Overview

URLsaoirse.pritylady.site/?a=
IP 192.64.119.254 (United States)
ASN#22612 NAMECHEAP-NET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-14 23:59:14 UTC
StatusLoading report..
IDS alerts0
Blocklist alert15
urlquery alerts No alerts detected
Tags None

Domain Summary (16)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
mycasualhookups.com (21) 0 2016-03-19 22:05:44 UTC 2022-11-14 20:56:26 UTC 104.26.13.87 Unknown ranking
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-14 06:01:12 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.160.51.228
app.api-push.com (2) 307671 2021-12-06 12:20:56 UTC 2022-11-14 22:46:16 UTC 172.64.138.29
ocsp.pki.goog (4) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
judy-k.com (2) 0 2019-01-17 17:08:37 UTC 2022-11-14 08:21:47 UTC 64.237.40.114 Unknown ranking
bl.trackham.com (1) 0 No data No data 18.193.146.82 Unknown ranking
subscribe.api-push.com (1) 0 2022-06-02 01:41:52 UTC 2022-11-12 21:06:30 UTC 172.64.138.29 Domain (api-push.com) ranked at: 61402
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-14 17:34:36 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
r3.o.lencr.org (4) 344 No data No data 23.36.76.226
ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-14 06:01:23 UTC 34.102.187.140
saoirse.pritylady.site (1) 0 No data No data 192.64.119.254 Unknown ranking
cdn-dt.fcdn.info (1) 230544 2019-03-21 02:06:06 UTC 2022-11-13 02:09:18 UTC 104.21.234.86

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-14 2 judy-k.com/pradga3?a= Phishing
2022-11-14 2 judy-k.com/pradga3/?a= Phishing
2022-11-14 2 mycasualhookups.com/sl/html/DE10/js/custom.js Phishing
2022-11-14 2 mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js Phishing
2022-11-14 2 mycasualhookups.com/sl/html/DE10/js/config.js Phishing
2022-11-14 2 mycasualhookups.com/sl/common/cookies-policy.html Phishing
2022-11-14 2 mycasualhookups.com/sl/common/unsubscribe.html Phishing
2022-11-14 2 mycasualhookups.com/sl/common/css/style.css?1668470343 Phishing
2022-11-14 2 mycasualhookups.com/sl/common/js/common-langs.js Phishing
2022-11-14 2 mycasualhookups.com/sl/html/DE10/images/bg.html Phishing
2022-11-14 2 mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js Phishing
2022-11-14 2 mycasualhookups.com/sl/common/js/lib/additional-methods.min.js Phishing
2022-11-14 2 mycasualhookups.com/sl/html/DE10/js/langs.js Phishing
2022-11-14 2 mycasualhookups.com/sl/common/privacy-policy.html Phishing
2022-11-14 2 mycasualhookups.com/sl/common/js/main.js?1668470343 Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 192.64.119.254
Date UQ / IDS / BL URL IP
2023-02-07 04:40:35 +0000 0 - 1 - 14 nya.d8me2day.xyz/ 192.64.119.254
2023-02-05 03:48:36 +0000 0 - 1 - 0 www.drillingahead.com/ 192.64.119.254
2023-02-04 12:01:01 +0000 0 - 0 - 2 allison09xg.bo0ty.mom/ 192.64.119.254
2023-02-04 05:36:21 +0000 0 - 1 - 1 eden.bestgrl4u.xyz/?a=bobg@slurpmail.net 192.64.119.254
2023-02-04 04:57:22 +0000 0 - 0 - 2 alyssa03xy.sisters.monster/ 192.64.119.254


Last 5 reports on ASN: NAMECHEAP-NET
Date UQ / IDS / BL URL IP
2023-02-07 21:39:50 +0000 65 - 0 - 0 akaoru.com/support/keybank/70b35a51f575c79ca5 (...) 162.0.229.227
2023-02-07 21:39:40 +0000 51 - 0 - 0 akaoru.com/support/keybank/42ac6ea6a1dea6c5a1 (...) 162.0.229.227
2023-02-07 21:39:37 +0000 53 - 0 - 0 akaoru.com/support/keybank/f3c5b6adcd1f548774 (...) 162.0.229.227
2023-02-07 21:39:36 +0000 51 - 0 - 0 akaoru.com/support/keybank/33750851c178e50c75 (...) 162.0.229.227
2023-02-07 21:39:27 +0000 65 - 0 - 0 akaoru.com/support/keybank/a4873e61fc09cf2c13 (...) 162.0.229.227


Last 1 reports on domain: pritylady.site
Date UQ / IDS / BL URL IP
2022-11-14 23:59:14 +0000 0 - 0 - 15 saoirse.pritylady.site/?a= 192.64.119.254


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-02-02 05:56:37 +0000 0 - 0 - 14 toomoffr.com/?a=16295&c=43694&p=r&s1=&s2=a_63 (...) 52.51.210.211
2023-01-25 06:02:09 +0000 0 - 0 - 11 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2023-01-24 22:18:38 +0000 0 - 0 - 12 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2023-01-23 06:27:15 +0000 0 - 0 - 10 meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63ce (...) 52.19.202.187
2023-01-22 09:43:43 +0000 0 - 0 - 13 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82

JavaScript

Executed Scripts (13)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (52)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2604
Expires: Tue, 15 Nov 2022 00:42:26 GMT
Date: Mon, 14 Nov 2022 23:59:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4429
Cache-Control: max-age=128764
Date: Mon, 14 Nov 2022 23:59:02 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 11:45:06 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DB1A82D8A2BACC0257B87EFEC0C365C1B769700FA27CE928321E082505F1D72A"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6491
Expires: Tue, 15 Nov 2022 01:47:13 GMT
Date: Mon, 14 Nov 2022 23:59:02 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 14 Nov 2022 23:44:35 GMT
cache-control: public,max-age=3600
age: 867
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4736bac84ca28f2b1e961159fb4ea098
Sha1:   1319612979f53896fcfeacd4215c2715d4951e4c
Sha256: 5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 4EseA0ri2Yu9JbbW60I40MN1fJjqcEtOtgd4H/RoEQ76udQBry8oiL7MdqDC3WtmFzeFXkTCYT4=
x-amz-request-id: C08C3N84MFA46H17
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 14 Nov 2022 23:51:18 GMT
age: 464
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /?a= HTTP/1.1 
Host: saoirse.pritylady.site
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         192.64.119.254
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Mon, 14 Nov 2022 23:59:02 GMT
Content-Length: 52
Connection: keep-alive
Location: https://judy-k.com/pradga3?a=
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   52
Md5:    7e0854853ec1077aaedad45c412421fa
Sha1:   7b4b8aad32f4f8e56a0b51a16233e9fe17e81df7
Sha256: 2fa9927c452418d0ad6457a9498606534d8269db2a7eaa908e9f7cd97dab15cd
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 14 Nov 2022 23:59:02 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 14 Nov 2022 23:25:01 GMT
cache-control: public,max-age=3600
age: 2041
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /pradga3?a= HTTP/1.1 
Host: judy-k.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         64.237.40.114
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Tue, 15 Nov 2022 00:10:04 GMT
Server: Apache
Location: https://judy-k.com/pradga3/?a=
Content-Length: 238
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   238
Md5:    e9b005295838f04d834f83640a4c58bf
Sha1:   5707eb2e5299145be7c42ca7fd1d4c7b1a0be235
Sha256: d5dbb561c8842690df58a49c3f6afab2426d2ea82dee373b9139884d1e8c39de

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /pradga3/?a= HTTP/1.1 
Host: judy-k.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         64.237.40.114
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 15 Nov 2022 00:10:05 GMT
Server: Apache
Location: https://bl.trackham.com/0192bfd1-5e02-41b0-abc1-ecf3727b3300?external_id={external_id}&source=pragdalive3
Content-Length: 0
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4453
Cache-Control: max-age=123731
Date: Mon, 14 Nov 2022 23:59:03 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 10:21:14 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /0192bfd1-5e02-41b0-abc1-ecf3727b3300?external_id={external_id}&source=pragdalive3 HTTP/1.1 
Host: bl.trackham.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         18.193.146.82
HTTP/2 302 Found
                                        
server: nginx
date: Mon, 14 Nov 2022 23:59:03 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/DE10/n.php?cep=-oBpta1-EKHikJZEyvWfeYnTHGDQL3Lj-GjbUhxD0pF28CuCUirG4PV6qgKt60dl5czRvVvzRMR6s2XbbGLaNHfkaoRPq3VfH1_ojsj4eL0DzReA7gKD2KRhk3ZyUp4SAcus01ohchUJaclFoxMWA6NFXXwqUi9f3_m3gUNr4YkjG0MGRtBMwKY_n8jc-2SoHc4sxQCMxWBGKloBhaITc-y-Jxe82N_2Cnl3OjAd04ksXEV1KOSRzelCdQe8zhUMSS9k8-YVzwzkK3CnXwCIiR6merFg0W4XUDp1hivIz_nA06VS8vaemvYTpnSxjBqIxTIvJzGexLzty675RZBtpijOW9IKKeSGS6NLayICZ8Ym2cu6m9q_yVypPR6APCjpCcP6luaHaSnhtxmin_s-UQ&lptoken=16d26845471e21cd4352&external_id=%7Bexternal_id%7D&source=pragdalive3
pragma: no-cache
set-cookie: 0192bfd1-5e02-41b0-abc1-ecf3727b3300-v4=fXC-_I9_Nv0hLnkKNyWzXOf1utGjhfo707xYZlHX5fo; Max-Age=86400; Expires=Tue, 15-Nov-2022 23:59:03 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None cep-v4=udSmI63s0yNo09qM1KagMET76bCFDqsSK2VVeaEvA-mqJACKdEyV0YHU9_wmLXGnzvaH4JQWGzHTIdlFHj4YCkpNR4FpAw4ZUsW3rjRXk0lraFUG28C3dJealCC0pUXhJeEEXQOYNX9dBfc_oc_bWsd8O_8bYw4uG0PBUNu09GMIc0_06EnVlcQdV4f5OZJ8Bdo9YkWs8tKJqQ0fUbR9gsWSJTFfOO8PK-7h3pyuUIEhUQV6yVqeFImjP4go2PXrYZZOPio4QY-jEeYPJ9oFNMJ5H8dO9fa0ferm1GetQtCSr_VCbUFHOGqu1aJPJ6EkdPW4hVMqCQV8J2B6QSVYEoIl-POfIJsFrs87a2n1I0CmrZ2nadItnbjxLNdfj7Kyezb07mif189sbYutLWzdNA; Max-Age=86400; Expires=Tue, 15-Nov-2022 23:59:03 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: g/P2ZiP35YVFWIKnTEkxmQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.160.51.228
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +pBgGvf7yDko/Hb/Iq2J/rGqRrw=

                                        
                                            GET /sl/html/DE10/images/03.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
content-length: 58287
cache-control: max-age=86400
cf-bgj: h2pri
expires: Tue, 15 Nov 2022 20:47:34 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11489
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nKEOk2LUq%2F7oHk48KpXi8qMJ0hNJnPpIZ2v0y4xqYzaUxJGJCfKj%2Ba1y2zlFDTwpLn%2BI1kN5vcILy3zUYCXpQpnb0NZvaEhdnrhvH97GVwsiIyIAvbqWftExdCHZoxiKDl8baXQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a3b2e1e9f90af6-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Cropped with ezgif.com", baseline, precision 8, 500x714, components 3\012- data
Size:   58287
Md5:    37bb1c4464d422fc75b5630e9ac8bebb
Sha1:   5e70235d897ab5e25a0905731d63a2e6fbbe0ff6
Sha256: d9ee942a4d8314c9094d342445921f0c46f55adeae1aa51b15599338f73cf7de
                                        
                                            GET /sl/html/DE10/images/02.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
content-length: 72269
cache-control: max-age=86400
cf-bgj: h2pri
expires: Tue, 15 Nov 2022 20:47:33 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11490
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lIMUQTbvT734kjibrrQeYttbE7RicyayR2f4hcV1GRinB%2FEbKTA%2FnXmabZhbbS6WzA7PsQls6Epjn4ygGM8IsAEi98mndvX5prAMRcmyBCi8MtrzoaOXED9NbWpI%2BBnzXItcMjQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a3b2e1e9f80af6-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x670, components 3\012- data
Size:   72269
Md5:    5a8b9b0560b1efd78ffc4b0a4b26d5dd
Sha1:   02c37f09435dd0df94fc9e291701cea61de47acd
Sha256: 69b803896c47dd6f767ec4475e28005b7a72b0273947a794391d857a93885a52
                                        
                                            GET /sl/html/DE10/images/04.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
content-length: 47131
cache-control: max-age=86400
cf-bgj: h2pri
expires: Tue, 15 Nov 2022 20:47:34 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11489
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uoRKZ7aLfQ%2Bti3JDzx2PUPtkZmsCBpUb5IJNfjrG%2Bp1i1H9Ya0HHnJCOFZ24obCjpTL4RZIQEqPPfnLDN8x2vMatdBTjd%2FAGlnCYmrdiIFKMlITo2ShVzq6xE1f406b5GHNhf9M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a3b2e1e9fa0af6-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x393, components 3\012- data
Size:   47131
Md5:    522d1fb81bd75e2160ce5fa2e05bcb80
Sha1:   bea0851dea66e6897cf9681055e34d4149d1f0fe
Sha256: 8305ef4314706cf7468a4d6230039a86c0120e284bd866f4c6b5cdf99d20206d
                                        
                                            GET /sl/html/DE10/images/01.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
content-length: 63047
cache-control: max-age=86400
cf-bgj: h2pri
expires: Tue, 15 Nov 2022 20:47:33 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11490
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X9k5UaVgSWdvzmC5jHVxlHPS6KqDqcYtB9dSNxzULujEYne1%2FfG4FU5bx9mZRFA8E%2F%2FrqiOQ%2Fij%2BEPPVlNqZGQifm2mjKMfetheNp8EHgxZM5VV1%2B2mOWEHC%2F6Z6o1jpTI90WKo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a3b2e1e9f70af6-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x736, components 3\012- data
Size:   63047
Md5:    3a850bc7c7440247f8464289ab4c282c
Sha1:   3347973cd9aa7a79cf9c87ea147a586a0da7fa9a
Sha256: d62defeba698e9f156e1f6f777d28ff475a8abf37c9dc632005fda06cba77fc1
                                        
                                            GET /sl/html/DE10/images/05.gif HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/gif
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
content-length: 295330
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 15 Nov 2022 20:47:35 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11488
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n2X2JoJPUucXRWF0rOQnMO51Z1S4nVhGxRMv8jWZU1Ipw7j8vmCyVpw%2FZDon6Xf5hmZYc2pdzo6YnSirpTy3pt8ZLKtQJu169nCWKF%2BdbocaVGrldNPv8TsEY4QBe8AVgxug%2Fp4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a3b2e1e9fc0af6-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 250 x 176\012- data
Size:   295330
Md5:    a5d1782e371584dd39fc60be2654dc5e
Sha1:   3347cabe8d40b0b93dff953291e0452c0d81a6e0
Sha256: 7c19aaec94ee7eceeea4171c58384347af75fe5b01374e548c49d9d498b83fea
                                        
                                            GET /sl/html/DE10/js/custom.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=130977
expires: Tue, 15 Nov 2022 20:47:29 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11493
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CRos3p%2Bra9Wj%2FRjpor8VPr98JArGTL7atLVQ8gVbjEHiWHW4JqtzJ4tnk4BHGVQ7lDo538kEB15GdArf%2B8MbAGruh3Mc3o7gvQOkiZSiL3gFnOO4YO5kKmqHNk%2B%2FN2zrv3%2BbZOs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e1e9ec0af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1382)
Size:   35729
Md5:    dfeb519477dc9480f57ffb1ec8fb862c
Sha1:   51112b3b56b774f49946826fd603d0333f4be163
Sha256: 256e8ee5600ed8113866440e7968fedca845706dbef0b421c53e04604ffd3ffd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 15 Nov 2022 15:29:09 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 30594
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RLFzTHEqUSjwzdHeFRFZLqswkc05CFNI7i0KqADvynn1n%2FtFdKHjgJ65xtA2llHLH067qW8a21vU4n7tTDUOqHUg8lGDwpGSvg%2BV3bmCQSLNVLC0%2Fk7aBS%2FO6ypfTwoZErfS0BQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e1e9ee0af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   32436
Md5:    b903edaa268ca9b0a2bd32b1f0488a3f
Sha1:   92b6ba57dbcfd39033f6431c628155696a61e30b
Sha256: fab3a8a478abe1c8a6739769402cabe2a391fb391061d598bc9d9809236df02a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            OPTIONS /get-keys HTTP/1.1 
Host: app.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-referer
Referer: https://mycasualhookups.com/
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         172.64.138.29
HTTP/2 204 No Content
                                        
date: Mon, 14 Nov 2022 23:59:04 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: content-type,x-referer
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IerAGncnL%2BESWDQ9u0ln0aI6%2F8fvgK5RZcJuA4cIrU1HEw8BV0GU1rec%2F9pBGpZdBuQwJNanZ9vXhC1Gey8mtf84%2F4Q8kGDgJlYoRxq5CKuH7Euos3qeikBvUzIsILhecXj%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e36bcb71cf-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            POST /get-keys HTTP/1.1 
Host: app.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/DE10/n.php?cep=-oBpta1-EKHikJZEyvWfeYnTHGDQL3Lj-GjbUhxD0pF28CuCUirG4PV6qgKt60dl5czRvVvzRMR6s2XbbGLaNHfkaoRPq3VfH1_ojsj4eL0DzReA7gKD2KRhk3ZyUp4SAcus01ohchUJaclFoxMWA6NFXXwqUi9f3_m3gUNr4YkjG0MGRtBMwKY_n8jc-2SoHc4sxQCMxWBGKloBhaITc-y-Jxe82N_2Cnl3OjAd04ksXEV1KOSRzelCdQe8zhUMSS9k8-YVzwzkK3CnXwCIiR6merFg0W4XUDp1hivIz_nA06VS8vaemvYTpnSxjBqIxTIvJzGexLzty675RZBtpijOW9IKKeSGS6NLayICZ8Ym2cu6m9q_yVypPR6APCjpCcP6luaHaSnhtxmin_s-UQ&lptoken=16d26845471e21cd4352&external_id=%7Bexternal_id%7D&source=pragdalive3
Content-Length: 89
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.138.29
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Mon, 14 Nov 2022 23:59:04 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y%2FmThI78yqC6kLpI%2B1tXNwPRT0qMuB53dXXe0IXbQgZYIy7QZSgBtEMOpcic%2F%2B1xQnTH%2FozI%2BFziAwln%2F36%2BpzoUIAd%2F7Ca%2BgvJykzwllKhKmIE0OAFwtr8P5ZCdTjVBFb98"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e3dc1371cf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2116), with no line terminators
Size:   917
Md5:    513e2d6f7c4afa7a467e568b61c21860
Sha1:   ac4f6c25cdb7c39831cb5fbb29145329a81abee4
Sha256: a1d29eaf84ca426460dada1ebf6d4d2c709ad23201f8bc53d4f9dbdc65aa4d20
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 14 Nov 2022 23:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1 
Host: subscribe.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/DE10/n.php?cep=-oBpta1-EKHikJZEyvWfeYnTHGDQL3Lj-GjbUhxD0pF28CuCUirG4PV6qgKt60dl5czRvVvzRMR6s2XbbGLaNHfkaoRPq3VfH1_ojsj4eL0DzReA7gKD2KRhk3ZyUp4SAcus01ohchUJaclFoxMWA6NFXXwqUi9f3_m3gUNr4YkjG0MGRtBMwKY_n8jc-2SoHc4sxQCMxWBGKloBhaITc-y-Jxe82N_2Cnl3OjAd04ksXEV1KOSRzelCdQe8zhUMSS9k8-YVzwzkK3CnXwCIiR6merFg0W4XUDp1hivIz_nA06VS8vaemvYTpnSxjBqIxTIvJzGexLzty675RZBtpijOW9IKKeSGS6NLayICZ8Ym2cu6m9q_yVypPR6APCjpCcP6luaHaSnhtxmin_s-UQ&lptoken=16d26845471e21cd4352&external_id=%7Bexternal_id%7D&source=pragdalive3
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.138.29
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Mon, 14 Nov 2022 23:59:04 GMT
content-length: 5
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=41S9BubNSoPrCwAGxj0mlHNssiSnkJBFy%2BGLSfC%2Fr%2F7Juw8SA0dMKR6MLR1mmZMWyK6%2Fc44%2BkPWqwZwS5lYcelZtjQYO6WABlWgqljHSdqODsPBvgPkVQIK3Iq71NRWpYoKuyXXzKtG%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e4fd3571cf-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   5
Md5:    68934a3e9455fa72420237eb05902327
Sha1:   7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
Sha256: fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 14 Nov 2022 23:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 05:42:51 GMT
expires: Fri, 10 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 411373
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 14 Nov 2022 23:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3250
Expires: Tue, 15 Nov 2022 00:53:14 GMT
Date: Mon, 14 Nov 2022 23:59:04 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3250
Expires: Tue, 15 Nov 2022 00:53:14 GMT
Date: Mon, 14 Nov 2022 23:59:04 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b12e479-a09c-431c-aecf-6e63c60a01f1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5882
x-amzn-requestid: a9d913e4-c9c1-4054-a9ff-c5ff5287c854
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bhQZ2H2loAMFsmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6370610b-63cf663851f2e04b7f2cb70a;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 03:14:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 0DjdK2du8K9O1d0rcWaDO6yqWBuHYSSiEJmscryUraTH73vwcwubNg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 03:32:26 GMT
age: 73598
etag: "746804d683bea55f44d5f6456a7e69d0048e4f58"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5882
Md5:    fe4f5dc12e097182fed4de0161bc5b8a
Sha1:   746804d683bea55f44d5f6456a7e69d0048e4f58
Sha256: d8a2095cd57455bab301ae68b7478997f3db056039886d85301eb85d7d196cf4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lp5eW92D8SbFtcQLk-LRSaSKNMNFYCW7XTALdNdrJxN6ebgdH8_1Dw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:52:43 GMT
age: 7581
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11715
Md5:    cd5bdc050716bb76afe8090fc81617e7
Sha1:   5109c156b180727767fc03c411190ccc0d3fb5fc
Sha256: 9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 14 Nov 2022 23:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50ad5043-e51e-4766-8f6a-d0782645cc84.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11290
x-amzn-requestid: e56e4731-696e-4c63-9b48-1be184b32098
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bhPzMHOEoAMFVJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63706014-22c49f066ed90cf35d5bba3d;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 03:10:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4GdlXHpFADt-b7aq-JhGnU4derYUx0ta39dEXO3ywma3_J0L3D1fug==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 04:13:15 GMT
age: 71149
etag: "2ca4915631ddcda64c1cb70674f4b1379e288050"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11290
Md5:    49fc9477e5982c76b5205fe284f50848
Sha1:   2ca4915631ddcda64c1cb70674f4b1379e288050
Sha256: 496e4e4317538bd34bc6bc28f0c772b7afaf0edac6d2a8686f5e6c4f44331bb4
                                        
                                            GET /sl/html/DE10/js/config.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=704
expires: Tue, 15 Nov 2022 20:47:30 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:26:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11493
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vsI8Z3KVY0cZRsCV%2BAgcY0MLpnkBUyTDoKl0ZHx4cCGFTvPXhRIdn1KwDlXZSajwkk9ei2gVi1o9FVCboVZo3xlPNOhBymmn%2F0tT7D1eHmYZtlnk4AvM2xzqDD1ck94RgcwDxNs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e1e9f30af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (333)
Size:   10519
Md5:    48ca7fd882e2f5e3678d1da303017a80
Sha1:   2a3089a48979de5f5bbeaa57b61074b853da1f63
Sha256: 61b28a71d60522279694746327a87ad29ebac5cf256e20dc3e8f8b249b006307

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8025
x-amzn-requestid: c876c502-bde1-4c03-a946-7af2117240ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bg3EUF0foAMFfyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63703881-0594a8076fb64f570f824ad1;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 00:21:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eWpoQ8Bkfez0fw2HBZVlPIWIrtjeS6i6V-Dn0NthrKeeDYQEYq62kQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:49:06 GMT
etag: "1651325ad361d1c86a4b81edb6b75af27f490a39"
age: 7798
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8025
Md5:    94c82cd0e4204ea23b9bd86a3f576fa8
Sha1:   1651325ad361d1c86a4b81edb6b75af27f490a39
Sha256: 0173a565be87e87b2a8fccb3bfe4f237ddd9fdafa5711e79f0c4381882238886
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F818b8415-26b4-4768-a1f1-8eafa6e11c16.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7414
x-amzn-requestid: ff411645-d77f-4ef2-a175-c534bcd21f28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bM2cjFwqIAMFxgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63683783-552038846aadb8be53bb3ea1;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 22:38:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ivVEyCNKURmHSP1rbwcmv3mUrpIJ13B7LGsFzYYufJIMx2I5aZXY3g==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 10:03:33 GMT
age: 50131
etag: "f22e89c145d1ede9e3d731e6748bfe338c1a0d6b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7414
Md5:    b76f3ae29d447b9c8938462c4adb6463
Sha1:   f22e89c145d1ede9e3d731e6748bfe338c1a0d6b
Sha256: b5bf1a0416425ffef9f3b0954c7c4659e33ab1dacfb812e8308e2095dd1bc409
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4324
Cache-Control: max-age=140137
Date: Mon, 14 Nov 2022 23:59:05 GMT
Etag: "637245ce-117"
Expires: Wed, 16 Nov 2022 14:54:42 GMT
Last-Modified: Mon, 14 Nov 2022 13:42:38 GMT
Server: ECS (amb/6B90)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /sl/common/favicon.ico HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Mon, 14 Nov 2022 23:59:04 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 4115822
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L8Y5ebS3CtNRd2DTjO%2FhuoRd64tPPqkz4YkRzMaclViv5x3SjX%2FUDkGovG0bPNFknlElQ3elHyteq62tEfpTNc1z0FhWCNUtNkU4%2FOWZjDkY2CvyoBewhlzOqYYbB1TMXCJXXdY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a3b2e6ac6d0af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Size:   2665
Md5:    10e7a4c10c24a062ecf06c697587ea69
Sha1:   5bff82f20b2068468ac86c8488d103848e53b337
Sha256: d838109a49bc1ff7523ae33dde1ac5d97f458cacbc7c1abc4c7727dd285adb3b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4cc31a8-ba2e-4cc0-bf6e-0daaf01962d2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7504
x-amzn-requestid: 553a2ee3-9dcb-44ac-b0e1-e8ea660eedcc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bOAmqGAyoAMFv5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368ae2a-7af9fba56c5ae9ca5f513668;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 07:05:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rRrM6hW5gFH8bLxrzQv5emBacEQrqldwEfD1M0YycB4XphG-XXwRuA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 03:32:33 GMT
age: 73598
etag: "78118517bfffe997c85f08bd9b7b7ac9270d9b02"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7504
Md5:    9459d8c5ec4b22476e1470e5476f70f7
Sha1:   78118517bfffe997c85f08bd9b7b7ac9270d9b02
Sha256: 647d0898ed6a38191ff91ca316e90a72d9a5ce563c3602a8d4c477c64f096be4
                                        
                                            GET /sl/common/cookies-policy.html HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/html
                                        
date: Mon, 14 Nov 2022 23:59:05 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Tue, 15 Nov 2022 00:04:04 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oo7G6WwV8SXNocNVnCLjevtlB0l8niqaytnxtfvCzooAt4sDVRWo%2BpAKUk1AM%2F5oxUnTd1a7%2B6BUv2o9DpXqFcDs5wNZC8UDHRNnVeOjW660w1%2FvZGbW0k2pBy2xsqzRwbdGQpk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e54bd30af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/DE10/css/main.css HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=2611
expires: Tue, 15 Nov 2022 20:47:29 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11493
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tOcu0lpLs5cDN0fmZmP50ufT84HG78ol6Po9gAaryWbX1Hw6wRIcsElp6TsB1UylS1Mq9ZUIQ8QGGrk2g2pindv2HoFL8%2B8cBudItW0OY1l5IbKZT7va9AOos99mfbu8L5%2Flpeg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e1d9e90af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/unsubscribe.html HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/html
                                        
date: Mon, 14 Nov 2022 23:59:04 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Tue, 15 Nov 2022 00:04:04 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=csu5hMUhjr1pgrOcGDiirmr3vtl%2BHoN%2FF8AG3GjKMh0MU%2BVLqkz%2Fym0a%2BSHpRtjJYmlH%2BfsJ9PHpvs36dsqpKUuUR7PnWJiaXGKBRQDnDqNgjwFAc%2FQvL1t%2Bs42ji7ARveSQtxw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e54bd40af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/css/style.css?1668470343 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Mon, 14 Nov 2022 23:59:04 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 15 Nov 2022 23:59:04 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bxn74S0MSX1125tqxIixuFEWPS7HqljNcXnd01AzmHa1Wg0EOSW7XVsbA90rIB1dAqkukk0CnvwgeYfMVP7UXMJtaLRq8AAk7Yz2SijgIlvLFhrPli%2FKb6d0YzYOhLWU5yDtLlk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e1e9ed0af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/common-langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Tue, 15 Nov 2022 15:29:09 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 30594
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VNjS%2F7IVMTGdcUAdAUcJfb6wV8%2Br2uZt%2B%2FYVm%2B4GZNdYoWxABQYQBzv9qoi2cwGLESVpFlmIL9D2oemiCYrWJBljzimpNN8fIP%2Byr%2FJzGwgGRdKGAWZMwIo2LjZ6WmJ97Xq1Ifg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e1e9f40af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/DE10/n.php?cep=-oBpta1-EKHikJZEyvWfeYnTHGDQL3Lj-GjbUhxD0pF28CuCUirG4PV6qgKt60dl5czRvVvzRMR6s2XbbGLaNHfkaoRPq3VfH1_ojsj4eL0DzReA7gKD2KRhk3ZyUp4SAcus01ohchUJaclFoxMWA6NFXXwqUi9f3_m3gUNr4YkjG0MGRtBMwKY_n8jc-2SoHc4sxQCMxWBGKloBhaITc-y-Jxe82N_2Cnl3OjAd04ksXEV1KOSRzelCdQe8zhUMSS9k8-YVzwzkK3CnXwCIiR6merFg0W4XUDp1hivIz_nA06VS8vaemvYTpnSxjBqIxTIvJzGexLzty675RZBtpijOW9IKKeSGS6NLayICZ8Ym2cu6m9q_yVypPR6APCjpCcP6luaHaSnhtxmin_s-UQ&lptoken=16d26845471e21cd4352&external_id=%7Bexternal_id%7D&source=pragdalive3 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
cache-control: max-age=300
expires: Tue, 15 Nov 2022 00:04:03 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pPZDVaBApMD%2BecolNPDJJxLRI8Cy1HsM4w%2BbfXNa6wgh6NDIrxkiTT6OOajQxiX%2FmRWosMqUg4LwpcEGGBljBoo1r3%2FoxjEOHaFVORTlxxeKmrYoVMpGGLRVb7Kl4doa2jLhHyg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2de08510af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/html/DE10/images/bg.html HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/DE10/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/html
                                        
date: Mon, 14 Nov 2022 23:59:05 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Tue, 15 Nov 2022 00:04:04 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CNX%2Fi3qVzJCOwFG3VTdHsipvzsN8yPw2ppZClsw2TOH6kybkBnkzyxzpOK5W5eyWSWtJdfKzgTfbn%2FoqViO6npN%2BpozSPWwHK%2BkmUiEkD86fomPNV56fMhuQnMMGnwRdcw7U%2F6Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e53bce0af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 15 Nov 2022 15:29:09 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 30594
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4gSdwXvrEYh1LHGIZ6n9zPS33ey8mAK88GvIUxSqUu4gyrsicfz8R1%2FVoVUBOxEsD%2BXDoJcBHZPtJR7OikcrdZ%2FVrkiLshX9FU5urGo8rpelGXhqgKU8%2FueJ2G2xWm1CLlkWXRg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e1e9ef0af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 15 Nov 2022 15:29:09 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 30594
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DL%2F9VN68h8xRvK6V4kh9G9DQYEGxB4ese9BPUqQZZ71jlVUCdWgYOEdxT72BeO4c51kLtvdlXttuTQ8dHRXCJr4GAPlHv7O%2BVIV4qvUo0WN1X0LTlb6lciXjlilDfgvUQ0lqHZ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e1e9f00af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/DE10/js/langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 14 Nov 2022 23:59:03 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=36979
expires: Tue, 15 Nov 2022 20:47:29 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 11493
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=twBblihMv4QjWQmobdEG%2FDBT1emJpLxqW207VaS7cvxhvcCqeCKxmY86cY5c%2BwV4eavhXRZREJOUV3he%2F9SqNOQHkaOqwhYk9R7Ubqq1hiJjVsY%2BsqvSvzASazpHv6BWShbQ2R8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e1e9f20af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/privacy-policy.html HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/html
                                        
date: Mon, 14 Nov 2022 23:59:05 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Tue, 15 Nov 2022 00:04:04 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7gfUvPf4vocog8NqZEyX1aj8ZEomDgYDu%2FM0Nzm%2Byl3em9e9UBE6Wa9WUnvEZSu%2FV1CbOaIeGfm8jV0v2I83HWwMG4Wv7kigXK8rJbxd%2FBIg%2Brl3ITLoBmnlp7JWRu%2FoK0gv7B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e53bd20af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /swpush.min.js HTTP/1.1 
Host: cdn-dt.fcdn.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.234.86
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 14 Nov 2022 23:59:04 GMT
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1689359
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wLeJ0fZhE6VZIpe3YLBNBbRDV5pgf%2Fw2Jm%2FASIABV1ZrSfWKh%2BVP5iwqjFDiI7yuXYJMornVg7cloUlPqK1DUHFV3hr1IYzcOzg5QK%2Ff9I7TKG%2Fd9z%2BtPNWJNz8Cx6RTnUH3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a3b2e2ad217692-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/js/main.js?1668470343 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 14 Nov 2022 23:59:04 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 15 Nov 2022 23:59:04 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yAMWo4Us4NbVg6y5i1YXRmrV2tV9FaxwgkMfV3YH%2BwNCpawG1p4cNX1kA1Sv4Js5JR0YqjqSA%2FSmyu6MqgI%2FCjFwI%2F8cf7jmFYD0IH%2Be5vcG4kFkyVl%2FEtq0GSfQtZWBiaQA%2FJg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a3b2e1e9f50af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing