| meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63c3ababa52ab60001a446dd&s4=34496 |  52.51.210.211 | 302 Found | 269 B |
URL HTTP/1.1meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63c3ababa52ab60001a446dd&s4=34496 IP52.51.210.211:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashc369f4e62cbe0aecf7dab184d8d07913 32d1b5c6cfa13433217e895aed4c0532c601cbf3 7d9e2b901398d35398b83fbe0292ab23d5cccc754baeea05864139cb90cca9f4
GET /?a=16295&c=43694&p=r&s1=&s2=a_63c3ababa52ab60001a446dd&s4=34496 HTTP/1.1
Host: meshho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Sun, 15 Jan 2023 07:31:12 GMT
content-type: text/html; charset=utf-8
content-length: 269
cache-control: private
location: https://fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63c3ababa52ab60001a446dd&s4=34496&ckmguid=2e1dd2a7-d01e-4ac7-94ed-571047eccd4a
|
|
| r3.o.lencr.org/ |  23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash2258cd6b877a3aca8f4c84074e65ac4b 4e46c70941f8e497e8afc8d078644e7f81761a1c faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Sun, 15 Jan 2023 09:40:12 GMT
Date: Sun, 15 Jan 2023 07:31:12 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3063227f59d1935298b0620fa7919145 478e1d8bef04b1f95381cac01829c03b6779d420 619281d3b9753bc6d2845786da75e8566687362769517aacf90f953ffbb8407c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "619281D3B9753BC6D2845786DA75E8566687362769517AACF90F953FFBB8407C"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11540
Expires: Sun, 15 Jan 2023 10:43:32 GMT
Date: Sun, 15 Jan 2023 07:31:12 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 15 Jan 2023 06:42:05 GMT
content-type: application/json
age: 2947
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash64765d3d978fd74d7bc47d55d4f097cf 92eb3f0d55ba99be28105c0b28ef7dd456817f1f 761aab02513e7a0ec55ea59109e88b39cbd4e17df0cd2035aa37a4693f22d1f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "761AAB02513E7A0EC55EA59109E88B39CBD4E17DF0CD2035AA37A4693F22D1F3"
Last-Modified: Thu, 12 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2889
Expires: Sun, 15 Jan 2023 08:19:21 GMT
Date: Sun, 15 Jan 2023 07:31:12 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ShNDIG0psyTcxLi4oQ77YH6kt57IUv6CEAi3zvlBg2WxOKkYBZPeRHkW6qEnMdy2RJ4Ng/Hl1ZY=
x-amz-request-id: CJHY7TZDTCWHYJ2V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 15 Jan 2023 06:55:16 GMT
age: 2156
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 07:31:12 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 15 Jan 2023 07:17:25 GMT
age: 828
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp2.globalsign.com/gsalphasha2g2 |  104.18.21.226 | 200 OK | 1.4 kB |
URL HTTP/1.1ocsp2.globalsign.com/gsalphasha2g2 IP104.18.21.226:0
Hash5e819a8686e3cd570b620eda89774ced 315378aaaa647bb4243a7c6587c8112ea4aef606 e7f2714b6d6497380ce7737068acb6d5c5f1d59c3c9ad86921b0c96cfb474c3a
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jan 2023 07:31:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 19 Jan 2023 04:59:36 GMT
ETag: "315378aaaa647bb4243a7c6587c8112ea4aef606"
Last-Modified: Sun, 15 Jan 2023 04:59:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 789ce9154b9db524-OSL
|
|
| fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63c3ababa52ab60001a446dd&s4=34496&ckmguid=2e1dd2a7-d01e-4ac7-94ed-571047eccd4a | 52.51.210.211 | 302 Found | 234 B |
URL HTTP/1.1fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63c3ababa52ab60001a446dd&s4=34496&ckmguid=2e1dd2a7-d01e-4ac7-94ed-571047eccd4a IP52.51.210.211:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashbeed266fc632390136611c5001414119 0ce88774e000f8ed780701b2bfaa33c711b5eb45 b320b032a256a3ef5d9165c03badae9a641b72d3871ad812e317e11ad7b67b50
GET /?a=16295&c=43694&p=r&s1=&s2=a_63c3ababa52ab60001a446dd&s4=34496&ckmguid=2e1dd2a7-d01e-4ac7-94ed-571047eccd4a HTTP/1.1
Host: fordats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 234
Content-Type: text/html; charset=utf-8
Date: Sun, 15 Jan 2023 07:31:13 GMT
Location: https://bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-741721455&source=16295&sum=#p#
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=LOL8tFLVp6jINu1SGwdkkr3F7QgykvCR6Wrs5GsvEY/7ge+VoQdspg==; domain=.fordats.com; path=/; HttpOnly
trk=QihuUeZxmayFr0MZKohWU73F7QgykvCR6Wrs5GsvEY/7ge+VoQdspg==; domain=.fordats.com; expires=Wed, 15-Jan-2025 07:31:12 GMT; path=/; HttpOnly
c36197=LOL8tFLVp6gnXUU9hdr4BqO1Qjt9FIJake9SPXEPYYNeCUghiDE1Zg==; domain=.fordats.com; expires=Tue, 14-Feb-2023 07:31:12 GMT; path=/; HttpOnly
Connection: close
|
|
| bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-741721455&source=16295&sum= |  18.193.146.82 | 302 Found | 0 B |
URL HTTP/2bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-741721455&source=16295&sum= IP18.193.146.82:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-741721455&source=16295&sum= HTTP/1.1
Host: bl.trackham.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Sun, 15 Jan 2023 07:31:13 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/DE10/n.php?cep=tZXWYKnwTS_IvwuXp8kmiTG5h9ZSCykmSO-qbMhR7GfwHEmug_8xzqKKPchxMJN7Ovs4XlGu_G7JV_dSSn0bPaHLiEIEtUcPpygDokvYjdlWnevc-_WrHqnuYt4pJ59Ej4lq0QV5YgLYjcjJfRBu_9EBBCJ5hOq_-m8dWtr_yNMwRgDED4oDWC9jaZH0K85ahQPcpk5LZmhhWROlV0bgkTvON2qpc8LO3JrPVfwuntgBn1xQ1v-RNL0g-PSlBOUgiKv6cujQaeB9CmUsXSbYq5ARgQtoB7LrRR0RODJHNMoOOKyyL4e2bJRRrV_IW3mISaDDP9cCFu-ii1-3QuNZYXyfTM0hbF-j9lGJ9v3KHKnhcJDufsv1NR5sk-FpzolO0pwanbsryhOCUymbj8CW_w&lptoken=169b73bb764196fc737f&external_id=36197-741721455&source=16295&sum=
pragma: no-cache
set-cookie: f9908105-7257-45be-97c0-9990466cb2a4-v4=RF3JHSc-sljPhVC_uDMitLkT3yL1R8U1KxCLGOXfeNw; Max-Age=86400; Expires=Mon, 16-Jan-2023 07:31:13 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=apLZP7QUMWLqGQTnrsE-30nB-DtzhZTSvlKDUQ0kYoG-R9SoEWvY5RE0_Qz4GaIgn8WNm79zr6KJgS4vvhiRtc90rPexcIc5imZc1E4m6xhfaIE9fdhG0yQfGCdR9n151wjqVz3gBtQ61Q1qTmJloDr-IMfsi7DfS4Hk4REaEkLnP66N7p7KlquHF7IV0GUsIzVYL-xcMtf8XBCnD1ewd4EQUpBuquDHTqY3ix0qYHagVq83SimqwVTQh3OpHhRF1b0IOv2bvNcMLsRFgl9vPlXMYSChicO8eSVnXck4xiCN-aSqAIvsaE1vuk2HTCO3TSmUhOjKRQa99qc1V9L844RcsQr25rUHWfPeXQauEq-JsnHSjHzJSz10C8V5c9oDLbgYliYQPWyJzgieoRVvbw; Max-Age=86400; Expires=Mon, 16-Jan-2023 07:31:13 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashc01ec61f7ca77158f474b3ab519c12fa fc82ae0fcd73a83a980b75709a08e65239894e4a f533e0fac9b92e79d4fbd6e70b42a83067de95f0a13cc737d7e5fa459baa4c54
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5807
Cache-Control: max-age=97941
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 07:31:13 GMT
Etag: "63c270a7-1d7"
Expires: Mon, 16 Jan 2023 10:43:34 GMT
Last-Modified: Sat, 14 Jan 2023 09:06:47 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 35.161.47.95 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.161.47.95:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DrPaTDdYPkAIZsXaL45nsw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: w4m3wUzjwZnsyfn6c0pEobBANVQ=
|
|
| mycasualhookups.com/sl/html/DE10/images/01.jpg | 172.67.71.67 | 200 OK | 63 kB |
URL HTTP/2mycasualhookups.com/sl/html/DE10/images/01.jpg IP172.67.71.67:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x736, components 3\012- data Hash3a850bc7c7440247f8464289ab4c282c 3347973cd9aa7a79cf9c87ea147a586a0da7fa9a d62defeba698e9f156e1f6f777d28ff475a8abf37c9dc632005fda06cba77fc1
GET /sl/html/DE10/images/01.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: image/jpeg
content-length: 63047
cache-control: max-age=86400
cf-bgj: h2pri
expires: Sun, 15 Jan 2023 14:59:41 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 59493
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=10SLOH8UbfUu8cpBFHrV8m%2FmaRQq7hgQaB%2FA9eOIymzC2M5d2Cru64LQxfwLT%2F1jJDrnV1yLH1dXIk8gE48W7ItslLbYAX2FKxhknr8NrV9C1bN0i79sdD0O2CgeR7cQ15%2B6W18%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 789ce91cf940b4ff-OSL
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/DE10/images/02.jpg | 172.67.71.67 | 200 OK | 72 kB |
URL HTTP/2mycasualhookups.com/sl/html/DE10/images/02.jpg IP172.67.71.67:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x670, components 3\012- data Hash5a8b9b0560b1efd78ffc4b0a4b26d5dd 02c37f09435dd0df94fc9e291701cea61de47acd 69b803896c47dd6f767ec4475e28005b7a72b0273947a794391d857a93885a52
GET /sl/html/DE10/images/02.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: image/jpeg
content-length: 72269
cache-control: max-age=86400
cf-bgj: h2pri
expires: Sun, 15 Jan 2023 11:04:17 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 73617
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fq2LqgX9TzOLdY7MQc9Oi1YIlsdiAzZUfpq7xfdhSnEWsM0YXGgvhCZWxJL6Vximo%2B%2FMlIV455wNfd7e8kfmyE8ZsSx8gCgc4qmfjDNHHBsrh%2BAfSVhwZA3qA%2FVXgR%2Byjo4Nk7A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 789ce91cf941b4ff-OSL
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/DE10/images/04.jpg | 172.67.71.67 | 200 OK | 47 kB |
URL HTTP/2mycasualhookups.com/sl/html/DE10/images/04.jpg IP172.67.71.67:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x393, components 3\012- data Hash522d1fb81bd75e2160ce5fa2e05bcb80 bea0851dea66e6897cf9681055e34d4149d1f0fe 8305ef4314706cf7468a4d6230039a86c0120e284bd866f4c6b5cdf99d20206d
GET /sl/html/DE10/images/04.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: image/jpeg
content-length: 47131
cache-control: max-age=86400
cf-bgj: h2pri
expires: Sun, 15 Jan 2023 11:04:17 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 73617
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VSjxaXDXuZbBmGHSlG0weLuyUC46kh3Kuvxm%2BH5VqDgYitZeDNQvyh%2Blb2rp8r8Jq%2B4DyrJxnFKQm05SlHIhpjIf1%2Bef9mQxDdI%2FfDzuxOeYP20k63NpYyaXZLnCCF2hq08%2FsHo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 789ce91cf943b4ff-OSL
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/DE10/images/03.jpg | 172.67.71.67 | 200 OK | 58 kB |
URL HTTP/2mycasualhookups.com/sl/html/DE10/images/03.jpg IP172.67.71.67:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Cropped with ezgif.com", baseline, precision 8, 500x714, components 3\012- data Hash37bb1c4464d422fc75b5630e9ac8bebb 5e70235d897ab5e25a0905731d63a2e6fbbe0ff6 d9ee942a4d8314c9094d342445921f0c46f55adeae1aa51b15599338f73cf7de
GET /sl/html/DE10/images/03.jpg HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: image/jpeg
content-length: 58287
cache-control: max-age=86400
cf-bgj: h2pri
expires: Sun, 15 Jan 2023 20:31:15 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 39599
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tcZD3x0FdcNpzCqHQ55nDoZafodUoV0%2Fk04WM3S6G1jLqqfh1QpxQZdsIUjtl0V3IRN%2BnL4aAdKzmi9jYC8Cz2UXE8HtXbLoZsk%2BDoLKHZwVJGWnFcZUFF7V9ybZU6Zb2hWAjTk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 789ce91cf942b4ff-OSL
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/DE10/images/05.gif | 172.67.71.67 | 200 OK | 295 kB |
URL HTTP/2mycasualhookups.com/sl/html/DE10/images/05.gif IP172.67.71.67:0
File typeGIF image data, version 89a, 250 x 176\012- data Size295 kB (295330 bytes) Hasha5d1782e371584dd39fc60be2654dc5e 3347cabe8d40b0b93dff953291e0452c0d81a6e0 7c19aaec94ee7eceeea4171c58384347af75fe5b01374e548c49d9d498b83fea
GET /sl/html/DE10/images/05.gif HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: image/gif
content-length: 295330
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 15 Jan 2023 14:59:41 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 59493
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D5eY%2FAKKGAkULqdd%2BrSlTXZF9EWzoFQiJjuErZR4ensP%2BhYMVi6XXIYaoIX4tv779J6wWgFLolv1mU7H2M%2BRTn%2BHBFrdTGLwBkmwuErS1tIOByMLLoe5zFkbn9YIX3tCXTL2hDI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 789ce91cf945b4ff-OSL
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/common-langs.js | 172.67.71.67 | 200 OK | 6.5 kB |
URL HTTP/2mycasualhookups.com/sl/common/js/common-langs.js IP172.67.71.67:0
File typeUnicode text, UTF-8 text, with very long lines (12768) Hashde399631976a034817b9874db490e4d2 292315ef813f9771d7d600a1d1fd521027dec4fe 09e789be778d3a0695e89e54cf00eca85e35ede2e93bdedd045f638aee347fa0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/common-langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Mon, 16 Jan 2023 00:47:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 24203
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=if48%2BmaSMX0lQJRAsb5MBVd%2FgLXECNGPJHb8EZd2lzfq5jEZvNA3pnQarQMX6Jce5ExkS5BxiWkcHNAudGab6%2BV5ldxkwU%2FNuBs76rs1EDsG4o4JlY7q1%2BbddmWBoLQoU%2BmR9tE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce91ce93ab4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/DE10/js/custom.js | 172.67.71.67 | 200 OK | 36 kB |
URL HTTP/2mycasualhookups.com/sl/html/DE10/js/custom.js IP172.67.71.67:0
File typeASCII text, with very long lines (1382) Hash85ffe9afaf569d54a6463806f20dc0ac 3da66a40866c91446c722e776eb2a8b899a540a5 78c191694a3b7fa127dd9c27d6eadddb852349cfc454f541e00a92610bb22f56
GET /sl/html/DE10/js/custom.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=130977
expires: Mon, 16 Jan 2023 02:17:44 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18810
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5cbJTHeDXUEYUfxhvd7hOBNMxFKBIi24NFoFZzA9g%2Fso2OtnfHeuNuJgdDxWSNEr5jkisKRU%2BjBLhZFlvKJntlE4hoBwdG8DiXgcIxJXHlXu16y0uSTEfZnXXeekg51RRM2nD%2FE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce91ce925b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/DE10/css/main.css | 172.67.71.67 | 200 OK | 747 B |
URL HTTP/2mycasualhookups.com/sl/html/DE10/css/main.css IP172.67.71.67:0
File typeASCII text, with very long lines (2033), with no line terminators Hash836c52e617da2d4e9087bc651ce55e78 0b4f85346fa9fae756cc635fbdc1e94c4845688d 38abc7b790be3b6250ea0df0a99cd0a4514adc6202cffe7e4d168cee087d5bba
GET /sl/html/DE10/css/main.css HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: text/css
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=2611
expires: Mon, 16 Jan 2023 02:17:44 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18810
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CxXjIolXmiRv7ddo9C68qcoTugd%2FqSXz6mLiddMZeEgdBFxb8MtUSP96fE6rSVM2H%2BETJDK7Yx9bSoPg9mmpoWsl8EOe0qF8ZC6aOjV0qbmGVfqIxtpQ3HN5jZjyCXngc0LVbHc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce91ce924b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| app.api-push.com/get-keys | 172.64.163.28 | 200 OK | 917 B |
URL HTTP/2app.api-push.com/get-keys IP172.64.163.28:0
File typeJSON data\012- , ASCII text, with very long lines (2116), with no line terminators Hash513e2d6f7c4afa7a467e568b61c21860 ac4f6c25cdb7c39831cb5fbb29145329a81abee4 a1d29eaf84ca426460dada1ebf6d4d2c709ad23201f8bc53d4f9dbdc65aa4d20
POST /get-keys HTTP/1.1
Host: app.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/DE10/n.php?cep=tZXWYKnwTS_IvwuXp8kmiTG5h9ZSCykmSO-qbMhR7GfwHEmug_8xzqKKPchxMJN7Ovs4XlGu_G7JV_dSSn0bPaHLiEIEtUcPpygDokvYjdlWnevc-_WrHqnuYt4pJ59Ej4lq0QV5YgLYjcjJfRBu_9EBBCJ5hOq_-m8dWtr_yNMwRgDED4oDWC9jaZH0K85ahQPcpk5LZmhhWROlV0bgkTvON2qpc8LO3JrPVfwuntgBn1xQ1v-RNL0g-PSlBOUgiKv6cujQaeB9CmUsXSbYq5ARgQtoB7LrRR0RODJHNMoOOKyyL4e2bJRRrV_IW3mISaDDP9cCFu-ii1-3QuNZYXyfTM0hbF-j9lGJ9v3KHKnhcJDufsv1NR5sk-FpzolO0pwanbsryhOCUymbj8CW_w&lptoken=169b73bb764196fc737f&external_id=36197-741721455&source=16295&sum=#p#
Content-Length: 89
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: application/json; charset=utf-8
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qq8u%2BduGq5JVTkBIId7d3hdEJwD5mRWBh6wAEpJoy5q2sr1Lz1F0cJQhxlqgqL31z42IJAfFoc%2BEFhLYgOrzDnmI4t4MJ%2BSbRB3wBW1wrJLzyKRtnEA2LuW4hqqJin5alD%2Ff"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce91e7f48d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash6fc52c452b4176dabdd1a319c5e3fa51 e00b78bd1c6b5d71f2987fd9cdc8975804b668ae 224beac380dd44474b39343d4138c0e5d8a547523eb06a1c6d6c4a893d511e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 07:31:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash6fc52c452b4176dabdd1a319c5e3fa51 e00b78bd1c6b5d71f2987fd9cdc8975804b668ae 224beac380dd44474b39343d4138c0e5d8a547523eb06a1c6d6c4a893d511e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 07:31:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash6fc52c452b4176dabdd1a319c5e3fa51 e00b78bd1c6b5d71f2987fd9cdc8975804b668ae 224beac380dd44474b39343d4138c0e5d8a547523eb06a1c6d6c4a893d511e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 07:31:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js | 172.67.71.67 | 200 OK | 53 kB |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js IP172.67.71.67:0
File typeUnicode text, UTF-8 text, with very long lines (23122) Hash6998e85280fe97532bd0bb3a921d42cb 8565a0ed6039993a4aaae665a8b66027e9206e92 6f034e693870f35f110eb473ed57f5f5e14875670db7537615588e74cbb08366
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 16 Jan 2023 00:47:50 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 24204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M5x1QwWiUg24ovuyPSz98gukcB6yljewBnGE6N69G%2F4oRNghzb9QUVBIMvLHTJSyjRPiILuTn1jSPav1KWfP9Rton7Yp9CH7MXJMUQ05RGPaZ9%2BqmkiNP5R1Bfyexb7GQgtGkp0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce91ce92db4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash6fc52c452b4176dabdd1a319c5e3fa51 e00b78bd1c6b5d71f2987fd9cdc8975804b668ae 224beac380dd44474b39343d4138c0e5d8a547523eb06a1c6d6c4a893d511e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 07:31:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b | 172.64.163.28 | 200 OK | 5 B |
URL HTTP/2subscribe.api-push.com/subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b IP172.64.163.28:0
File typeASCII text, with no line terminators Hash68934a3e9455fa72420237eb05902327 7cb6efb98ba5972a9b5090dc2e517fe14d12cb04 fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
GET /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1
Host: subscribe.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/DE10/n.php?cep=tZXWYKnwTS_IvwuXp8kmiTG5h9ZSCykmSO-qbMhR7GfwHEmug_8xzqKKPchxMJN7Ovs4XlGu_G7JV_dSSn0bPaHLiEIEtUcPpygDokvYjdlWnevc-_WrHqnuYt4pJ59Ej4lq0QV5YgLYjcjJfRBu_9EBBCJ5hOq_-m8dWtr_yNMwRgDED4oDWC9jaZH0K85ahQPcpk5LZmhhWROlV0bgkTvON2qpc8LO3JrPVfwuntgBn1xQ1v-RNL0g-PSlBOUgiKv6cujQaeB9CmUsXSbYq5ARgQtoB7LrRR0RODJHNMoOOKyyL4e2bJRRrV_IW3mISaDDP9cCFu-ii1-3QuNZYXyfTM0hbF-j9lGJ9v3KHKnhcJDufsv1NR5sk-FpzolO0pwanbsryhOCUymbj8CW_w&lptoken=169b73bb764196fc737f&external_id=36197-741721455&source=16295&sum=#p#
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: application/json; charset=utf-8
content-length: 5
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FUvQn2Kw75rdZ5SebMipf%2FzSvZq66MiTiadV%2F8zSXGyilxQLr%2FTkHz7qNH17e7ERayzQRFrtCEHkrDCdHa9jI5fG97Rs6o%2FSLYcoTemR5VLSM2Dnu8%2BCU4hA78qQQxZKyfcstVgJ8I6U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce920694cd184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash6b6a65d2536cc8f99e68793ae265b595 f65e75f8419bd83e26f49def7fa2604db5f77b4d 94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14807
Expires: Sun, 15 Jan 2023 11:38:01 GMT
Date: Sun, 15 Jan 2023 07:31:14 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash6b6a65d2536cc8f99e68793ae265b595 f65e75f8419bd83e26f49def7fa2604db5f77b4d 94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14807
Expires: Sun, 15 Jan 2023 11:38:01 GMT
Date: Sun, 15 Jan 2023 07:31:14 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash6b6a65d2536cc8f99e68793ae265b595 f65e75f8419bd83e26f49def7fa2604db5f77b4d 94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14807
Expires: Sun, 15 Jan 2023 11:38:01 GMT
Date: Sun, 15 Jan 2023 07:31:14 GMT
Connection: keep-alive
|
|
| mycasualhookups.com/sl/common/favicon.ico | 172.67.71.67 | 200 OK | 10 kB |
URL HTTP/2mycasualhookups.com/sl/common/favicon.ico IP172.67.71.67:0
File typeMS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data Hash78f4b9bf7582f8a35be177102a4978a8 7d947f095e90160f09775f98811055aae5ae5895 6b592e589ae8c17de0f068a9212a067f89db1ed0e7c5356c512c94fb41d46c34
GET /sl/common/favicon.ico HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: image/x-icon
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 9413352
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=asq1WH2jOcmktAnelHROhgl1D20%2FnBqCvSdgYEfpDiYXR28ryU69jHCbtDFr7pijMvfbb6ISov%2BPx%2FMdbVUGyZ2F7Pg9ypiPhpIHAKNkYehgGCHg1iJ4wIXx64utzHStrTv957Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 789ce9219d0eb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F362ec1c0-4616-4ccf-bbc5-8dc0f979c801.jpeg | 34.120.237.76 | 200 OK | 6.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F362ec1c0-4616-4ccf-bbc5-8dc0f979c801.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3c8e4b9f12af5bbc6b743aeae4dfc55a 97f874ba034be152dfecd90e4996c928aa268950 bfc0ef4f4d13b729a3a38efbb04d2c58e6b05bbc2bd3492611c0fc26457d1dec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F362ec1c0-4616-4ccf-bbc5-8dc0f979c801.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6658
x-amzn-requestid: 4a356eaa-4717-410c-af86-5d3770f0cf7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eniyVExqoAMFWkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bfb1a8-05a4e869449e4d730a5dd438;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 07:07:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ad0MftSuAjk104dN-xxd3cDy9vUH4noA3fBbte6XySSR7_Vnqc5I7A==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 07:17:10 GMT
age: 844
etag: "97f874ba034be152dfecd90e4996c928aa268950"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77d2ca2b-548c-4f63-b8a5-e55b6e92d5e9.jpeg | 34.120.237.76 | 200 OK | 5.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77d2ca2b-548c-4f63-b8a5-e55b6e92d5e9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5c609c89120eef87bbdd0d8ee5ee18f9 be8e369be0ccc707b904546798aacc9afe413cfa feaa9f41b45aaa71d87008fe3112bc09e41cf6c2c500b4bc1adc125c7c82eee1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77d2ca2b-548c-4f63-b8a5-e55b6e92d5e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4981
x-amzn-requestid: b38d8240-7f85-4fd6-845b-54ddc6da7521
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ewH9tHxWoAMFTQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c32057-657c5e342a66713b0f5f8f0b;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 21:36:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XFRrdpdDYEyYq9lFI99gf2mrKB2VRbNmAwbMN9c3wJlbBbc9UTTiaQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 21:51:43 GMT
age: 34771
etag: "be8e369be0ccc707b904546798aacc9afe413cfa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha23d61d610c7b55d943fcb2636a01b65 82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065 28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9539
x-amzn-requestid: eb427fd6-c342-4a22-af45-ecc528cf4a8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: epfDqEAZIAMFudQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0787d-4f61ecd2422081224869da76;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:15:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RRMRT2BC5p1x0Vh20ut0Kjbz2mnaNToUIbzIg9oczduvzYCckvFORA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 12:46:14 GMT
age: 67500
etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5689dc6-f9f1-44f4-ad5b-5f82342c4d61.jpeg | 34.120.237.76 | 200 OK | 6.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5689dc6-f9f1-44f4-ad5b-5f82342c4d61.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdfa0e66c7a8ac9ed5fdf326c75762e17 35294b3a5def1ecd2558ae4a29f7fef66a788045 91497e98350b39da877473470b9ed26305e621ad60db3afd85e45cd7b5de1be3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5689dc6-f9f1-44f4-ad5b-5f82342c4d61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6357
x-amzn-requestid: 416afdbc-f09b-47f3-9711-5ab5c8a5b75f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eniq0FX2IAMFoAw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bfb178-0f777a3a7f3dba1c1c0e7317;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 07:06:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GjHyt_h4kH3RaegYXtLysZJ31fsfN34fUw6Sxza7A3aj8LfM55iuhA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 07:11:15 GMT
age: 1199
etag: "35294b3a5def1ecd2558ae4a29f7fef66a788045"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c678ae9-1df5-47c4-bbe3-ec12e97322d9.jpeg | 34.120.237.76 | 200 OK | 5.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c678ae9-1df5-47c4-bbe3-ec12e97322d9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash90fc5463f271bab652af099cb526f189 805c27d8f82a5eb6583814313c36f5e7699408e5 749dca33aa337b494fb113896bf035bc9dcb17068ecffdf30fc5ac85a4ac5185
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c678ae9-1df5-47c4-bbe3-ec12e97322d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5495
x-amzn-requestid: d76b8f1d-37a2-47ac-9acf-1b0a44a4a5fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eqsroF62IAMF-mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0f4b0-67700bfd11f1ad5d0aaab92d;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 06:05:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: i1qN9bIaz5ekgkM81KehmDDQpzBULDfPkp-fjEOHiZxFVogDBOIGzg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 14:12:39 GMT
age: 62315
etag: "805c27d8f82a5eb6583814313c36f5e7699408e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP172.67.71.67:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/common/privacy-policy.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:15 GMT
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 19:32:51 GMT
etag: W/"63bdbd63-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PEswaa24MVyTJj1uQz7T8nqmGbA%2FPKouCVi2qR%2B%2FvjYInEITxetAJ6tX63l7TS%2Baq3%2BS52Sn25v40%2BJi5zLY9cXh%2BurgxUjvFJ6BW9yTF%2BwrOJvON%2Bf%2FaiS6MgpL3Z2iKOyB3sA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 789ce9239e76b4ff-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 17 Jan 2023 07:31:15 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js IP172.67.71.67:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 16 Jan 2023 00:47:50 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 24204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5pP%2FjSGyMPzlZ0N%2FkJ8Tbtwvr3i%2B%2FmuH%2Bx%2FlYkFqUK1xV9LKHCUb8L7B%2BvvuqLpyb0Nam25Kh120uGRhwuFnnjoyXUUEW8J0jWAyZ4RfSibZj8XzM7xhdtohWv6n2MH4tkDI7a8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce91ce92ab4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn-dt.fcdn.info/swpush.min.js | 104.21.234.86 | 200 OK | 0 B |
URL HTTP/2cdn-dt.fcdn.info/swpush.min.js IP104.21.234.86:0
GET /swpush.min.js HTTP/1.1
Host: cdn-dt.fcdn.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: application/javascript
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2148287
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=62GAN4hGKA9QddcP2Ng8kuoZgTjcXP18z4PDJL2k5EdjJNRxZNiOSxwGIEXa4af5oA0kLZwRXZmQaQFZOlciqcL6fniH%2FAfKFChiSg5i3051rdQwicP2Ase81LxFXOtiaAWN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 789ce91d4d8b889d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/DE10/n.php?cep=tZXWYKnwTS_IvwuXp8kmiTG5h9ZSCykmSO-qbMhR7GfwHEmug_8xzqKKPchxMJN7Ovs4XlGu_G7JV_dSSn0bPaHLiEIEtUcPpygDokvYjdlWnevc-_WrHqnuYt4pJ59Ej4lq0QV5YgLYjcjJfRBu_9EBBCJ5hOq_-m8dWtr_yNMwRgDED4oDWC9jaZH0K85ahQPcpk5LZmhhWROlV0bgkTvON2qpc8LO3JrPVfwuntgBn1xQ1v-RNL0g-PSlBOUgiKv6cujQaeB9CmUsXSbYq5ARgQtoB7LrRR0RODJHNMoOOKyyL4e2bJRRrV_IW3mISaDDP9cCFu-ii1-3QuNZYXyfTM0hbF-j9lGJ9v3KHKnhcJDufsv1NR5sk-FpzolO0pwanbsryhOCUymbj8CW_w&lptoken=169b73bb764196fc737f&external_id=36197-741721455&source=16295&sum= | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/DE10/n.php?cep=tZXWYKnwTS_IvwuXp8kmiTG5h9ZSCykmSO-qbMhR7GfwHEmug_8xzqKKPchxMJN7Ovs4XlGu_G7JV_dSSn0bPaHLiEIEtUcPpygDokvYjdlWnevc-_WrHqnuYt4pJ59Ej4lq0QV5YgLYjcjJfRBu_9EBBCJ5hOq_-m8dWtr_yNMwRgDED4oDWC9jaZH0K85ahQPcpk5LZmhhWROlV0bgkTvON2qpc8LO3JrPVfwuntgBn1xQ1v-RNL0g-PSlBOUgiKv6cujQaeB9CmUsXSbYq5ARgQtoB7LrRR0RODJHNMoOOKyyL4e2bJRRrV_IW3mISaDDP9cCFu-ii1-3QuNZYXyfTM0hbF-j9lGJ9v3KHKnhcJDufsv1NR5sk-FpzolO0pwanbsryhOCUymbj8CW_w&lptoken=169b73bb764196fc737f&external_id=36197-741721455&source=16295&sum= IP172.67.71.67:0
GET /sl/html/DE10/n.php?cep=tZXWYKnwTS_IvwuXp8kmiTG5h9ZSCykmSO-qbMhR7GfwHEmug_8xzqKKPchxMJN7Ovs4XlGu_G7JV_dSSn0bPaHLiEIEtUcPpygDokvYjdlWnevc-_WrHqnuYt4pJ59Ej4lq0QV5YgLYjcjJfRBu_9EBBCJ5hOq_-m8dWtr_yNMwRgDED4oDWC9jaZH0K85ahQPcpk5LZmhhWROlV0bgkTvON2qpc8LO3JrPVfwuntgBn1xQ1v-RNL0g-PSlBOUgiKv6cujQaeB9CmUsXSbYq5ARgQtoB7LrRR0RODJHNMoOOKyyL4e2bJRRrV_IW3mISaDDP9cCFu-ii1-3QuNZYXyfTM0hbF-j9lGJ9v3KHKnhcJDufsv1NR5sk-FpzolO0pwanbsryhOCUymbj8CW_w&lptoken=169b73bb764196fc737f&external_id=36197-741721455&source=16295&sum= HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:13 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=300
expires: Sun, 15 Jan 2023 07:36:13 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5ccyTw5wQggKzihQUZFH4ic%2BJ7EXJx3O7y5zpCMbFEmJVgPg%2BV%2BJ%2FO%2Fd2HuLVuU4PHjRkIi2Id4p5XrLXxos2sD1FbIsRii2z4b7ao%2FBpRMg8pgXosjeFx4vFBTkNqJCJh%2B4yFs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce9191debb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/css/style.css?1673767873 | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/css/style.css?1673767873 IP172.67.71.67:0
GET /sl/common/css/style.css?1673767873 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 16 Jan 2023 07:31:14 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UsrY9HbbIUjNAVOJaJbuddz9haG51p%2Fq67XgwgF2qMbdwAtVcrQRuGu6%2BGgXc4mnc0aSNKVisagnVknzHTn1EAmcaTiewk79PPdCgiFNJzt4U9smp1PGFXXVG7F8XjvNU%2FfkagU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce91ce928b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/lib/additional-methods.min.js | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/lib/additional-methods.min.js IP172.67.71.67:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 16 Jan 2023 00:47:50 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 24203
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=49cIU2rzZoYTix9gNrXIGnIdCBoAy6Twu3WpUOMgDFgWIXdoOJ6s3egTfrbR7eQWlG%2F%2BesIZYcCfCqd5c3b6ax4EFhppiVDSk%2FBvtgKDuaWC24Om1OCK7%2FgQLCqI%2Fil6DKRS3ac%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce91ce92fb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/DE10/js/langs.js | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/DE10/js/langs.js IP172.67.71.67:0
GET /sl/html/DE10/js/langs.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=36979
expires: Mon, 16 Jan 2023 02:17:45 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18808
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BP3umQ78Tm3VCgitgF4kl8uA1IdcA%2BKLwHgedQVPVPPV%2FHl9ycT%2BM7WCQC22vLw11D74js6hrhNouXjfoIFTQp1OLbWrsDlrY7tXmx5J01h9%2FNrpizK6VqZZn6z8IFmc9wK5ilU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce91ce931b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/DE10/js/config.js | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/DE10/js/config.js IP172.67.71.67:0
GET /sl/html/DE10/js/config.js HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: application/javascript
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=704
expires: Mon, 16 Jan 2023 02:17:45 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:26:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18808
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ul0vPu1moQxuGrd1IGLrMeaaJIH0sipUa6Vi1T9r1JpvE7w3cfcrlYVRk5HkDVv6dS1R3317WtJ%2FV09gJYHc5OQDZrowN8MhxIy6SxOggm7SQ0HkFP5BjEVmbi3jR6ibS04DCTM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce91ce936b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/common/js/main.js?1673767873 | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/common/js/main.js?1673767873 IP172.67.71.67:0
GET /sl/common/js/main.js?1673767873 HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 16 Jan 2023 07:31:14 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v4f2LtTrDscrzHY4AuVeaq1aNKKDzNkGNwtPba8Iw78M6f2HMV3T%2BIVBnEBNvy4CFoxp%2BmmzV8%2B6v6KCoZ2E99DpVQZQLwyrpaIUy1iYapeHXFou9eVsoLkQsegsueI2Rlb4h1Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce91cf93fb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdnjam.com/cdn/sdialog.min.css?_=4 |  188.114.97.1 | 200 OK | 0 B |
URL HTTP/2cdnjam.com/cdn/sdialog.min.css?_=4 IP188.114.97.1:0
GET /cdn/sdialog.min.css?_=4 HTTP/1.1
Host: cdnjam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:15 GMT
content-type: text/css
content-security-policy: block-all-mixed-content
etag: W/"1d16caacad4ad6c40a99319a5d183947"
last-modified: Mon, 22 Nov 2021 08:00:52 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 16F5E342988C7B8C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 6992
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FOmf1DNYdg5MaXe%2FlMN7vyRiAkZn2QuFmbtEVIt1LycVtrfC05gZ7YusWR9y%2BwEQJ%2Fg9K69alp1m8e8Q4BSTYBUn74o%2FUHmzlrrITPcQQ9%2BSfB4x1lV5tkYdNjko"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce92899121bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mycasualhookups.com/sl/html/DE10/images/bg.html | 172.67.71.67 | 200 OK | 0 B |
URL HTTP/2mycasualhookups.com/sl/html/DE10/images/bg.html IP172.67.71.67:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sl/html/DE10/images/bg.html HTTP/1.1
Host: mycasualhookups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/DE10/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 07:31:14 GMT
content-type: text/html
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Sun, 15 Jan 2023 07:36:14 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v05g%2B70pYGJyCPGxTsBwt8RqwSWgExXj6pzzv%2FuBErvCaTXojdVIwaoASUdgBIs2JsYVcntWRTMS0iEq3jkipbc8Lrujq53WMJSBLVEDyLQWN%2FYJ6IMK35M6Iw5wvcM5oMbOXXY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789ce9204bbeb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|