Overview

URLfordats.com/?a=16295&c=43694&p=r&s1=&s2=a_638289e0d4d99500017fb952&s4=31423&ckmguid=2330093b-2af5-4b4d-bfc2-a82473879022
IP 54.154.42.150 (Ireland)
ASN#16509 AMAZON-02
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-26 21:49:57 UTC
StatusLoading report..
IDS alerts0
Blocklist alert15
urlquery alerts No alerts detected
Tags None

Domain Summary (17)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
firefox.settings.services.mozilla.com (1) 867 2020-06-04 20:08:41 UTC 2022-11-26 05:33:20 UTC 34.102.187.140
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-26 10:10:14 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
fordats.com (1) 0 2020-01-16 16:22:18 UTC 2022-11-26 16:26:30 UTC 34.242.160.154 Unknown ranking
r3.o.lencr.org (5) 344 No data No data 23.36.76.226
subscribe.api-push.com (2) 0 2022-06-02 01:41:52 UTC 2022-11-25 18:02:24 UTC 172.64.138.29 Domain (api-push.com) ranked at: 61402
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
ocsp.pki.goog (6) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
cdn-dt.fcdn.info (1) 230544 2019-03-21 02:06:06 UTC 2022-11-25 18:02:23 UTC 104.21.234.86
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.208.31.97
img-getpocket.cdn.mozilla.net (4) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
cdnjam.com (1) 204001 2021-02-18 07:53:51 UTC 2022-11-26 07:22:02 UTC 104.21.58.242
bl.trackham.com (1) 0 No data No data 18.193.146.82 Unknown ranking
ajax.googleapis.com (1) 12905 2013-08-16 09:51:31 UTC 2022-11-26 11:14:44 UTC 142.250.74.170
mycasualhookups.com (20) 0 2016-03-19 22:05:44 UTC 2022-11-26 07:37:16 UTC 104.26.12.87 Unknown ranking
app.api-push.com (2) 307671 2021-12-06 12:20:56 UTC 2022-11-26 07:22:03 UTC 172.64.138.29
ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-26 05:33:16 UTC 34.117.237.239

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-26 2 mycasualhookups.com/sl/common/js/lib/additional-methods.min.js Phishing
2022-11-26 2 mycasualhookups.com/sl/html/032107/js/langs.js Phishing
2022-11-26 2 mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js Phishing
2022-11-26 2 mycasualhookups.com/sl/html/032107/img/bg.jpeg Phishing
2022-11-26 2 mycasualhookups.com/sl/common/js/main.js?1669499386 Phishing
2022-11-26 2 mycasualhookups.com/sl/html/032107/videos/video1.webm Phishing
2022-11-26 2 mycasualhookups.com/sl/common/css/style.css?1669499386 Phishing
2022-11-26 2 mycasualhookups.com/sl/html/032107/js/main.js Phishing
2022-11-26 2 mycasualhookups.com/sl/html/032107/js/jquery.min.js Phishing
2022-11-26 2 mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js Phishing
2022-11-26 2 mycasualhookups.com/sl/common/js/common-langs.js Phishing
2022-11-26 2 mycasualhookups.com/sl/html/032107/js/config.js Phishing
2022-11-26 2 mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode (...) Phishing
2022-11-26 2 mycasualhookups.com/sl/html/032107/js/main.js Phishing
2022-11-26 2 mycasualhookups.com/sl/common/privacy-policy.html Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.154.42.150
Date UQ / IDS / BL URL IP
2022-12-25 15:36:04 +0000 0 - 0 - 12 fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63a (...) 54.154.42.150
2022-12-19 08:29:01 +0000 0 - 0 - 11 fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63a (...) 54.154.42.150
2022-12-17 01:47:04 +0000 0 - 0 - 11 fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_639 (...) 54.154.42.150
2022-12-12 14:28:28 +0000 0 - 0 - 15 meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_6397 (...) 54.154.42.150
2022-12-10 04:38:18 +0000 0 - 0 - 10 fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_639 (...) 54.154.42.150


Last 5 reports on ASN: AMAZON-02
Date UQ / IDS / BL URL IP
2023-02-06 06:37:55 +0000 0 - 0 - 2 api4.check-data.xyz/api/get_update_options/C9 (...) 52.37.216.28
2023-02-06 06:37:50 +0000 0 - 0 - 3 api5.check-data.xyz/api/get_update_options/2C (...) 52.37.216.28
2023-02-06 06:37:34 +0000 0 - 0 - 3 api.check-data.xyz/api/get_update_options/2C6 (...) 52.37.216.28
2023-02-06 06:33:18 +0000 0 - 0 - 2 secure05b-alerts.com/0a0db5880/login.php 15.197.130.221
2023-02-06 06:27:37 +0000 0 - 7 - 0 covidtravel.clinicallabs.com.au/request-form/new 3.24.79.27


Last 5 reports on domain: fordats.com
Date UQ / IDS / BL URL IP
2023-02-05 21:04:45 +0000 0 - 0 - 11 fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63e (...) 52.51.210.211
2023-02-05 21:04:39 +0000 0 - 0 - 13 fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63e (...) 34.242.116.152
2023-01-20 08:36:05 +0000 0 - 0 - 15 fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63c (...) 52.51.210.211
2023-01-19 03:31:06 +0000 0 - 0 - 11 fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63c (...) 52.51.210.211
2023-01-19 01:43:15 +0000 0 - 0 - 10 fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63c (...) 52.19.202.187


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-02-05 21:04:39 +0000 0 - 0 - 13 fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63e (...) 34.242.116.152
2023-02-03 20:31:25 +0000 0 - 0 - 14 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2023-02-02 05:56:43 +0000 0 - 0 - 15 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2023-01-30 12:57:13 +0000 0 - 0 - 14 toomoffr.com/?a=16295&c=43694&p=r&s1=&s2=a_63 (...) 34.242.116.152
2023-01-15 00:12:47 +0000 0 - 0 - 10 fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_63c (...) 52.51.210.211

JavaScript

Executed Scripts (14)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (53)


Request Response
                                        
                                            GET /?a=16295&c=43694&p=r&s1=&s2=a_638289e0d4d99500017fb952&s4=31423&ckmguid=2330093b-2af5-4b4d-bfc2-a82473879022 HTTP/1.1 
Host: fordats.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         34.242.160.154
HTTP/1.1 302 Found
content-type: text/html; charset=utf-8
                                        
date: Sat, 26 Nov 2022 21:49:45 GMT
content-length: 234
cache-control: private
location: https://bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-738344084&source=16295&sum=#p#
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
set-cookie: sid=ch6NZJ/QA2w07nzv8jIJtZb4q8rhfnJtRUOiuuDTUoNnpUX8n18lww==; domain=.fordats.com; path=/; HttpOnly trk=O9GUUIkSgV181HSSxApswJb4q8rhfnJtRUOiuuDTUoNnpUX8n18lww==; domain=.fordats.com; expires=Tue, 26-Nov-2024 21:49:45 GMT; path=/; HttpOnly c36197=ch6NZJ/QA2y/kUDDlgImPewYTnFz3wNSbMeRvmGG5GteCUghiDE1Zg==; domain=.fordats.com; expires=Mon, 26-Dec-2022 21:49:45 GMT; path=/; HttpOnly


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   234
Md5:    cacc169310b1016965a500452c378dc5
Sha1:   96567afac733bde5f6a11177ae3cc007000d98aa
Sha256: f94c945d2fd1b0e769f2827c8f0e0f758b8ed98c057ae3881f540e4294816e0b
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8531
Expires: Sun, 27 Nov 2022 00:11:57 GMT
Date: Sat, 26 Nov 2022 21:49:46 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2628
Cache-Control: max-age=134710
Date: Sat, 26 Nov 2022 21:49:46 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 11:14:56 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 21:19:16 GMT
cache-control: public,max-age=3600
age: 1830
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9452
Expires: Sun, 27 Nov 2022 00:27:18 GMT
Date: Sat, 26 Nov 2022 21:49:46 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: +pjkQCuK+5scuQEk/+TzN35RJ6icKNbu7Sa0BR/55GoT2jyy8V0QZBwqcTMwXfyxbdtmw508Ng4=
x-amz-request-id: 7NXRCXR18XNSNEDT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 21:44:23 GMT
age: 323
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-738344084&source=16295&sum= HTTP/1.1 
Host: bl.trackham.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         18.193.146.82
HTTP/2 302 Found
                                        
server: nginx
date: Sat, 26 Nov 2022 21:49:46 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/032107/n.php?cep=Ya9ZC0I2L3Nc361zbeQbZx98qgQlhu-A_Cb4GPyKNzzX2TsExW9xmlttR3lrZCWpwyoI8W6N38z82y1oQr-bzFg85N5a71Z2dLP20IfFl_Gx81VMbglF-lbs0GjOjM2sARZGL_O_8g2GiVXqQLk-7_TC3LwGkUm8G1te1mf6vr3_BELNvWiKKSiAuxTBlM8PiozVvkLUJspVne60OzF8Vd2fPQj6ipfBYb-nkfwbu8nHT6QHr0nttvJLicK3nRsR2qnS84lY2C6XTJHIPm-4t30ICGatPbaNshAzYlZiuibP4YFo7GTkDUx47IWgL50kFnYMwjxq7cIyn9VVDig9-F63qk_38YqQuBWePUtryNA7YbcbwnlxYR4TkiyyFJhAXNaY_1vECRUz_vC6xTLLlw&lptoken=1670697250b4113786f1&external_id=36197-738344084&source=16295&sum=
pragma: no-cache
set-cookie: f9908105-7257-45be-97c0-9990466cb2a4-v4=lczJPoF0ZcrUFwZ3ut63fgWRKz-KSdlpsol4nwPM8Tk; Max-Age=86400; Expires=Sun, 27-Nov-2022 21:49:46 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None cep-v4=MvIiYhcNrdkHGOUu3pBZ-7Ic2G7-FiR79BAMcdgHS3TH9Z0pd7uS7rA0A_5_G-BtsTKSwl5zwQbib7i-StKcdMRz48B4oo_0Gr8e3UfqUhq-lCST4ftciDSPlQCa_WdHj553jBLaxRQETqmH_Cfy5wx0r98_Q1qhAL30zX0scPgVrkcmEvnLqPLCdxXorWhQS9pBpZjhUdW9m7N6MXFcky3oMIzLjYRorKCYUPXbOAXfca-PPR1UzcGdgE-h-xWDvyh5Wjnj5rk4HrRLqcT4aqS0xQcPOkFK4fIpzMiNwJEUKYsA5pBJx5YJMklCFngK8hja18HTOY7O02pPeSbTKtEsEehHwQ814YfD7VFT-4c-Th8uGkt-5ShRuBdaULHoQoSB8h4qQkAG209_JX-vQw; Max-Age=86400; Expires=Sun, 27-Nov-2022 21:49:46 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2

                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 26 Nov 2022 21:49:46 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST /s/gts1p5/Dt6OUty8wSY HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 21:49:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 27 Nov 2022 16:39:41 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18605
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FEQr2MPDKEQDzhhG52gT6qp1ZbTMjizEII56LC3Ufp%2BlcKAsVAoCNmaadRoFv1yDhDOPkWwZEazaS5yRVQbak6YFDxIyhvjUk06eQh2pSgOs9NohQphXXQzDYPdjsHcUjKHz%2Bsg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5feb993b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (17654)
Size:   5981
Md5:    ff9d4bbdedd0234636c376553e2ab41d
Sha1:   4fafac65adfe585d4ffd5f3453686b22c4f2cc44
Sha256: 4453a6077d5fb768219c01e1cef5c09015db05db478bbc672b8613a0419863c5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /ajax/libs/jquery/1.12.4/jquery.min.js?1508931949 HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.170
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 20:15:47 GMT
expires: Thu, 23 Nov 2023 20:15:47 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 264839
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32077)
Size:   33951
Md5:    fd2b58574f9637ba7ef639267349d848
Sha1:   6eda5ea93f549ceb5693f6f1c038893fa56a510d
Sha256: 75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec
                                        
                                            GET /sl/html/032107/js/langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=7419
expires: Sat, 26 Nov 2022 22:41:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 83278
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UefUO2IJw3f6FiN8L7pk%2BOGTH%2FVyrOl%2BgWHCeg6YKKK5rEsbuWxCHxMkeXMuIGL%2BTlPkK2S%2BDLLMJZvieYdJ5UI%2BJJO9gmNUDmE%2FAUL%2F89XB4vqAKgpg19mu5nI2dTmkLT1h3F4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5fec999b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5153), with no line terminators
Size:   3432
Md5:    981a22ee27be594544704a3f38cf9a9f
Sha1:   0a55cb4ac8148823249f18bf27042a56cd752ad5
Sha256: 5c4a462e1a5eccec84777232bd5926c6bc84dfd2cd9b0a8bc1ae865d78ca200b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 27 Nov 2022 16:39:41 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18605
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8ew5w%2FCnbxbRVEhG%2FJwIGvOb%2FlAUjoSOX6G0eS4nfAzHQLzfxN9vjKwUOfRNkaZkcU3HhFZV4uIi9%2BNCMXYTVDezNPPzvyPeLGLb509OIIsGThdMS8LHzRUOnc3pt5Vsj35ng8U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5feb991b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   31609
Md5:    b70f423bb3598d71ea808e91b166e15b
Sha1:   3b7ca97a56b79e1358e3f4a18633b7fcd8f7b18d
Sha256: c64865252a641056a29fce5aa0eaf6da1e4a5884d1715ad7e4c0beca031f038b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/032107/css/style.css HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=4300
expires: Sat, 26 Nov 2022 22:41:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 83278
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dmFZQqTolHzr2m1uta2Gh%2Be4lnHI2aR9jyXYidGSkigm4Ttqhd6lNcjRB6mBRF4LiXohK3PpzsFDAJP60yTnhFYCXffan%2BWr4umDtLorCMTg4jLheR0xCNEjQkSKMqS9Zz5zijQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5feb97fb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2785), with no line terminators
Size:   2049
Md5:    e6358269c5fb22ec46cfbc4940c0dc6c
Sha1:   b50d614aa2475c104df25f3ca1920ced24e6975a
Sha256: de56693799faf108995220706e3aa2c266ceaee0e1178f55437910f3df656c1c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 21:49:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5654
Cache-Control: 'max-age=158059'
Date: Sat, 26 Nov 2022 21:49:46 GMT
Last-Modified: Sat, 26 Nov 2022 20:15:32 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /swpush.min.js HTTP/1.1 
Host: cdn-dt.fcdn.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.234.86
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 298405
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ig7sv4snw9zsa9T3BwqpFQaI%2FyiVPGb%2F9umcV8IVBagoInjX4gNEOnHNIA2XHLpH4cdgTJG9LFu8Cyxyp8VXH33JzRSy2fkNtM63hyTjP0k%2BsZACkj7DjJapqLvw63Q3o0Fg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7705d5ffaa70732c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (34449)
Size:   11534
Md5:    78e9a0d2a99be9127b476e0751964016
Sha1:   77c4d405516797eddb4b3eeaa380c0cd873e2382
Sha256: a2e6c9d0a1437bd3337a593c4a7d739b2a14dbdd2887d9bd5a424df2d6c85123
                                        
                                            OPTIONS /get-keys HTTP/1.1 
Host: app.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-referer
Referer: https://mycasualhookups.com/
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         172.64.138.29
HTTP/2 204 No Content
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: content-type,x-referer
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1BJGAFLJj08YnYjsIGdVf9muesLSzeLtSnhSnAVIJjt4UVdBmIKR%2FOHuF5caNpwZmiIS8arsHPJfWO%2B7nhZ1vlTwOXazVvKVSaNFmaPiYFMBQ3PhtlcsMjseg6A0pMVzj%2FMv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d6007f2675cb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yCEMH6nDhkwPXsphsjYlOA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.208.31.97
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: r92m5QI294zZEFIkwU6L4/hqyT4=

                                        
                                            GET /sl/html/032107/img/bg.jpeg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/032107/css/css.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
content-length: 49908
cache-control: max-age=86400
cf-bgj: h2pri
expires: Sat, 26 Nov 2022 22:41:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 83278
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y3xuYlXKwGoHXuYf%2BEyHLHZha2vS210f3zqAMVaN0peUX%2Fi3Lo4KFzkoMlVYHU7ZiqeZZhY9l%2Fp4d6jAm6GjvDC1HKFvAm4gTD9aBrjUYVU%2F3JAsumQFri0bYZiEg9HzC2HeKqM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7705d6024e90b4ed-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1066x1080, components 3\012- data
Size:   49908
Md5:    40d21304d5b6b9e08b272a483ff1301d
Sha1:   0fe16051242a800d20ae66cf64f8dab33536bd52
Sha256: 0b6fe93e270346ac9dd2dbc2f0a83dfdb4a7123296e9159f0367fceade25736e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/main.js?1669499386 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 27 Nov 2022 21:49:47 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FWPs9qDAtowh6wklvwhElxdU%2FMRd301e6SaCVhbjNN1oQWQDbY2%2BRKFDaW%2FEzHyFmFkAnpOpvyiq3ZK3F3oDP1Nld9eU3YDyMvtY%2FmKGYrVCo0hCvf%2B6lTkLPITnUsvI3ncKUC4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5fec9a3b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3049
Md5:    13208980b0a62079fa2a8dbe7de7e721
Sha1:   fa74ae8e1ebd600b2cbf5b8838455bd494e9ee93
Sha256: b8b1269b259f7ddaf012d421f87c29ab62e040bf790dfb9036c3565e0f054606

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/032107/img/bottom_panel.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/032107/css/css.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
content-length: 3038
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Sat, 26 Nov 2022 22:41:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 83278
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B3KgSWEn8ihnWJwGUiGIlRCQqx38wiwkLe04250151lWpMGSuQlFcJ%2BiMxj2BM9k8qUJ34kElQ9P351lCIgWmrq9PtfzyfEMXUc%2FORAO0mgbX6neboACatGRg4FnP%2BdlyQq%2BJxs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7705d6025e98b4ed-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 197, 8-bit colormap, non-interlaced\012- data
Size:   3038
Md5:    81fd9a7bbf0b0e6ceb8b37ffd94edba9
Sha1:   a70108af9045b574f7f63d7e16583bd58e661a7c
Sha256: 94e35e0a134a85e3d948d9fcb9c0812633b2108aa0b95f4988c46bdf5e487ec1
                                        
                                            GET /sl/html/032107/videos/video1.webm HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://mycasualhookups.com/
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 206 Partial Content
content-type: video/webm
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
content-length: 1787154
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Sun, 27 Nov 2022 16:44:08 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18339
content-range: bytes 0-1787153/1787154
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lE6tg8B6TprCaGMelxMOzXwM%2BBxeJDfB4GoqK%2FPhWySCo6HrIMHCn7H49fBNU2B%2FA4kW466GYGCh1bkA%2BM3ZWiC3Tvzz3kWO4ccpUbNCyWNx28RFsM8FDFtdhsfL8RiNW4HpD7M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d6028ee6b4ed-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  WebM\012- EBML file, creator webmB\20\012- data
Size:   1787154
Md5:    275783ec04582836653aefff2ea6644c
Sha1:   c33c6cc9494ea3789cdfc22b925916164aee4253
Sha256: cd69ec1ee91bec9876983cd47b3381838aaee8be56ef467400d55bf1f5f758fd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            OPTIONS /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1 
Host: subscribe.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,x-referer
Referer: https://mycasualhookups.com/
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.138.29
HTTP/2 204 No Content
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: content-type,x-referer
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MKqeu6OFdbYPEH6AElc1%2Fc1ioiSd8ISO6a%2FEGPgA8FJ%2F7P3qzLAEQ87xlpo0cKNcm8PeUaqBJU6X6iFI029WwuYiBv3lTFUkzVo7suv4wTlAYTGnTYCUH%2F69h0ym7RQIUZz1QxUNzaIr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d601c8cc75cb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 21:49:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 21:49:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 21:49:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 230816
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 21:49:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1 
Host: subscribe.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/032107/n.php?cep=Ya9ZC0I2L3Nc361zbeQbZx98qgQlhu-A_Cb4GPyKNzzX2TsExW9xmlttR3lrZCWpwyoI8W6N38z82y1oQr-bzFg85N5a71Z2dLP20IfFl_Gx81VMbglF-lbs0GjOjM2sARZGL_O_8g2GiVXqQLk-7_TC3LwGkUm8G1te1mf6vr3_BELNvWiKKSiAuxTBlM8PiozVvkLUJspVne60OzF8Vd2fPQj6ipfBYb-nkfwbu8nHT6QHr0nttvJLicK3nRsR2qnS84lY2C6XTJHIPm-4t30ICGatPbaNshAzYlZiuibP4YFo7GTkDUx47IWgL50kFnYMwjxq7cIyn9VVDig9-F63qk_38YqQuBWePUtryNA7YbcbwnlxYR4TkiyyFJhAXNaY_1vECRUz_vC6xTLLlw&lptoken=1670697250b4113786f1&external_id=36197-738344084&source=16295&sum=#p#
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.138.29
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
content-length: 5
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pjhQWYQx%2BSQ%2Bx9pwx14tLaL0OSlVDgjkmWYGK6Ncv4Z6zaf2farFlBwHGuhXdJM2tFw3vK5Rf%2BRfHv%2FxtOzPABKcwNK4IDWzkatLlmf2%2FTg4RySbcEMYb5ClrZuqIacFB9uEJYxkZFw0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d6037b4875cb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   5
Md5:    68934a3e9455fa72420237eb05902327
Sha1:   7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
Sha256: fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18046
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sat, 26 Nov 2022 21:49:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18046
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sat, 26 Nov 2022 21:49:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18046
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sat, 26 Nov 2022 21:49:48 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 60320
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:59:05 GMT
age: 85843
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9914
Md5:    3b1c6878914466cfece680fa7cb73502
Sha1:   47fac81a2dd809df5c42ca1362f71d553572d2b1
Sha256: 6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a
                                        
                                            GET /sl/common/favicon.ico HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 5144865
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=alDEXapn8NPChWOIdwNSNSyxJn%2BSnCHqWtyUuKBDbYV1dSAOUXhN%2FHNdY3WlzHEoCnlXmwrEGEjk5Ka4zv329vzh3w%2FHJkNO91r0LLnzoPJ3IZ6%2Bz5eRi1EziQeJ1ZP%2Be6w%2FFR0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7705d6044945b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Size:   9483
Md5:    240e9e4d25dffd2a133f34e4c7c80c6c
Sha1:   535d333397e64e8d18b8baf35809205693d316d6
Sha256: 2a71e598179287ccf9d2a04c99e0c4f91101b89b6fb3320e3b78deabc29b0294
                                        
                                            GET /sl/html/032107/css/css.css HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=9103
expires: Sat, 26 Nov 2022 22:41:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 83278
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wJ9QCz0cqjTpcg7%2Fbe6CM6vhSFVnhvk9eRXgB6nnxfr6wxyM9zDCvlUEma6wNCPqapoqNXuxYjoyUAFvckCCAEaPF3Pvme5l6%2FmQWHZJ0eZQi9Hnqj6qhDagv6A1M9SXuBJnnzs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5feb989b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6865), with no line terminators
Size:   11426
Md5:    e38fc15c5b8758fa0a289fe40df7256d
Sha1:   a1beaeac17c07ab5ab8d5533ccc7c379493c79cf
Sha256: 52c21d87e5ca7e08f5d8c8d8f5d0c2959a6152ed8215bde2e4fe92be8ee52a11
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 15818
x-amzn-requestid: a6570859-3b03-492e-9f84-e25b01223da2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLXrUF3bIAMF8CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381397b-379b1bcf2ac0715835e10e48;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:54:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HgiyaodE2vJx5JL8QfOiTersSAgAwq74gtsPkpHUhnQ3In2vZ-3rbQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:33:09 GMT
etag: "1ac7a410cd4f3709f476c776dd5646dd982dcfa8"
age: 83799
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   15818
Md5:    17ebe470d040a6ea8c57e9b9d4f4e828
Sha1:   1ac7a410cd4f3709f476c776dd5646dd982dcfa8
Sha256: d65114b68fcc12344c6df7bf294718b79822fa9782d3bd54ca044b66f82052b1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 52582
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3502
Md5:    a783df85f30f9c555f9df6b99f61744d
Sha1:   61f9bed607e81606be78285596acdc5e0e4f4994
Sha256: 19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Sat, 26 Nov 2022 21:49:48 GMT
Etag: "638217cf-116"
Server: ECS (amb/6BB7)
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Date: Sat, 26 Nov 2022 21:49:48 GMT
Etag: "638217cf-116"
Last-Modified: Sat, 26 Nov 2022 21:49:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /cdn/sdialog.min.css?_=4 HTTP/1.1 
Host: cdnjam.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.58.242
HTTP/2 200 OK
content-type: text/css
                                        
date: Sat, 26 Nov 2022 21:49:48 GMT
content-security-policy: block-all-mixed-content
etag: W/"1d16caacad4ad6c40a99319a5d183947"
last-modified: Mon, 22 Nov 2021 08:00:52 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 16F5E342988C7B8C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 1090
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p0YmbN6UNEjE0gNI8stXLIlC%2FrB2mWPQsVgkFwIadYDaM5T2b5heBCIenuFThyBZkynz5AvH%2FX6zxzAyXmRFl%2BWUxOMflGVNY5HYRYGNiGT5UFC1sZ7kQnuI5gSg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d60c9888b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6775)
Size:   10210
Md5:    e9c0c80463568bd122c82f0469cd1dea
Sha1:   43bfcf39235a566b7dfadae3b58b82c5ce983da2
Sha256: 3d62673386f7f4aeb88dc7212aa8c6fbdb16742d38b276f441e58feb7d850dca
                                        
                                            GET /sl/common/css/style.css?1669499386 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 27 Nov 2022 21:49:47 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z54FMdUYvLb7Kv3Lz0KjpfMAlznWif44AsrpIg1%2Fq3J5rcqJVhjMaHkOMnGryo0T9YEDwhNzPWXiYy6xtOnfUeIzlwNZsu%2Bde01PxmVR6NqJs8bbCleN5Hrs%2BWejf5WhMgmo1UI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5feb98eb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/032107/js/main.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
cache-control: max-age=7200
cf-cache-status: HIT
age: 11
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BAJA4CX%2FRrBvL%2FQgWd%2FG633WX4QMBd3qEAv9cULWuB3L%2BDZwSi3SyiQjxOM3sgjFgq5M%2BJGxFIo3qnhrncz15gAG8jMx%2FuwP7Ey1UGuE5O9CKt4lQkUxTxGz1MvW9%2BJA3PGG4Og%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7705d5feb98bb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/032107/js/jquery.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Sat, 26 Nov 2022 22:41:48 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 83278
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Roi4PWh6ZKb5MAIjcRlhMqYVbVKYd98WtF96aqC%2BP9dgP6hRsZJeFlf2ZIQgaKy2e6K9h94TTwSxALM6I2u1URvieXnfs0bWk11qj1qTgx4nQkEJH8UKKVsGJ%2BrhnjTSfuVxXWw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5feb98ab4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 27 Nov 2022 16:39:41 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18605
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mMI9S90iS55Hy0%2FUeUWDckTMD1krEGsG%2BfSBZQDk9OiSp%2BIZ9%2BQT1Mjn5bg%2B9Pzlg%2B9UGPN9z5An1u2ug0fT4hM2Y33RItp5X8HJ1QVXlu3JfKR1iymBgww%2BgaOvhrVGNUmXPEs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5feb992b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/common-langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Sun, 27 Nov 2022 16:39:41 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 18605
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eeF3MZj3zbQMmSCFyRDnmJO%2BTn4i1A5MUaFEnHTrBnMQ727NarHKn%2Fbtjfwd7pOCDFelHsb%2FAsfIrynGMLgg%2FxVkOs%2BUkB7wmc0jaNYz4o8xNmRArrFWHfwLrx0RB%2Fu4l9azGGQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5fec9a1b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/032107/js/config.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=701
expires: Sat, 26 Nov 2022 22:41:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:19:29 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 83278
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aY4pb2RiUGrtd2jv96VM%2Byrzan%2BuzivEt91RE6krFrNEh3ebx%2F75f8hEGtBc7TmNc9NMLFz7%2Ft7nZIwb6Mh294HxfTG9vIUkh0tUBPSRSEI5YEesl3ssrHcfyyahY6ZsHp3KMGo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5fec99fb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /get-keys HTTP/1.1 
Host: app.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/032107/n.php?cep=Ya9ZC0I2L3Nc361zbeQbZx98qgQlhu-A_Cb4GPyKNzzX2TsExW9xmlttR3lrZCWpwyoI8W6N38z82y1oQr-bzFg85N5a71Z2dLP20IfFl_Gx81VMbglF-lbs0GjOjM2sARZGL_O_8g2GiVXqQLk-7_TC3LwGkUm8G1te1mf6vr3_BELNvWiKKSiAuxTBlM8PiozVvkLUJspVne60OzF8Vd2fPQj6ipfBYb-nkfwbu8nHT6QHr0nttvJLicK3nRsR2qnS84lY2C6XTJHIPm-4t30ICGatPbaNshAzYlZiuibP4YFo7GTkDUx47IWgL50kFnYMwjxq7cIyn9VVDig9-F63qk_38YqQuBWePUtryNA7YbcbwnlxYR4TkiyyFJhAXNaY_1vECRUz_vC6xTLLlw&lptoken=1670697250b4113786f1&external_id=36197-738344084&source=16295&sum=#p#
Content-Length: 89
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.138.29
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EFK9mVQQg6KCkWKYzor474DUKtF3ewUs2NHXlD7hQxI5QKGI3pxKfBc8P277UBeZR2L3zUR3BhK5MRHdL4V04GrDNg3PYYWrftHn8ph7wgWE3QevVPa1wqGg8RgHHBgvlzdt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d600efd675cb-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/common/privacy-policy.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
last-modified: Tue, 22 Nov 2022 13:35:09 GMT
etag: W/"637cd00d-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WfeprK%2FlIEogJa%2Fqv2SVKOiAzuq7O6efP%2FLlajif4EfIhc%2BpkJ3dy7CmR3zqPLvTRxJmgIaFVWRJgnIz%2FgXA975DOps1jgsAlQmZrVlMWHxgJrPxfirUAQmlCpmbJfIvHbiqp6M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7705d603886cb4ed-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 28 Nov 2022 21:49:47 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/032107/n.php?cep=Ya9ZC0I2L3Nc361zbeQbZx98qgQlhu-A_Cb4GPyKNzzX2TsExW9xmlttR3lrZCWpwyoI8W6N38z82y1oQr-bzFg85N5a71Z2dLP20IfFl_Gx81VMbglF-lbs0GjOjM2sARZGL_O_8g2GiVXqQLk-7_TC3LwGkUm8G1te1mf6vr3_BELNvWiKKSiAuxTBlM8PiozVvkLUJspVne60OzF8Vd2fPQj6ipfBYb-nkfwbu8nHT6QHr0nttvJLicK3nRsR2qnS84lY2C6XTJHIPm-4t30ICGatPbaNshAzYlZiuibP4YFo7GTkDUx47IWgL50kFnYMwjxq7cIyn9VVDig9-F63qk_38YqQuBWePUtryNA7YbcbwnlxYR4TkiyyFJhAXNaY_1vECRUz_vC6xTLLlw&lptoken=1670697250b4113786f1&external_id=36197-738344084&source=16295&sum= HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
cache-control: max-age=300
expires: Sat, 26 Nov 2022 21:54:46 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jgYj2FsKpTdswquZKc4HkfQNZfvTzEANxN4uLRKrP3Sir6cFYV9bM6QgURklhcgOwo29YVZ23EymjX3zF%2FXx3snu2L7NIhraSo2dyV%2BbeQ5DVfnLDj%2BQunmKolJ4TitMTSSJmBI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d5fceeb4b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/html/032107/js/main.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
                                        
date: Sat, 26 Nov 2022 21:49:46 GMT
cache-control: max-age=7200
cf-cache-status: HIT
age: 11
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lAcx0DIfHBHBbAF8YwCeu5nnDYgBuRichbGmcMRajCTglF1MMa%2Bt7%2Bk9qq9OkrdXI%2BnUCGTRsKUQ5TVZsRd6KEFhSYVfTvo07mhf6K2ejaZCTZ930ZIlwHx82IUr2VVx19swad4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7705d6001b6db4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/privacy-policy.html HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: text/html
                                        
date: Sat, 26 Nov 2022 21:49:47 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Sat, 26 Nov 2022 21:54:47 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HDMwoZMgQdOzYJf5LV92B%2Fi4drveHR3F1HIzsarXbjuHKIY5dRwCAqAYaeyl8J0ZulxSKevAEDncZjdJNlawoJeNEUwvwM6d%2FLBQZQN%2F7%2Bt9QXEcgE0Xv3bRt7NhKjVBhRvYDVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7705d6024e88b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing