Overview

URLmycasualhookups.com/sl/html/092009/n.php?cep=NLup9Afpy5lrMiuk4XgSI818vD6r8PCDC7fL3-k650ZwH_Z7Z0ROt1htjjhvaYWEszzaDf-opL_DWV87Mb-gv1-uNSE7BN9atj732J3mTclmYOKHNarQWbujdclrdbbONCmIUwbjf8tByfRRcsmDOTo_altdSP5AII_2-1e3LznhuMFfXWirhfC9hHQAsRcdGr3yLr4ARUlK2PQu1TqTXHi_NOSYNM9mK_uxhxBDi7KLQG8cTHPFOncebWzeeH3tQcbeZ-MPV2Q8OBLQMOq7DUnS4Vf3oBypUyx1m1Ho_hkC4_hxWHT9SRsHhEOQTNOu5ZipEW2O5aSyo2X-nmHBgSftV-cj1bQvp6QFttYcxmU372GBj7sFJW66e5PntlFLiGpRYeGOsgGlYTznp9lYHRnyM2ZTfuQpqKf3pWdqsRc&lptoken=162968bf97e3300d5282&external_id={external_id}&source=pragdalive3
IP 104.26.13.87 (United States)
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-20 19:08:03 UTC
StatusLoading report..
IDS alerts0
Blocklist alert4
urlquery alerts No alerts detected
Tags None

Domain Summary (10)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mycasualhookups.com (12) 0 2016-03-19 22:05:44 UTC 2022-11-20 14:22:21 UTC 104.26.13.87 Unknown ranking
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-20 05:50:32 UTC 34.117.237.239
ocsp.pki.goog (2) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.35
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.218.164.174
img-getpocket.cdn.mozilla.net (3) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
r3.o.lencr.org (6) 344 No data No data 23.36.77.32
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-20 06:02:23 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-11-20 13:18:48 UTC 142.250.74.10

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-20 2 mycasualhookups.com/sl/common/js/lib/additional-methods.min.js Phishing
2022-11-20 2 mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js Phishing
2022-11-20 2 mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js Phishing
2022-11-20 2 mycasualhookups.com/sl/common/js/common-langs.js Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.26.13.87
Date UQ / IDS / BL URL IP
2023-02-03 18:10:14 +0000 0 - 0 - 9 mycasualhookups.com/sl/html/092005/n.php?cep= (...) 104.26.13.87
2023-02-02 05:56:45 +0000 0 - 0 - 10 mycasualhookups.com/sl/html/DE10/n.php?cep=k2 (...) 104.26.13.87
2023-02-02 05:56:37 +0000 0 - 0 - 10 mycasualhookups.com/sl/html/DE10/n.php?cep=_9 (...) 104.26.13.87
2023-01-29 03:01:13 +0000 0 - 0 - 9 mycasualhookups.com/sl/html/EN3/n.php?cep=-Qm (...) 104.26.13.87
2023-01-23 00:10:46 +0000 0 - 0 - 9 mycasualhookups.com/sl/html/DE10/n.php?cep=NK (...) 104.26.13.87


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-02-08 11:31:55 +0000 0 - 1 - 0 cdn.discordapp.com/attachments/10655787478451 (...) 162.159.134.233
2023-02-08 11:29:05 +0000 0 - 1 - 4 george-login.buzz/sparkat/a1b2c3/c4cc1c77e15a (...) 172.67.130.28
2023-02-08 11:29:01 +0000 0 - 1 - 4 george-login.buzz/sparkat/a1b2c3/c4cc1c77e15a (...) 104.21.7.103
2023-02-08 11:27:45 +0000 0 - 1 - 0 vitrek.com/downloads/pa900/PA900_Single_Phase (...) 162.159.135.42
2023-02-08 11:27:05 +0000 0 - 1 - 4 george-login.buzz/sparkat/a1b2c3/20c59374eb09 (...) 188.114.96.1


Last 5 reports on domain: mycasualhookups.com
Date UQ / IDS / BL URL IP
2023-02-06 06:40:11 +0000 0 - 0 - 8 mycasualhookups.com/sl/html/ES11/n.php?cep=HE (...) 172.67.71.67
2023-02-04 06:07:09 +0000 0 - 0 - 9 mycasualhookups.com/sl/html/EN3/n.php?cep=-uE (...) 172.67.71.67
2023-02-03 20:31:50 +0000 0 - 0 - 9 mycasualhookups.com/sl/html/032107/n.php?cep= (...) 104.26.12.87
2023-02-03 18:10:14 +0000 0 - 0 - 9 mycasualhookups.com/sl/html/092005/n.php?cep= (...) 104.26.13.87
2023-02-02 05:56:48 +0000 0 - 0 - 8 mycasualhookups.com/sl/html/EN3/n.php?cep=Ooa (...) 104.26.12.87


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-02-07 11:11:24 +0000 0 - 0 - 3 dhl-expresstracking.com/espace-client/login.p (...) 152.89.196.187
2023-02-07 09:25:45 +0000 0 - 0 - 3 dhl-expresstracking.com/espace-client/login.p (...) 152.89.196.187
2023-02-06 12:07:37 +0000 0 - 0 - 11 coachoutletfactorystoreonline.us.com/ 45.56.79.23
2023-02-03 23:40:24 +0000 0 - 0 - 1 project.healthdataservice.com/index.php/campa (...) 188.114.97.1
2023-02-02 18:37:53 +0000 0 - 2 - 0 notafiscalmercadopago.co.ua/d406f9ad8d6096791 (...) 104.21.86.14

JavaScript

Executed Scripts (7)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (32)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "01ED8C191C175471AEE23CBC196D558E5BF5209F166806FC97DB08EB06544BAB"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5770
Expires: Sun, 20 Nov 2022 20:44:02 GMT
Date: Sun, 20 Nov 2022 19:07:52 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4504
Cache-Control: max-age=146316
Date: Sun, 20 Nov 2022 19:07:52 GMT
Etag: "637a01fc-1d7"
Expires: Tue, 22 Nov 2022 11:46:28 GMT
Last-Modified: Sun, 20 Nov 2022 10:31:24 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 20 Nov 2022 18:45:01 GMT
cache-control: public,max-age=3600
age: 1371
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "79FF4A450C749D64E116C00CA3B00D40E968906C5C3881D6EEB2DC6374A4C858"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4808
Expires: Sun, 20 Nov 2022 20:28:00 GMT
Date: Sun, 20 Nov 2022 19:07:52 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: fucMoC+qoGMWAG/MfyOLw7iBUXSeT+P73E472uXv+1LcRCbxA4EAayI6TkBIW1h4K7LoqppSjls=
x-amz-request-id: PSY3B8N90CX5AVZ3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 20 Nov 2022 18:41:49 GMT
age: 1563
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /sl/html/092009/n.php?cep=NLup9Afpy5lrMiuk4XgSI818vD6r8PCDC7fL3-k650ZwH_Z7Z0ROt1htjjhvaYWEszzaDf-opL_DWV87Mb-gv1-uNSE7BN9atj732J3mTclmYOKHNarQWbujdclrdbbONCmIUwbjf8tByfRRcsmDOTo_altdSP5AII_2-1e3LznhuMFfXWirhfC9hHQAsRcdGr3yLr4ARUlK2PQu1TqTXHi_NOSYNM9mK_uxhxBDi7KLQG8cTHPFOncebWzeeH3tQcbeZ-MPV2Q8OBLQMOq7DUnS4Vf3oBypUyx1m1Ho_hkC4_hxWHT9SRsHhEOQTNOu5ZipEW2O5aSyo2X-nmHBgSftV-cj1bQvp6QFttYcxmU372GBj7sFJW66e5PntlFLiGpRYeGOsgGlYTznp9lYHRnyM2ZTfuQpqKf3pWdqsRc&lptoken=162968bf97e3300d5282&external_id={external_id}&source=pragdalive3 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         104.26.13.87
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 20 Nov 2022 19:07:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://mycasualhookups.com/sl/html/092009/n.php?cep=NLup9Afpy5lrMiuk4XgSI818vD6r8PCDC7fL3-k650ZwH_Z7Z0ROt1htjjhvaYWEszzaDf-opL_DWV87Mb-gv1-uNSE7BN9atj732J3mTclmYOKHNarQWbujdclrdbbONCmIUwbjf8tByfRRcsmDOTo_altdSP5AII_2-1e3LznhuMFfXWirhfC9hHQAsRcdGr3yLr4ARUlK2PQu1TqTXHi_NOSYNM9mK_uxhxBDi7KLQG8cTHPFOncebWzeeH3tQcbeZ-MPV2Q8OBLQMOq7DUnS4Vf3oBypUyx1m1Ho_hkC4_hxWHT9SRsHhEOQTNOu5ZipEW2O5aSyo2X-nmHBgSftV-cj1bQvp6QFttYcxmU372GBj7sFJW66e5PntlFLiGpRYeGOsgGlYTznp9lYHRnyM2ZTfuQpqKf3pWdqsRc&lptoken=162968bf97e3300d5282&external_id={external_id}&source=pragdalive3
Cache-Control: max-age=300
Expires: Sun, 20 Nov 2022 19:12:52 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PHWQs1sRvABrx1SCjo3a5imjZil4ceTFVm%2Fc%2FCmVi%2FBt3yI%2B56H0tOAqCJLNI1ZzteRlyqa%2FxHIFGtL8KFPp%2FylhxP5wiLzHEtnmHriQzS8%2FbDP9bz9IxxS%2BgSrUcccabtR27Ps%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76d378942ec7b4fd-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (616)
Size:   774
Md5:    100194150f5e41d856af6cb4cb114404
Sha1:   34450b639db7d5fcff1c03430fadbc5d8e6b5179
Sha256: 7090f43bbd2abb21b68ef8a1f9d81831e954b20fd3e3beb80d27930e46db7bc6
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 20 Nov 2022 19:07:52 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST /s/gts1p5/Oos9GsXF1Co HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 20 Nov 2022 19:07:52 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 20 Nov 2022 18:25:04 GMT
cache-control: public,max-age=3600
age: 2569
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2914
Cache-Control: max-age=139654
Date: Sun, 20 Nov 2022 19:07:53 GMT
Etag: "6379ee2d-1d7"
Expires: Tue, 22 Nov 2022 09:55:27 GMT
Last-Modified: Sun, 20 Nov 2022 09:06:53 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 20 Nov 2022 19:07:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 20 Nov 2022 19:07:53 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 21 Nov 2022 16:06:18 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 10895
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wu7BeO0HYKL8RGDMcJ9hiNzoR1kJGSIhLXOOacdBVcwn18WI%2FpQL%2BA58QfbbG6Uf%2FVEEoDR6427OLydN7YUQZGis1uGXDf2VB0ht%2FfdxRg2Hg3c6dCqS%2B2Y2PCJvjQ3jBe9RuIw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d3789b0e89b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (17654)
Size:   5981
Md5:    d5ad9fcfa79a088755df0d5a06ab1b34
Sha1:   69d65e5b4e8aa5d4d484fb4944194b95339d6c76
Sha256: 84ec292c8ae8e33f446841f8fca79a44b1baca44b092996ee59d5903b6c2ff48

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Lato:400,600,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 20 Nov 2022 19:07:53 GMT
date: Sun, 20 Nov 2022 19:07:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dCqTthIJyEgmobWoKpx1KA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.218.164.174
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UmeS3epCPFM7bmvgRqiC8c2Ez7c=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8068
Expires: Sun, 20 Nov 2022 21:22:22 GMT
Date: Sun, 20 Nov 2022 19:07:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8068
Expires: Sun, 20 Nov 2022 21:22:22 GMT
Date: Sun, 20 Nov 2022 19:07:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8068
Expires: Sun, 20 Nov 2022 21:22:22 GMT
Date: Sun, 20 Nov 2022 19:07:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8068
Expires: Sun, 20 Nov 2022 21:22:22 GMT
Date: Sun, 20 Nov 2022 19:07:54 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F032a7640-4af2-49ea-b184-de5b0ed996a4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9653
x-amzn-requestid: 06932e2b-59fa-4e05-aad3-65d7e2045e13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3i5fHJEoAMF8Mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794b6f-0062640e7868cf664bcf26d2;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:32:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6eFgEWflu3zqDd4J838DeZiPxNafliBVrce95D_29-oviwINWR2bkw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 21:41:31 GMT
etag: "fd48bd3737d35bc53a0ec4593c8769ea9fe1cc71"
age: 77183
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9653
Md5:    79ccaf63b8e37223509518f540b26f54
Sha1:   fd48bd3737d35bc53a0ec4593c8769ea9fe1cc71
Sha256: 950ae082472515d39c9e3440cee399376e99840651ff04c4d2581951e44163de
                                        
                                            GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 20 Nov 2022 19:07:53 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 21 Nov 2022 16:06:18 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 10895
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M9AOJX4l6bhlRHypSy80C4TxWgtJIRRtik6wciS%2BFXo5ZQdGA5IIRkUm418t9h0V7fT8lDIvSONaKVgeVAIqJntmXTEZpAcsSsXFHQE8TcDl5Dwq7SVszhDhry3nUy8YwGxk3G0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d3789b0e7db4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   42877
Md5:    d91dd672d459c5a477c57d13e77af61a
Sha1:   11b7533a6b905ceb35a4e4318aaaefbf0f9d93a2
Sha256: bb2ce6448cf172cbb1b8abebc5b84de5fed07a37c6924ce2ee1c446bce14a8e7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175348d8-bd72-46a1-a737-9e442ab4231c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9798
x-amzn-requestid: abab4eb2-0a35-4113-8a52-e07c08f069cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bkiY2HXCoAMFVrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371b105-1cb176423ca3231a093cc4c7;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 03:07:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AteeNwLYPSC1iY1VYtQ85S3UrUXPURhvQrTCc2uCTZD7gyBPGfoghw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 20 Nov 2022 15:08:06 GMT
age: 14388
etag: "e982a3a8a8c6baac9d1676ad93646d6c4cd9f58e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9798
Md5:    a41f9693b9247dcce6c2340bb5c02828
Sha1:   e982a3a8a8c6baac9d1676ad93646d6c4cd9f58e
Sha256: aa23cead1d44bf9db22654eb14113ef356d4ac972d301969c02803964418d556
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8089
x-amzn-requestid: f3c55266-9b03-4b7f-b076-fdf56704318e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyECioAMFzdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-3e10cef6117a10a4115cfce7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ngJvyUydpRDSiYy9kfeh8JmydmR_K8mjfZtGLgT0qeE2JaABbDMSaQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 21:36:28 GMT
age: 77486
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8089
Md5:    c8f6118fc03f31862ff68fef8a2b9a7f
Sha1:   318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
Sha256: cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
                                        
                                            GET /sl/common/css/style.css?1668971273 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 20 Nov 2022 19:07:53 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 21 Nov 2022 19:07:53 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZygFY8BnNQTX9beaNPPN623IDAthLwNZ8IpsPxqcaZEm576Q%2BKyewsVVUIK5FLd5ekZQloK7Dw%2F3FzwBGrXMilXN%2BFMbGqU4KcO3C%2F3cMZwa%2Fqg7GCAe%2BfjcSIlwPA%2BjvKrnEpg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d3789b0e7bb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   12408
Md5:    431a02b67500913953978064e2000c6f
Sha1:   ba44ab627b7c3d42ac8cbc80c1f2213e607ffd7e
Sha256: 3c32aec2c9fb5e06a16fc15bd3c43502ce6dcfb8cf9d0830c84bb4d103b085a7
                                        
                                            GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 20 Nov 2022 19:07:53 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 21 Nov 2022 16:06:18 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 10895
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H1zKL8Gbkij6RVg8%2F7%2BtQVuik1YRubEgamk7L%2FX2Vy967wvFv6fkPK0SgwuKhpwGaXKu3RmTTq628pWOVnYQLwZ5mSzs7idRrVz8ZD0bOj4OuzSqHalMTCWAorUSxwBjXjKNFrw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d3789b0e7fb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (23122)
Size:   19731
Md5:    83cd52afc7d67feadd093801554ee506
Sha1:   0b5824ea0d527ccfbab1a67582c81e4f7c6a7dc6
Sha256: da1201a9fe6d63959e42e41017994020db4d76a554139cd30efe2fe437a45b48

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/092009/js/langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 20 Nov 2022 19:07:53 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=18597
expires: Sun, 20 Nov 2022 19:48:53 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 83940
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t%2Bq%2Bib5oFK7qph8v8wNiHgKvmZSkpvmT6FhXthEJZP4HlEnSgVJKzASTK17qW%2FvbKmaSK7mQjVRryNqGipIO3V5iQLx7Fv7WRFq%2Fk2jQrlrHJWxfpSWx%2BMdaQWW2Gyag%2Fs0%2BpaY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d3789b0e8bb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/favicon.ico HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Sun, 20 Nov 2022 19:07:54 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 4616752
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K8673c9IT%2BXEsWekzR9sJ4ME4AXd10p5unxyyHRGIdUIegFY%2FfWjP%2F6Lxrhvd3FAo%2BdedzjFO288NzBYvWpi7tBZ1rHojMlyuymncaefcojZDwhGYx24QOCaoS7tf2C97cVXatQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d3789f1d66b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/js/main.js?1668971273 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 20 Nov 2022 19:07:53 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 21 Nov 2022 19:07:53 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fwoOsOFSGxe%2FmZAAprgnL2XMSI3cVKQ66YMpo83gsJGlSakyVmc0m7MsLdVcgmR1eRMTx29yQ5y7rR5hmEzmlmKtBu%2BRuKoqRhbRVEgcaCkPxaAfKFlCaVo6EFGw1RXhvDDYEMI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d3789b0e95b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/html/092009/js/config.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 20 Nov 2022 19:07:53 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=701
expires: Sun, 20 Nov 2022 19:48:53 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:24:17 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 83940
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OJj1X%2FeFu0pqf55kDBE53vZINCv9gUrZazKoHBgb7Rxw40ZJkZFs6oo8YZDiPEAeRpSzJLqckwL7ziezcTEf9yF2uczBuFsBfI1KJwM3Cf9TkFffWuC8Ewx7qVHLgQrpk4e8duw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d3789b0e92b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/js/common-langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 20 Nov 2022 19:07:53 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Mon, 21 Nov 2022 16:06:19 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 10894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rTtMvrUQ47WC1gWwBjVbHrYrEDE8EPv%2BYe0CZVZ9zgkTcDBoQrwFw14bsD2otwzyVd4wDEAiu%2BdGJQWMp98KieLHXjEJZ1GNwFz7gOHqrDZLEOc5XnPIhWbuxOz4tGYZ%2BivanzE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d3789b0e93b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Lato:700,900 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 20 Nov 2022 19:07:53 GMT
date: Sun, 20 Nov 2022 19:07:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/html/092009/n.php?cep=NLup9Afpy5lrMiuk4XgSI818vD6r8PCDC7fL3-k650ZwH_Z7Z0ROt1htjjhvaYWEszzaDf-opL_DWV87Mb-gv1-uNSE7BN9atj732J3mTclmYOKHNarQWbujdclrdbbONCmIUwbjf8tByfRRcsmDOTo_altdSP5AII_2-1e3LznhuMFfXWirhfC9hHQAsRcdGr3yLr4ARUlK2PQu1TqTXHi_NOSYNM9mK_uxhxBDi7KLQG8cTHPFOncebWzeeH3tQcbeZ-MPV2Q8OBLQMOq7DUnS4Vf3oBypUyx1m1Ho_hkC4_hxWHT9SRsHhEOQTNOu5ZipEW2O5aSyo2X-nmHBgSftV-cj1bQvp6QFttYcxmU372GBj7sFJW66e5PntlFLiGpRYeGOsgGlYTznp9lYHRnyM2ZTfuQpqKf3pWdqsRc&lptoken=162968bf97e3300d5282&external_id={external_id}&source=pragdalive3 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sun, 20 Nov 2022 19:07:53 GMT
cache-control: max-age=300
expires: Sun, 20 Nov 2022 19:12:53 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FfFnxvIxrDt9qcxmG8CSqtmDh3B8ydN%2FsEgiJz9M%2BmGGuOIRlXRq%2B62vi3D540L5VGQX6ofYONNGubUaMieH3H5fF5Eox8nWX4v1AZJGIRzXXUQXHS3edmQm1UXoWMvAKurjENg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d378972825b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/html/092009/css/style.css HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 20 Nov 2022 19:07:53 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=5973
expires: Sun, 20 Nov 2022 19:48:53 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 83940
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t7YF5CJBMV6jfnx6pGkOKGOOfsHcE05jwXZE3IvtiqUJclutuiik0S2yOdlMp0rCaXEopUiiE6R%2B1JL03TU7EDR3xd3%2F5L5jkk6ZcY2GaIf3Bi2EzrJTL%2BCN2nLIPFAnN2QB8uI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d3789afe76b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---