?a=16295&c=43694&p=r&s1=&s2=a_636e90fa081c500001d2c41a&s4=28575 IP52.215.199.159:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash143840f4648810df6d86a2e78567e895 f08404cf5c7d76d67c6675947607f17e59ab7cc8 e4087a742af0c751de87f48eb39bdcef15a08ca6debd9837f7067484d8c76c1a
GET /?a=16295&c=43694&p=r&s1=&s2=a_636e90fa081c500001d2c41a&s4=28575 HTTP/1.1
Host: woulda1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Fri, 11 Nov 2022 18:14:34 GMT
content-type: text/html; charset=utf-8
content-length: 268
cache-control: private
location: https://meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_636e90fa081c500001d2c41a&s4=28575&ckmguid=5c8fdf24-070f-449d-a7d0-29df654fd14f
|
|
| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash3d0727e32cd103ddd4b73f28c81758aa 197a7bf43d63723fc532c23c6dced68d5cc36652 d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15177
Expires: Fri, 11 Nov 2022 22:27:32 GMT
Date: Fri, 11 Nov 2022 18:14:35 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash4edf853c470fcec0ab277c78527f3c2d de93530ce15337e671c488d9fe05e7091d4956f0 b9d7976b398b1243ff8a571ddd3975d3a1317d69101061bdb1a755b3b56620e6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4656
Cache-Control: max-age=149668
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:14:35 GMT
Etag: "636e247f-1d7"
Expires: Sun, 13 Nov 2022 11:49:03 GMT
Last-Modified: Fri, 11 Nov 2022 10:31:27 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash2b57492bf85f4ae6abbd1641b17dc9ab 008e71ec05d47bf025ca64e17da2ea1bd8e71111 17894427c471f7fa02ca274795dc55df1bfc99d7bd83f9ee36249394035110fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17894427C471F7FA02CA274795DC55DF1BFC99D7BD83F9EE36249394035110FD"
Last-Modified: Wed, 09 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4083
Expires: Fri, 11 Nov 2022 19:22:38 GMT
Date: Fri, 11 Nov 2022 18:14:35 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash4736bac84ca28f2b1e961159fb4ea098 1319612979f53896fcfeacd4215c2715d4951e4c 5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 11 Nov 2022 17:43:54 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1841
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: zuOL38/WMYdn4mr85nS0snhYxCw+yRdiiPVvIgRoaqIvHWdXMiGEKRsmJEhtKtBpBY3zep0a0dI=
x-amz-request-id: XFZJHA5ME3P1Y6YG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 11 Nov 2022 17:49:54 GMT
age: 1481
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 11 Nov 2022 18:14:35 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 11 Nov 2022 17:44:48 GMT
cache-control: public,max-age=3600
age: 1787
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp2.globalsign.com/gsalphasha2g2 |  104.18.21.226 | 200 OK | 1.4 kB |
URL HTTP/1.1ocsp2.globalsign.com/gsalphasha2g2 IP104.18.21.226:0
Hasheaefba78892fb40a39328ce2de89876f 7d26bf3cac2bb1d414983e62d4adf5f0b92195d2 00056a27aadf44dd7a7af90dd32eeff55b3fa5f0ebf23227df7a93e7f20b67cb
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 18:14:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 15 Nov 2022 15:25:44 GMT
ETag: "7d26bf3cac2bb1d414983e62d4adf5f0b92195d2"
Last-Modified: Fri, 11 Nov 2022 15:25:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76890226aa64b523-OSL
|
|
| meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_636e90fa081c500001d2c41a&s4=28575&ckmguid=5c8fdf24-070f-449d-a7d0-29df654fd14f | 52.215.199.159 | 302 Found | 234 B |
URL HTTP/1.1meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_636e90fa081c500001d2c41a&s4=28575&ckmguid=5c8fdf24-070f-449d-a7d0-29df654fd14f IP52.215.199.159:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hasha5e81fdcfe6fc242b7731f2adef23d19 745c7e051df59820056718d65f2d5f212bb5d762 a50b271ecdd8e7e1afc2a70e089e89aa2f656ae5a93f42d1a41707d2eb11c435
GET /?a=16295&c=43694&p=r&s1=&s2=a_636e90fa081c500001d2c41a&s4=28575&ckmguid=5c8fdf24-070f-449d-a7d0-29df654fd14f HTTP/1.1
Host: meshho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 234
Content-Type: text/html; charset=utf-8
Date: Fri, 11 Nov 2022 18:14:35 GMT
Location: https://bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-736612398&source=16295&sum=#p#
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=dCUOYOXF3e9Cb0w7dKdawViwGuHunhZZXydPdJae3OeKtPusImYgBA==; domain=.meshho.com; path=/; HttpOnly
trk=+7CRyuDsUPI07nzv8jIJtViwGuHunhZZXydPdJae3OeKtPusImYgBA==; domain=.meshho.com; expires=Mon, 11-Nov-2024 18:14:35 GMT; path=/; HttpOnly
c36197=dCUOYOXF3e9Js3/jvvfUG01d204dVojrp9zU8Pf4+DNeCUghiDE1Zg==; domain=.meshho.com; expires=Sun, 11-Dec-2022 18:14:35 GMT; path=/; HttpOnly
Connection: close
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashf7ff606fbc8634c858bbc04b69f55cf6 2441de2cba649239efd0dae7a878d7ef2245c0b4 95154e0dbb7e827b8f893cc141f986c29634ead618256470d753429aa65a0548
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5310
Cache-Control: max-age=145247
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:14:35 GMT
Etag: "636e10ac-1d7"
Expires: Sun, 13 Nov 2022 10:35:22 GMT
Last-Modified: Fri, 11 Nov 2022 09:06:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
|
|
| bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-736612398&source=16295&sum= |  18.193.146.82 | 302 Found | 0 B |
URL HTTP/2bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-736612398&source=16295&sum= IP18.193.146.82:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-736612398&source=16295&sum= HTTP/1.1
Host: bl.trackham.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Fri, 11 Nov 2022 18:14:35 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/ES11/n.php?cep=USZnltHxntknPfTTH8W_fm7HUrhCC8CqJWfmvp3oBLMDs3YhvzQ6NvlYmJDgfOTJZmGNFZFfqH6cLHTxh9IjNjlybruAGtTg86eRcyipZW-6XjtmyrcRicU0PshNdut5RsvD0cmMl-cl-btX-UVKjMeQMdkA15mMmBtHxi3qOC96SX-4MfosH-PlqejwNTELqGlIoKkSTKr6Wkrg_n4NeoDUsyWjdSsPzxPo3v56QTL4FMLqRBmlYZPVOvCSPnjTWQ_woahOgN1Cs3OsjiEC7QggNresITRVOA6Da_EC9Z-8gI9k7sFotWnYowXj6huK-F4DVoIoD1WPn7n0_OrzwuUy2IoXA6xE_pJwB7TsqFUutXrDYVzWNP-VTdEURAwxfsn7ncSoxV-m_QnXIK0oaA&lptoken=163268b4195422727563&external_id=36197-736612398&source=16295&sum=
pragma: no-cache
set-cookie: f9908105-7257-45be-97c0-9990466cb2a4-v4=MEgJ-gN9-JgnLLGzCp895O3sC3vjvNjH4LxWqHVxfWQ; Max-Age=86400; Expires=Sat, 12-Nov-2022 18:14:35 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=uSGnjGb04luLpP35NBY8zYJkvtAeEAjaDGBM33fmHrUDNggIqwoBfKmQ84-_pUKA1aFtQK8V8OsTjffFFJESIJz95IviHZx5cQwsqoIvFKOqg_XAbBvBkd9HZPsmUgzz7NC2Ewf_S6pGrhsA8GjUwfeUlxVMX-4cG41QRrN1viv5uqK0fpzNc4_1pwhFVV0UWcTkUZ2c2X6cy9NLcNSjUyZM3udmlZp1_8W9RK13LaT9HlcSy9ZQxvpqRtyC6mEJeZ3gV1OKWZZKVcACoODvEAPHK9Oz75vcmW4mfgI2Eqy-V2yz8yLTbz9uemPxVZI_Db1Ci-ypHAaA5olPqCPvxdGxjqITJhxz6HYoENiiRqO4Nd_NmnnEg9puxM0xLjvv_ysrgKOSiSSrjuADfUzUww; Max-Age=86400; Expires=Sat, 12-Nov-2022 18:14:35 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 35.162.52.254 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.162.52.254:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UeUgT6J/0DZc5JBmfMAjJQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4zi5XJahRM05poPiiFzxX/7O8ws=
|
|
| mycasualhookups.com/sl/html/ES11/images/01.jpg | 104.26.13.87 | 200 OK | 59 kB |
URL HTTP/2mycasualhookups.com/sl/html/ES11/images/01.jpg IP104.26.13.87:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x600, components 3\012- data Hash51df31f09df7b6f59095d090ee85ef8b f907f6d8368c98a4c93ac30fa07baf896463f0e8 4098ee580cbb67c6b532037b0cabd518805f634c38afab3ea10ed3ed11661ada
GET /sl/html/ES11/images/01.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:36 GMT
content-type: image/jpeg
content-length: 58814
cache-control: max-age=86400
cf-bgj: h2pri
expires: Sat, 12 Nov 2022 17:55:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 1127
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7kw6ZzvfdjVPCWhd98scw42d98LVinAYc%2BopGG5NI%2BzoIhmP%2FoBSiTYxwlVY6II9cUCiJtwIyQjSiBf2Ql1kwxoYLnQzKHztKGQ6NYf1ionWB%2B41KFsAaXIJqYG%2F5ZBIuWGnh30%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7689022e39cab527-OSL
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js | 104.26.13.87 | 200 OK | 31 kB |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js IP104.26.13.87:0
File typeASCII text, with very long lines (65451) Hash09937a055a2f00133dfda67bf9225b53 2d721f71255ec61d5055811841b771ff12198077 4a67d9c18834abb87cfa2b52b84128d2fc1491e2acc99d2994b9ba1c0e376a5d
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:36 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 12 Nov 2022 14:56:53 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11862
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7wBUxcb9WWn80CaoBqFFgcGnoE2L2rpHI6IMnmhgjZIxaVJZrL9pbD0KFYVPks00unZbadhwd87%2BpNL7nhN1VrPDbQqAOeNvzCcyS%2B7afKUmYC1mDIO7XTC7PX3FHuhcJO7%2BEF4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689022e29b1b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/ES11/js/langs.js | 104.26.13.87 | 200 OK | 191 kB |
URL HTTP/2mycasualhookups.com/sl/html/ES11/js/langs.js IP104.26.13.87:0
File typeUnicode text, UTF-8 text, with very long lines (46348), with no line terminators Size191 kB (191176 bytes) Hash2cd774313f1d94a9081bedb437230194 d62dcc60996a1de7396060a7a5061f7ece55163d 99b85add584303fb160c998727eb10d4bdc0ddd3e47330ff700436e2cbbda69b
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/html/ES11/js/langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:36 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=68596
expires: Sat, 12 Nov 2022 14:15:15 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 14361
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oAEb3e5YReyNCnofJaJzHvbmNh8nzulFIBF2hHiVkn1VNdeEM2Q9nGLA3V0iWBhGaVdDMDtMH7958r1UlcpIPaM8zDdGZn2D9Wd%2BBamfrE%2FgDNQIR89qvppskiOA2qsfjQUajfc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689022e39c4b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/ES11/js/modernizr.custom.js | 104.26.13.87 | 200 OK | 4.5 kB |
URL HTTP/2mycasualhookups.com/sl/html/ES11/js/modernizr.custom.js IP104.26.13.87:0
File typeHTML document, ASCII text, with very long lines (8200), with no line terminators Hash3cd57e798aff6eaf98c68fefe998a43f 7eff79dff34b3e6acb79c8fbc71c27dd3bd1f3d7 72b5e8cc625a32444ba1c663b6b45fc31d11e311dc0fb56fa513dfa0a704c018
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/html/ES11/js/modernizr.custom.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:36 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=8371
expires: Sat, 12 Nov 2022 17:55:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 1128
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H3FX%2B%2B82qnLzUQpCGQk8G5HsvoinHWzgUl6ukDDfHAc6seBtkn9HZvfEhHssj9u%2BthBEFw8X6IZCTu6OFnmuB5Rkt04fgH5rVPRyYGHqhD9NXe6wmafz9teAxemMBOK2FQOReGc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689022e39c9b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/ES11/css/style.css | 104.26.13.87 | 200 OK | 2.9 kB |
URL HTTP/2mycasualhookups.com/sl/html/ES11/css/style.css IP104.26.13.87:0
File typeASCII text, with very long lines (6417), with no line terminators Hashba8a703481424f2110af972f87c0ce93 2c2fdc700233a477b2f7625da1c7a14fa9ace40d 06c121ba2fbe5bb8bb78707eb50757540c4efa183b92525fd8f6a460c4b5180c
GET /sl/html/ES11/css/style.css HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:36 GMT
content-type: text/css
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=8344
expires: Sat, 12 Nov 2022 00:40:21 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 63255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4N%2FjycfOXlU3C0pPz%2Bf%2BEtwfGz7ezl4v1QbRfx6Zo8Do%2FTPkpg%2Bd1%2FB%2BZOhpbHfpRB439oNasC12WRBcDtYwE7A40Ao10X0fu%2FpMiT00bZ8rBtzuWUAKj2VbDip4QK2YSBx60kY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689022e29aeb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/favicon.ico | 104.26.13.87 | 200 OK | 937 B |
URL HTTP/2mycasualhookups.com/sl/common/favicon.ico IP104.26.13.87:0
File typeMS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data Hashabc3eb17778cd26193b3df1477b54dd6 4f8fdeca7adc99f63851bc9a021b376abc7c37bf ee0612b82c8369b5930a51373219dde7c11eadfb6d8d173c64d05245c336b482
GET /sl/common/favicon.ico HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:37 GMT
content-type: image/x-icon
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 3835955
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EM%2Bs%2BUB2J%2BUBB6puNmjaPVM1fF%2BU2fXMTcydLlF6PMO0dcSQYf%2FC8WiGT58D5Gndc5p8KyZL7iLHXz0uZ1S%2Bm%2FenUPtj%2F1eC85v6cVyeAdn6l3%2BJjJZ8dgzlnzF29Kdiux%2BpXcA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76890232eef9b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashfb29db48daab83bcaed56b72093619cc e0e0a09d729ffb1c41411419768896f1e1eb3346 08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7982
Expires: Fri, 11 Nov 2022 20:27:39 GMT
Date: Fri, 11 Nov 2022 18:14:37 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashfb29db48daab83bcaed56b72093619cc e0e0a09d729ffb1c41411419768896f1e1eb3346 08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7982
Expires: Fri, 11 Nov 2022 20:27:39 GMT
Date: Fri, 11 Nov 2022 18:14:37 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashfb29db48daab83bcaed56b72093619cc e0e0a09d729ffb1c41411419768896f1e1eb3346 08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7982
Expires: Fri, 11 Nov 2022 20:27:39 GMT
Date: Fri, 11 Nov 2022 18:14:37 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashfb29db48daab83bcaed56b72093619cc e0e0a09d729ffb1c41411419768896f1e1eb3346 08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7982
Expires: Fri, 11 Nov 2022 20:27:39 GMT
Date: Fri, 11 Nov 2022 18:14:37 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg | 34.120.237.76 | 200 OK | 5.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash85c6f450b38f41a2fb924d6d9a9cbff8 691f59b65ca9fde4f59bbf96b37071e07351f190 c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ9Ho7IAMF5_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uHlIN1IVGCFUVl5lx5pFSux0YncseT2HQjiwFDL9eaEaBa9CdnCl8g==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 04:18:29 GMT
age: 50168
etag: "691f59b65ca9fde4f59bbf96b37071e07351f190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5530631-4859-4685-8ab3-a5b1013cd2cb.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5530631-4859-4685-8ab3-a5b1013cd2cb.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1ae1fe42d639643009ccee5a7ef770fd d43bb27911013930ed09d9609a71d737e0838556 d5fc8515f49a0b90e083f6a6025c3dc71dba286e15d5b3f841772d60d2e68fb2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5530631-4859-4685-8ab3-a5b1013cd2cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11527
x-amzn-requestid: a2a00c3d-12f7-412b-ba02-6bda7aa60586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNfYZHXhIAMFVYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687902-593d2a380bac7a567af893d3;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:18:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: J8-Ix4bZI7Yiu83xhD8WF8T4bdp2kX9s_xgpBLEuufdTtHWx_TKYcw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 04:50:48 GMT
age: 48229
etag: "d43bb27911013930ed09d9609a71d737e0838556"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg | 34.120.237.76 | 200 OK | 8.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash88c9931a009690991e73c5b37a1aa085 815a4a1eb8c8e2a138fb3d65ba777b0c18fa15d0 74e70391889e4b46742033b1d5daccfec415ba2ee999e429d1013fd4a1ebc61a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8294
x-amzn-requestid: 5dab4522-fca9-4ada-ad6f-3305c9686315
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ4u3H7PoAMF02g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6e5e-756c150c40fe6fff3ae7a609;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FXIS1Gr_-3RUm6WPZCVcjaefD3hehHV-IwO-ieFeUqeoPAE7vajlsg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:46:51 GMT
etag: "815a4a1eb8c8e2a138fb3d65ba777b0c18fa15d0"
content-type: image/jpeg
age: 73666
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg | 34.120.237.76 | 200 OK | 6.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf29164fb4dd64d9ce60566fbebd40f0a 96de8f2627e1103c5e6beb5d64cdbc09f97fce82 8eba6095edfed1ee1402c050727f81b8a9942625fd1c9cbb3bac4e51ee178577
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6517
x-amzn-requestid: 7884aa37-c94f-49d4-b6a4-c6bd66026d2c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apxD3EeYIAMFYAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635a2ee5-337e8e0949f5020713fcab58;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 07:10:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: kXRfJbLr7ErTvJIW0rjpcqxHA0zvN6XOPrszlIzXBgaJkJGWzkoyGw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 22:00:02 GMT
age: 72875
etag: "96de8f2627e1103c5e6beb5d64cdbc09f97fce82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50b47142-be82-4ddc-85e8-45dc7102abe9.jpeg | 34.120.237.76 | 200 OK | 6.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50b47142-be82-4ddc-85e8-45dc7102abe9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash90a78b0f806c0c5ef5e7128cc37b2edf 7339ad7b4f37cc37cb712207a7b3a5ac9355d9dc 770a2247a0f8d6b44c61cecc8a11e9882e4dd39269e181eef52cf6816407022b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50b47142-be82-4ddc-85e8-45dc7102abe9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6696
x-amzn-requestid: 19f91da1-beeb-400a-b4c0-059851ca839f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ_F3doAMFr6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-2ef73e121ff2c3cf0e95b450;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GgmLFeCzBEuR8gcEDGr8nBYW4xUUkIKZi0m8_TZ5quDeLmkROXm2_g==
via: 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 07:45:28 GMT
age: 37749
etag: "7339ad7b4f37cc37cb712207a7b3a5ac9355d9dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg | 34.120.237.76 | 200 OK | 8.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash13f7b6eea163326da8c58ae5c09efccd e0d1ebb35a16c686eae3d31eb85ac72278459b05 13f2f428acb7806808d957a8167ab2c139a5d0f59798671465717f2b39b914a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8581
x-amzn-requestid: 385174fe-153f-448f-be5e-9ea3b5757ff9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ4u1EYOIAMFncA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6e5e-6084a34f58df22037275e676;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:34:22 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MhIq0Vdxah99pPo_O7gkhrq9Nekkxld2lv0955wr0yJzcP3g6LAH8g==
via: 1.1 dfc972676b24a6d23251d4f298dfa08c.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:46:56 GMT
age: 73661
etag: "e0d1ebb35a16c686eae3d31eb85ac72278459b05"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b | 172.64.138.29 | 200 OK | 5 B |
URL HTTP/2subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b IP172.64.138.29:0
File typeASCII text, with no line terminators Hash68934a3e9455fa72420237eb05902327 7cb6efb98ba5972a9b5090dc2e517fe14d12cb04 fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
GET /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1
Host: subscribe.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/ES11/n.php?cep=USZnltHxntknPfTTH8W_fm7HUrhCC8CqJWfmvp3oBLMDs3YhvzQ6NvlYmJDgfOTJZmGNFZFfqH6cLHTxh9IjNjlybruAGtTg86eRcyipZW-6XjtmyrcRicU0PshNdut5RsvD0cmMl-cl-btX-UVKjMeQMdkA15mMmBtHxi3qOC96SX-4MfosH-PlqejwNTELqGlIoKkSTKr6Wkrg_n4NeoDUsyWjdSsPzxPo3v56QTL4FMLqRBmlYZPVOvCSPnjTWQ_woahOgN1Cs3OsjiEC7QggNresITRVOA6Da_EC9Z-8gI9k7sFotWnYowXj6huK-F4DVoIoD1WPn7n0_OrzwuUy2IoXA6xE_pJwB7TsqFUutXrDYVzWNP-VTdEURAwxfsn7ncSoxV-m_QnXIK0oaA&lptoken=163268b4195422727563&external_id=36197-736612398&source=16295&sum=#p#
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:37 GMT
content-type: application/json; charset=utf-8
content-length: 5
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RAw2mbufQtb2JirUSn24C5bGz9yw411ROnvPVF0dRj1A8VXvqDg35i9Sr6OoIPPC5pta6vfucPSc0MF0gOA%2B6Ywkyqc1xC7Z%2BqnEnbgiQ5k40kCQ%2FIsoUedq82h78bNI1R%2BTUH3jLRKx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 768902327f677713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash3e2d4d9361b6db4411425505e34e08c3 9ee27aca0ae50e1c9c818afe65761d35e539d771 7700f00baa9bd07967f64a21cab9dc6bea6ff0a6167deac1c891c4ca55b8a2df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3559
Cache-Control: max-age=160042
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:14:38 GMT
Etag: "636e5151-118"
Expires: Sun, 13 Nov 2022 14:42:00 GMT
Last-Modified: Fri, 11 Nov 2022 13:42:41 GMT
Server: ECS (amb/6BBD)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash3e2d4d9361b6db4411425505e34e08c3 9ee27aca0ae50e1c9c818afe65761d35e539d771 7700f00baa9bd07967f64a21cab9dc6bea6ff0a6167deac1c891c4ca55b8a2df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3297
Cache-Control: max-age=159780
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:14:38 GMT
Etag: "636e5151-118"
Expires: Sun, 13 Nov 2022 14:37:38 GMT
Last-Modified: Fri, 11 Nov 2022 13:42:41 GMT
Server: ECS (amb/6BA0)
X-Cache: HIT
Content-Length: 280
|
|
| mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP104.26.13.87:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/common/privacy-policy.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:37 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 12:52:00 GMT
etag: W/"636ba270-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TT6Jab9LGhrzKQsLFunYtcQ0M0LkDEi9%2F%2BR6%2Bg2vIwqlO6FCFwlrBirMNb07o1mme8K29VwBHMe4Vh%2F5jz6AJQk4qaUrnVpYlJUglGj1LFAn3j0%2FLzG4v6DPFXUVoZqrX%2Fch7kw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76890232beceb527-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 13 Nov 2022 18:14:37 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/lib/additional-methods.min.js | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/additional-methods.min.js IP104.26.13.87:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:36 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 12 Nov 2022 14:56:53 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11862
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hpswhHx6DXEYB8VxmTw0DuUZCnUsGdTagjLKCqy0YrIA41IH0CVc8AGh81m0MJpioTQoETN%2FqCYXLzOwdUMlJDg8aj%2FPcLBjfrrKugqX%2BUxPNa08JybKBLWcWJvrxihHRnn3Bu4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689022e39c3b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js IP104.26.13.87:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:36 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 12 Nov 2022 14:56:53 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11862
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4vytvdu1YcxCJ83795xoyK2NuSZlsP1ESKcwDGoDEpLg3TY3m4wPKyVFq0aYxiQwdiSYJ7OLn41pCf24629FFtVD8s9XZW7BBcuBVHeVFkMRgLHmogUkRgp%2FdiBYOS55YWp%2Be0A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689022e39c1b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/common-langs.js | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/common-langs.js IP104.26.13.87:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/common-langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:36 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Sat, 12 Nov 2022 14:56:53 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11862
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oW2P6XuSY2U43eEFBT%2BoHDASHZkwnU53xZBkAau5NfBdKj%2BUrPzDZj1lAJRMPOGlLASc1KGSNZKqNog2Sy1OnuCeVmDFUihYIv6bG3OuiG%2FTF4L8dvHQZxpjOfJlktybVanjIro%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689022e39c6b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdnjam.com/cdn/sdialog.min.css?_=4 | 104.21.58.242 | 200 OK | 0 B |
URL HTTP/2cdnjam.com/cdn/sdialog.min.css?_=4 IP104.21.58.242:0
GET /cdn/sdialog.min.css?_=4 HTTP/1.1
Host: cdnjam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:38 GMT
content-type: text/css
content-security-policy: block-all-mixed-content
etag: W/"1d16caacad4ad6c40a99319a5d183947"
last-modified: Mon, 22 Nov 2021 08:00:52 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 16F5E342988C7B8C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GdgbrC%2FvKdrc4cbk1H3%2BwAY%2B8YHhS2dcI2W8Cqrk6vFc3wvUfErNVnFNOH6q%2F2gTXZzrdzzy%2BUKFITKEYM1NY59J5LKEGYr9HsUCn4wTaLa1JgpiV5EYDJfpB0vu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689023a2a94b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn-dt.fcdn.info/swpush.min.js | 104.21.234.86 | 200 OK | 0 B |
URL HTTP/2cdn-dt.fcdn.info/swpush.min.js IP104.21.234.86:0
GET /swpush.min.js HTTP/1.1
Host: cdn-dt.fcdn.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:36 GMT
content-type: application/javascript
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1408708
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wWVAD9cbitIfP7dLhWgj3aLdR3y9IB4isDPjYXjYAISzhv24N6fc%2BcqJEXjzgD0G8%2BQVZE74Qm1XbN3G8LtgIiipg2HwEpk%2Bk%2F4hZL2aX%2F%2FVrkOxskB1UQcQBqJBoKkZMMyS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7689022efced7330-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/ES11/n.php?cep=USZnltHxntknPfTTH8W_fm7HUrhCC8CqJWfmvp3oBLMDs3YhvzQ6NvlYmJDgfOTJZmGNFZFfqH6cLHTxh9IjNjlybruAGtTg86eRcyipZW-6XjtmyrcRicU0PshNdut5RsvD0cmMl-cl-btX-UVKjMeQMdkA15mMmBtHxi3qOC96SX-4MfosH-PlqejwNTELqGlIoKkSTKr6Wkrg_n4NeoDUsyWjdSsPzxPo3v56QTL4FMLqRBmlYZPVOvCSPnjTWQ_woahOgN1Cs3OsjiEC7QggNresITRVOA6Da_EC9Z-8gI9k7sFotWnYowXj6huK-F4DVoIoD1WPn7n0_OrzwuUy2IoXA6xE_pJwB7TsqFUutXrDYVzWNP-VTdEURAwxfsn7ncSoxV-m_QnXIK0oaA&lptoken=163268b4195422727563&external_id=36197-736612398&source=16295&sum= | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/ES11/n.php?cep=USZnltHxntknPfTTH8W_fm7HUrhCC8CqJWfmvp3oBLMDs3YhvzQ6NvlYmJDgfOTJZmGNFZFfqH6cLHTxh9IjNjlybruAGtTg86eRcyipZW-6XjtmyrcRicU0PshNdut5RsvD0cmMl-cl-btX-UVKjMeQMdkA15mMmBtHxi3qOC96SX-4MfosH-PlqejwNTELqGlIoKkSTKr6Wkrg_n4NeoDUsyWjdSsPzxPo3v56QTL4FMLqRBmlYZPVOvCSPnjTWQ_woahOgN1Cs3OsjiEC7QggNresITRVOA6Da_EC9Z-8gI9k7sFotWnYowXj6huK-F4DVoIoD1WPn7n0_OrzwuUy2IoXA6xE_pJwB7TsqFUutXrDYVzWNP-VTdEURAwxfsn7ncSoxV-m_QnXIK0oaA&lptoken=163268b4195422727563&external_id=36197-736612398&source=16295&sum= IP104.26.13.87:0
GET /sl/html/ES11/n.php?cep=USZnltHxntknPfTTH8W_fm7HUrhCC8CqJWfmvp3oBLMDs3YhvzQ6NvlYmJDgfOTJZmGNFZFfqH6cLHTxh9IjNjlybruAGtTg86eRcyipZW-6XjtmyrcRicU0PshNdut5RsvD0cmMl-cl-btX-UVKjMeQMdkA15mMmBtHxi3qOC96SX-4MfosH-PlqejwNTELqGlIoKkSTKr6Wkrg_n4NeoDUsyWjdSsPzxPo3v56QTL4FMLqRBmlYZPVOvCSPnjTWQ_woahOgN1Cs3OsjiEC7QggNresITRVOA6Da_EC9Z-8gI9k7sFotWnYowXj6huK-F4DVoIoD1WPn7n0_OrzwuUy2IoXA6xE_pJwB7TsqFUutXrDYVzWNP-VTdEURAwxfsn7ncSoxV-m_QnXIK0oaA&lptoken=163268b4195422727563&external_id=36197-736612398&source=16295&sum= HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:36 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=300
expires: Fri, 11 Nov 2022 18:19:36 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cQ%2BRQh1aFtrfm9gy6smW0uPUvkgWYLnNGrE2P6FDiGfb1yJsfeO5odNq%2FpVxUjicfBsnmqaZWUlGosRJFoVJBMKGdFfVa4eFQUKMIaNCQmuhXpZe1RezRxAn%2FLah%2FfIlQR5Zuik%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689022a7d17b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/ES11/js/config.js | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/ES11/js/config.js IP104.26.13.87:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/html/ES11/js/config.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:36 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=701
expires: Sat, 12 Nov 2022 17:55:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:27:45 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 1128
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZBX0CAuh5KCiIKA1UCBmewy0f8Z%2B%2FdiqDuIRQIfmgCaJLstimM3YtTH4CGypE40tW6gN3Nafu63icf55IYgRBYEyOslQ0C%2BaP7qzoa5T2fgJq5bEDCr2sva5MGbmwTHWf%2Byux%2B0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689022e39c5b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/css/style.css?1668190476 | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/css/style.css?1668190476 IP104.26.13.87:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/css/style.css?1668190476 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:37 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 12 Nov 2022 18:14:36 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D3ZrCaNFdAUxYxOpg%2FyKS2fGOlfIgOh32aMLRaiNag%2F5XpbtUyASfqqo%2BJAKoCcdBAp%2BfKym4%2BNzj5z4QUTwxC6%2FmHO2UovT7HwXDzaALktx%2BCY%2BQoY3Rmq%2Fad1xQOa%2BDRf1d60%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689022e29afb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/main.js?1668190476 | 104.26.13.87 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/main.js?1668190476 IP104.26.13.87:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/main.js?1668190476 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:14:37 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 12 Nov 2022 18:14:36 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wUGd9zxNEm4uZBrqbvISM%2FigrMp%2Fn3HfBQ0Q6%2B6SA0grESYMpsZXg7rbi9FKd4jeEkxlG3oLU0di537wZTX4eBKliHnngiJCfBnY4HD0sUOjo2DfsRDmDFnTK32Oceejcxeznr8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7689022e39c8b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|