Overview

URLmeshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63700abc48e70a0001ef3293&s4=28575&ckmguid=8e97a72b-eae6-466b-b863-84a06c41b3a4
IP 52.215.199.159 (Ireland)
ASN#16509 AMAZON-02
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-12 21:06:40 UTC
StatusLoading report..
IDS alerts0
Blocklist alert10
urlquery alerts No alerts detected
Tags None

Domain Summary (16)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
meshho.com (1) 0 2022-02-03 20:33:01 UTC 2022-11-12 13:39:31 UTC 52.18.157.191 Unknown ranking
r3.o.lencr.org (6) 344 No data No data 23.36.76.226
img-getpocket.cdn.mozilla.net (7) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
ocsp.pki.goog (4) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.35
cdn-dt.fcdn.info (1) 230544 2019-03-21 02:06:06 UTC 2022-11-12 09:30:28 UTC 104.21.234.86
cdnjam.com (1) 204001 2021-02-18 07:53:51 UTC 2022-11-12 17:30:06 UTC 104.21.58.242
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
mycasualhookups.com (17) 0 2016-03-19 22:05:44 UTC 2022-11-12 17:33:05 UTC 104.26.13.87 Unknown ranking
app.api-push.com (1) 307671 2021-12-06 12:20:56 UTC 2022-11-12 17:29:53 UTC 172.64.138.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-12 05:57:21 UTC 34.117.237.239
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-12 17:26:15 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-12 06:07:04 UTC 34.102.187.140
bl.trackham.com (1) 0 No data No data 18.193.146.82 Unknown ranking
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.217.237.91
subscribe.api-push.com (1) 0 2022-06-02 01:41:52 UTC 2022-11-12 09:30:29 UTC 172.64.138.29 Domain (api-push.com) ranked at: 61402

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-12 2 mycasualhookups.com/sl/common/js/common-langs.js Phishing
2022-11-12 2 mycasualhookups.com/sl/common/js/lib/additional-methods.min.js Phishing
2022-11-12 2 mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js Phishing
2022-11-12 2 mycasualhookups.com/sl/html/DE10/js/config.js Phishing
2022-11-12 2 mycasualhookups.com/sl/common/css/style.css?1668287190 Phishing
2022-11-12 2 mycasualhookups.com/sl/common/js/main.js?1668287190 Phishing
2022-11-12 2 mycasualhookups.com/sl/html/DE10/js/custom.js Phishing
2022-11-12 2 mycasualhookups.com/sl/html/DE10/js/langs.js Phishing
2022-11-12 2 mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode (...) Phishing
2022-11-12 2 mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 2 reports on IP: 52.215.199.159
Date UQ / IDS / BL URL IP
2022-11-12 21:06:40 +0000 0 - 0 - 10 meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_6370 (...) 52.215.199.159
2022-11-12 05:09:23 +0000 0 - 0 - 12 woulda1.com/?a=16295&c=43694&p=r&s1=&s2=a_636 (...) 52.215.199.159


Last 5 reports on ASN: AMAZON-02
Date UQ / IDS / BL URL IP
2023-02-07 20:42:45 +0000 0 - 2 - 0 download.findmysoft.com/2011/12/14/File-Struc (...) 54.230.245.87
2023-02-07 20:38:45 +0000 0 - 2 - 0 download.findmysoft.com/2018/02/12/du-meter_7 (...) 54.230.245.87
2023-02-07 20:38:16 +0000 0 - 2 - 0 download.findmysoft.com/2012/03/01/Infinite-P (...) 54.230.245.17
2023-02-07 20:35:44 +0000 0 - 2 - 0 download.findmysoft.com/2012/09/14/LetEncrypt (...) 13.32.118.169
2023-02-07 20:34:58 +0000 0 - 2 - 0 download.findmysoft.com/2012/09/14/RoboMatic- (...) 54.230.245.189


Last 5 reports on domain: meshho.com
Date UQ / IDS / BL URL IP
2023-02-05 21:04:19 +0000 0 - 0 - 14 meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63e0 (...) 34.242.116.152
2023-02-01 09:59:27 +0000 0 - 0 - 11 meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63da (...) 52.19.202.187
2023-01-31 00:17:00 +0000 0 - 0 - 13 meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63d8 (...) 52.19.202.187
2023-01-23 06:27:15 +0000 0 - 0 - 10 meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63ce (...) 52.19.202.187
2023-01-21 23:48:51 +0000 0 - 0 - 12 meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63cc (...) 34.242.160.154


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-02-02 05:56:37 +0000 0 - 0 - 14 toomoffr.com/?a=16295&c=43694&p=r&s1=&s2=a_63 (...) 52.51.210.211
2023-01-25 06:02:09 +0000 0 - 0 - 11 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2023-01-24 22:18:38 +0000 0 - 0 - 12 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2023-01-23 06:27:15 +0000 0 - 0 - 10 meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63ce (...) 52.19.202.187
2023-01-22 09:43:43 +0000 0 - 0 - 13 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82

JavaScript

Executed Scripts (13)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (50)


Request Response
                                        
                                            GET /?a=16295&c=43694&p=r&s1=&s2=a_63700abc48e70a0001ef3293&s4=28575&ckmguid=8e97a72b-eae6-466b-b863-84a06c41b3a4 HTTP/1.1 
Host: meshho.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         52.18.157.191
HTTP/1.1 302 Found
content-type: text/html; charset=utf-8
                                        
date: Sat, 12 Nov 2022 21:06:29 GMT
content-length: 234
cache-control: private
location: https://bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-736735370&source=16295&sum=#p#
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
set-cookie: sid=YSih3eKs5+4ovSGPLBEUPRBMiY1vXuLVIAgm/ZxWp4J496P9Wqsd2w==; domain=.meshho.com; path=/; HttpOnly trk=fr6aO6FmBdRlQf0lAaaYSBBMiY1vXuLVIAgm/ZxWp4J496P9Wqsd2w==; domain=.meshho.com; expires=Tue, 12-Nov-2024 21:06:29 GMT; path=/; HttpOnly c36197=YSih3eKs5+5pJrz1a+OQewVALi334rI7v7W+UrvsVeJeCUghiDE1Zg==; domain=.meshho.com; expires=Mon, 12-Dec-2022 21:06:29 GMT; path=/; HttpOnly


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   234
Md5:    b401b580d7dbbaab50a43b4d7016a839
Sha1:   3d3c5e92f9ffd5160e087f713e49825c0842f619
Sha256: a0783248bb6058ec4adaf7847596c73eea60cb763403aa24ea8ab428910edb9e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17540
Expires: Sun, 13 Nov 2022 01:58:49 GMT
Date: Sat, 12 Nov 2022 21:06:29 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5152
Cache-Control: max-age=139838
Date: Sat, 12 Nov 2022 21:06:29 GMT
Etag: "636f75f3-1d7"
Expires: Mon, 14 Nov 2022 11:57:07 GMT
Last-Modified: Sat, 12 Nov 2022 10:31:15 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "00E3B967C579B0CCF709B78D497A43D95646B16EB50925FEF1E2694C58F290B2"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4689
Expires: Sat, 12 Nov 2022 22:24:38 GMT
Date: Sat, 12 Nov 2022 21:06:29 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 12 Nov 2022 20:44:03 GMT
cache-control: public,max-age=3600
age: 1346
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: r24U3FzUqNGyGDMuPWn0IrKWg51lA9p/IWf/r4SxUbaBVOS8toOLktrKYn0nw2pSHzkqX2bUokXlIJo/hiEpnA==
x-amz-request-id: 31PECRQGAEFKG9E2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 12 Nov 2022 20:13:07 GMT
age: 3202
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-736735370&source=16295&sum= HTTP/1.1 
Host: bl.trackham.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         18.193.146.82
HTTP/2 302 Found
                                        
server: nginx
date: Sat, 12 Nov 2022 21:06:29 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/DE10/n.php?cep=b0-khA6UuanRTkGfw-lY-2c64DKy6G_N319xn4VzF91i7PQ21wuq0QItXk705p-4qGo3_j3TDHVDuPxtqYfseQJ_kFIGw-ghEOtlryhOt0isF3wSuCZ35T-XrSVS1rGpwIHk0YJnxRiqN_O1qkBAst5ynVgguGqvHynh0pi1_Hp3qCMD3tzNtYpGhXbAg58pHrOFZQVRqEZsfm36UBR_kuiUA85Da19KToe-lntEgUnK-Ufobv3mn9JrNoEdRCOGZ0fNUE5nk8ltUuvf9KxT-0sQXUpWnnkfpmSd1WIJ9GhRrbuHloeUHc5RqcIpAGgFMXQb14hFqpoowYbVc4Mh79lNSrtVn4I2-a45zLmcaTJ3Y8KKCUI42yCwuGsliIaIfIdUt4vM1JZN_7QQzH7qag&lptoken=16cd685f286f899989ae&external_id=36197-736735370&source=16295&sum=
pragma: no-cache
set-cookie: f9908105-7257-45be-97c0-9990466cb2a4-v4=4tfzKdnXfv6QpyByoTxAwtOcvRfYSvWEdwnu7bFxsvk; Max-Age=86400; Expires=Sun, 13-Nov-2022 21:06:29 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None cep-v4=tKuFkKgESCOpR6WCXqOO489ekgJsYdsEzaqtBWRpnzv5uQTwpxsw1rn90BSfMEAqAn5zBr38BqBO8JXEWerVVzajMUlJHhBubdMmrCS4jfrrBqIMwHz9Yky3fVLYIrqXaF36ABbb35DIQ0v6fvfVRAFWZ3_Fi6h0WcTDK7JLTivzjsoOoJP-_913bnrBxTEFqa7otqyeQ74Q9Vpy7C06dyRzCdiaRgQ6Huv7De-5j5W5IVhMhhuf2uBNBbg2LN20xQj9OzJzCWnXN-HiGqNJzl7AwMoc0vKBj3QZn57SdebC1uk4nf2WgRC2NYZ1ARUxnawAfW9fszbz0edhMigIjdNSZk8wZXFTYYzQ2ALD8DAACTmbR0rzA6zPIyaHQnwDkw5AA6hsaViUj4EoJbdqrg; Max-Age=86400; Expires=Sun, 13-Nov-2022 21:06:29 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2

                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 12 Nov 2022 21:06:29 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 12 Nov 2022 20:44:48 GMT
cache-control: public,max-age=3600
age: 1302
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4581
Cache-Control: max-age=134203
Date: Sat, 12 Nov 2022 21:06:30 GMT
Etag: "636f622c-1d7"
Expires: Mon, 14 Nov 2022 10:23:13 GMT
Last-Modified: Sat, 12 Nov 2022 09:06:52 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /sl/html/DE10/n.php?cep=b0-khA6UuanRTkGfw-lY-2c64DKy6G_N319xn4VzF91i7PQ21wuq0QItXk705p-4qGo3_j3TDHVDuPxtqYfseQJ_kFIGw-ghEOtlryhOt0isF3wSuCZ35T-XrSVS1rGpwIHk0YJnxRiqN_O1qkBAst5ynVgguGqvHynh0pi1_Hp3qCMD3tzNtYpGhXbAg58pHrOFZQVRqEZsfm36UBR_kuiUA85Da19KToe-lntEgUnK-Ufobv3mn9JrNoEdRCOGZ0fNUE5nk8ltUuvf9KxT-0sQXUpWnnkfpmSd1WIJ9GhRrbuHloeUHc5RqcIpAGgFMXQb14hFqpoowYbVc4Mh79lNSrtVn4I2-a45zLmcaTJ3Y8KKCUI42yCwuGsliIaIfIdUt4vM1JZN_7QQzH7qag&lptoken=16cd685f286f899989ae&external_id=36197-736735370&source=16295&sum= HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
cache-control: max-age=300
expires: Sat, 12 Nov 2022 21:11:30 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tTJDbURNcgy2a5TaEvNc4l1lDuAF5EoVTWxrYI9sUqvajXme3uX3ud%2Bad%2B7%2FKcBLFf6Uj0Na05METYZcIZvaI3z8kcOs%2FrsjSF5OMRjnczRfW6TCh7owwm6IZYvpD3nMh0ipkVQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b591e77b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4058), with no line terminators
Size:   59410
Md5:    ca700bf1d3127a969731bdb776b03092
Sha1:   423675495bb2f98ada6a5f00e8695c1c6be1598e
Sha256: ba1311c279441f629749951793a0050547cd4f69584314c360df5f30f535ff11
                                        
                                            GET /sl/html/DE10/images/02.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
content-length: 72269
cache-control: max-age=86400
cf-bgj: h2pri
expires: Sun, 13 Nov 2022 19:52:38 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 4432
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kln2XbrGAru8QakEt1ajJwyDMjkzcXBV9j6CboKGIZI%2FP6pRXRJpkV%2BIkC4Shsb2U3jbjniTDpmPVmhHblfPq4D2%2FqUfycSTBiQm0sZmWmIT2mFfrnirbM47cyN3ajzn89UDar4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76923b5d0c0eb4f4-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x670, components 3\012- data
Size:   72269
Md5:    5a8b9b0560b1efd78ffc4b0a4b26d5dd
Sha1:   02c37f09435dd0df94fc9e291701cea61de47acd
Sha256: 69b803896c47dd6f767ec4475e28005b7a72b0273947a794391d857a93885a52
                                        
                                            GET /sl/html/DE10/images/04.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
content-length: 47131
cache-control: max-age=86400
cf-bgj: h2pri
expires: Sun, 13 Nov 2022 19:52:39 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 4431
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XUpFf6e9qptlj7AZZQxA07ugwyoSYV6TJJaEcQ4TlL7PTLK%2BlFNpXWtqNMZhM08bsngm3RZNaFrDQ0eyU7yKkBJY6t8MiL41tA%2FrHAoCDU3jwsNJePRxj0wVSydL1WJiU04sI60%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76923b5d0c12b4f4-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x393, components 3\012- data
Size:   47131
Md5:    522d1fb81bd75e2160ce5fa2e05bcb80
Sha1:   bea0851dea66e6897cf9681055e34d4149d1f0fe
Sha256: 8305ef4314706cf7468a4d6230039a86c0120e284bd866f4c6b5cdf99d20206d
                                        
                                            GET /sl/html/DE10/images/01.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
content-length: 63047
cache-control: max-age=86400
cf-bgj: h2pri
expires: Sun, 13 Nov 2022 19:52:38 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 4432
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mCYbZ3nwZQrGHTyrQ0fsQ%2BTII2I0042SU4JfETunHL6PONTYpiaeTVBKvQadQUeqB2xK4oUpXgPgY%2FqsHrW%2FHrTncLt9WRVW4kel9MQphD9xs18ua4DuxdGlY06Ok%2FwXOwyDK2o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76923b5d0c0cb4f4-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x736, components 3\012- data
Size:   63047
Md5:    3a850bc7c7440247f8464289ab4c282c
Sha1:   3347973cd9aa7a79cf9c87ea147a586a0da7fa9a
Sha256: d62defeba698e9f156e1f6f777d28ff475a8abf37c9dc632005fda06cba77fc1
                                        
                                            GET /sl/html/DE10/images/05.gif HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
content-length: 295330
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 13 Nov 2022 19:52:39 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 4431
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DNXjmlhlKxorbNeBtOfhgj0doWtLWX0FvKoMQgPSxKLwxSKfX2Kt5ssZFc%2BwNp6mYHtxB8MisfNSE8rf6ewhfDD7rbwirri%2BlaiaHVD7Mgivofg2xjFK20I5zlwNdc1grut2MyM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76923b5d1c1ab4f4-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 250 x 176\012- data
Size:   295330
Md5:    a5d1782e371584dd39fc60be2654dc5e
Sha1:   3347cabe8d40b0b93dff953291e0452c0d81a6e0
Sha256: 7c19aaec94ee7eceeea4171c58384347af75fe5b01374e548c49d9d498b83fea
                                        
                                            GET /sl/html/DE10/css/main.css HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=2611
expires: Sun, 13 Nov 2022 19:52:36 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 4434
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fk%2BjyNMA7qVPH4mcha2wJ9CTSBuuVddNILLVAPt7IB8F%2FblPXeddiy596fXLJxz2Mzxwshk5XW2bnOEHpbfyKdrZkR0FA%2B2BjRraVVzETSxx0Csr%2Fnp4emhWw2GDPHEkhgFJzmk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b5cfbf4b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2033), with no line terminators
Size:   1219
Md5:    4b56be0b59474fe8aa709e8eae92d34a
Sha1:   07c40cd42b8ff84a257257739814ae9023952978
Sha256: 3902ffe49c71bd4ecd7bc3ebe9ec7d47f2393a02c7c9d428f6c64bd1505e574e
                                        
                                            GET /sl/common/js/common-langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Sun, 13 Nov 2022 15:10:27 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 21363
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q3P201XBwcTasqlnIRwGHwjTgrFrttSBqDmDLqQqyX%2FoQhlPTXZGvtJ93zuKk0yRPb6tWjqhaD0wrexNmQhcDzCuKs1C9%2BY6s8FC2%2B5R8m4gA2kUDgNxHUmCsLafDjZG%2FnoOV3Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b5d0c07b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12768)
Size:   7233
Md5:    6b7332d3611b457fb2be4c8ed1529ef8
Sha1:   c4bdb3470a2ffd519bda1259ed86804dfeb1a0ad
Sha256: 98b6cd0ebefb667694d0ea76998bcf810e563d836509a0ba73ccb09dc8e8b51a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jNH7/JUP8M3P3+ltE5kE1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.217.237.91
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4L0YxY8UFiiEM8ePRn6FfU34Qqs=

                                        
                                            GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 13 Nov 2022 15:10:27 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 21363
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CiiPo8rKIbLL82o2xLk%2FxDGztoKkGqkkSyOiZZqwIugtfMGDaGxkF8SSfToI5gHlEbf7mvL%2FoDc%2FWODpoJm%2BH8Qu2wECwaKtsNaBchaPPVBEIQVYFvyHBUiB3QSDdmg%2BNjZfXd0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b5d0c01b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (17654)
Size:   5509
Md5:    86a5d83090218186e6864117bc611c97
Sha1:   a1f7c2dbe64a32e53fe88568680dc19c71d29ca3
Sha256: 131330b650ab9481a926e565ece9d56f982cd062f7c7d007bb11cc3a83540f9a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /get-keys HTTP/1.1 
Host: app.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/DE10/n.php?cep=b0-khA6UuanRTkGfw-lY-2c64DKy6G_N319xn4VzF91i7PQ21wuq0QItXk705p-4qGo3_j3TDHVDuPxtqYfseQJ_kFIGw-ghEOtlryhOt0isF3wSuCZ35T-XrSVS1rGpwIHk0YJnxRiqN_O1qkBAst5ynVgguGqvHynh0pi1_Hp3qCMD3tzNtYpGhXbAg58pHrOFZQVRqEZsfm36UBR_kuiUA85Da19KToe-lntEgUnK-Ufobv3mn9JrNoEdRCOGZ0fNUE5nk8ltUuvf9KxT-0sQXUpWnnkfpmSd1WIJ9GhRrbuHloeUHc5RqcIpAGgFMXQb14hFqpoowYbVc4Mh79lNSrtVn4I2-a45zLmcaTJ3Y8KKCUI42yCwuGsliIaIfIdUt4vM1JZN_7QQzH7qag&lptoken=16cd685f286f899989ae&external_id=36197-736735370&source=16295&sum=#p#
Content-Length: 89
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.138.29
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MV%2BePw2rm%2FmQQ4QBjG%2FFcKyVZtAQHalClJTtSF%2Bt%2FC2f1e4ldH%2BxHkn4oUpiVGn87SIairZCSmxSBnMx9ZY6fZBp1pro7BQ1LmnQPTxvcYYG1n1jS1mn%2Fu94oLu0Y%2BrsceOq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b5ee8a3885f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2116), with no line terminators
Size:   917
Md5:    513e2d6f7c4afa7a467e568b61c21860
Sha1:   ac4f6c25cdb7c39831cb5fbb29145329a81abee4
Sha256: a1d29eaf84ca426460dada1ebf6d4d2c709ad23201f8bc53d4f9dbdc65aa4d20
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 12 Nov 2022 21:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 12 Nov 2022 21:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 12 Nov 2022 21:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 05:42:51 GMT
expires: Fri, 10 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 228220
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 12 Nov 2022 21:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1 
Host: subscribe.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/DE10/n.php?cep=b0-khA6UuanRTkGfw-lY-2c64DKy6G_N319xn4VzF91i7PQ21wuq0QItXk705p-4qGo3_j3TDHVDuPxtqYfseQJ_kFIGw-ghEOtlryhOt0isF3wSuCZ35T-XrSVS1rGpwIHk0YJnxRiqN_O1qkBAst5ynVgguGqvHynh0pi1_Hp3qCMD3tzNtYpGhXbAg58pHrOFZQVRqEZsfm36UBR_kuiUA85Da19KToe-lntEgUnK-Ufobv3mn9JrNoEdRCOGZ0fNUE5nk8ltUuvf9KxT-0sQXUpWnnkfpmSd1WIJ9GhRrbuHloeUHc5RqcIpAGgFMXQb14hFqpoowYbVc4Mh79lNSrtVn4I2-a45zLmcaTJ3Y8KKCUI42yCwuGsliIaIfIdUt4vM1JZN_7QQzH7qag&lptoken=16cd685f286f899989ae&external_id=36197-736735370&source=16295&sum=#p#
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.138.29
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Sat, 12 Nov 2022 21:06:31 GMT
content-length: 5
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4aG%2FCkbwlXfr5HN9Q95w4Zya4oU2%2By%2BCIWOr8dfm6Y1Dl%2FxdlBS6%2BRLsLJu93k%2FOTx3aTqHeOQKGIwB8hsD4A9NUZPKSDYm7r9WKDW4%2BbzGWlUlismBW%2B0iB8P1sSmxts2S0tYfemL8z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b609c1e885f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   5
Md5:    68934a3e9455fa72420237eb05902327
Sha1:   7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
Sha256: fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6657
Expires: Sat, 12 Nov 2022 22:57:28 GMT
Date: Sat, 12 Nov 2022 21:06:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6657
Expires: Sat, 12 Nov 2022 22:57:28 GMT
Date: Sat, 12 Nov 2022 21:06:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6657
Expires: Sat, 12 Nov 2022 22:57:28 GMT
Date: Sat, 12 Nov 2022 21:06:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6657
Expires: Sat, 12 Nov 2022 22:57:28 GMT
Date: Sat, 12 Nov 2022 21:06:31 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F073ec866-b693-4f96-82bf-76ba051797c9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6577
x-amzn-requestid: b4587cfb-6041-453c-9e74-fa35ecd31448
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMjIGHRoAMF26g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec147-29e7ec741b0e6f6f674aef75;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hsMmHIBEt_4cL455goPqDKQVQA75u4oGFbSxsGP_e_0uG7SZmSLBhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:00:57 GMT
age: 83134
etag: "ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6577
Md5:    faa8e3cf2ab3c1d53a1735def5bb7476
Sha1:   ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f
Sha256: e81a8fa312ec478871427f1d04ba7fe563573c683809153f75dec8df979d6efe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5720fc8-63c5-4f5e-bb64-33809e0069fe.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8953
x-amzn-requestid: 2a2d20f4-3aa5-475e-8ec2-fc569766335e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhQGAhIAMFrjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-26dc0259793ec94814f3d41a;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: OKFzEoCVITStAPxYzhksarrlTkVeATx6AzBnEK32WLFaOeEIwLMu_Q==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
etag: "fa34520e849bf746ff43aec3d28beb9e4be44f4d"
age: 84079
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8953
Md5:    f09e254cd6f2e29b3bf198cc5d58a46f
Sha1:   fa34520e849bf746ff43aec3d28beb9e4be44f4d
Sha256: 2e29eace95fd8cb5b6d77df880d2044ecab4206cba47931c3a95e77c1b4e9d9a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5583
x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ9Ho7IAMF5_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uHlIN1IVGCFUVl5lx5pFSux0YncseT2HQjiwFDL9eaEaBa9CdnCl8g==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 04:50:44 GMT
age: 58547
etag: "691f59b65ca9fde4f59bbf96b37071e07351f190"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5583
Md5:    85c6f450b38f41a2fb924d6d9a9cbff8
Sha1:   691f59b65ca9fde4f59bbf96b37071e07351f190
Sha256: c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9012
x-amzn-requestid: 83eac9e7-5387-4e11-9769-182fa3f7fffb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNC6FxzoAMF80w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec212-5ca277b90a5a9a4c437edc1e;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PrJoEROPymrtc0egNlWRoOMjohiCo3zReD01qAHwByaSiXarfRS0XQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:00:43 GMT
age: 83148
etag: "0cc22d7bf9092fb30f31e2ca8f242c197b891669"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9012
Md5:    516f1bfefb1c1a737ea2441f85343b32
Sha1:   0cc22d7bf9092fb30f31e2ca8f242c197b891669
Sha256: 733824d4f6f7c5b54ce4e02ecaf152cfc1e10f3f6a801d7e2c55a02460e40087
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facfcee70-832e-4f2d-8fc7-55d2bfff651e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8633
x-amzn-requestid: 8bdfbfbb-5193-4c62-ba1b-c906f7548676
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhSEC1oAMF8tw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-39b4c2954dbc8e4c40a2c9d8;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lxrfhO5oOGvECIrlZYKsfXOTZZksAIIHAafyRM-FdRXAaBVZs5cEQA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:21 GMT
age: 84070
etag: "2d90ff66079e8ffbaaa367a6bfc08927e7cc424d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8633
Md5:    eac2ed4bece6282c8273a58a88371e2e
Sha1:   2d90ff66079e8ffbaaa367a6bfc08927e7cc424d
Sha256: aea97fd7d90302edcb3e0c08507d682e02166e8ddd4d082fc4f5435af438594c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe8955e1-907b-43ed-a437-d4ad1f5fe742.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5478
x-amzn-requestid: c06e47c6-da2a-4a70-af2a-c1268557b913
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdM67FEEIAMF-pA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec1df-0628d00244323ddf727e0b80;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3zeJU6wVmWDIbVDBlTYvTh8e78isxbmNC0GKWdKqdI5abbdERoyzpA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:13 GMT
age: 84078
etag: "c76588ccaf97fdfd6e73833083200cb49a01a4af"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5478
Md5:    38e32fc94c445ff47da5d2907e61e3a4
Sha1:   c76588ccaf97fdfd6e73833083200cb49a01a4af
Sha256: e4e3947b2248206c9dacfd35ff5619ca3b3ae56a7bcd565d40ed048839ffa075
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1483
Cache-Control: max-age=147652
Date: Sat, 12 Nov 2022 21:06:32 GMT
Etag: "636fa2d1-117"
Expires: Mon, 14 Nov 2022 14:07:24 GMT
Last-Modified: Sat, 12 Nov 2022 13:42:41 GMT
Server: ECS (amb/6B81)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1483
Cache-Control: max-age=147652
Date: Sat, 12 Nov 2022 21:06:32 GMT
Etag: "636fa2d1-117"
Expires: Mon, 14 Nov 2022 14:07:24 GMT
Last-Modified: Sat, 12 Nov 2022 13:42:41 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9f88d70-47ed-4a86-9b90-ea63f189df00.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5902
x-amzn-requestid: 9c8be25c-9c96-4861-89c8-8b7bf06ffc16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNBrH2DoAMFqbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec20a-6c770a86581d1f7f4599684f;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ncUYc6gH2CYjxAwoVCC4MEj8Va5GGn1ZAg-gBmFtm5gzYIe898Ittg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
age: 84086
etag: "13535f16f207d4c19c1b6019757f6739a4531eeb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5902
Md5:    94a390953f36bf9902cb9f04007c36c1
Sha1:   13535f16f207d4c19c1b6019757f6739a4531eeb
Sha256: 37d73300955a979e5b9d3dabc6e924c4e9734c6c63d92c42c709f8cb0d5aeabb
                                        
                                            GET /sl/common/favicon.ico HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Sat, 12 Nov 2022 21:06:31 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 3932669
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a0xGzZKjSTZLp%2BHbD1ThJdStIc50DGgeWTAu8TvPsQHR6b9%2B%2B4K7vNE63FzSbPgujPDB2RB2wpFCgMML4l4Dgm7%2BCM1900ikkIrnJjgRZ9Ql4xlV9ip5957%2FnHw7tw0B%2BgzkBso%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76923b6179f2b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 13 Nov 2022 15:10:27 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 21363
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3fFKXHR0bW0Xv360Zt5Cof1bORAXM4wkXYYOwH5CBWCtxyQ9swxqVLncHNISMadIRPJHNObZJsXIuyLVJsE47hGrC9RaRFDXWVXsQl1hbLHKQ%2BlK1j3iD7gNlm%2BvUb73yPursmk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b5d0bfeb4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/DE10/js/config.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=704
expires: Sun, 13 Nov 2022 19:52:36 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:26:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 4434
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lNv%2Ban2VnXmb6uSPUfemO12mwGeNw5UEPZondlAPgOX7GFXGJBoMKLIKxUOkD6LPf%2F9qziu9WDT5RiEaV%2F3csT5JFLu5WvH1RnuAP7JIi2BwPD450tcY9wIZoyuB8km4uQax8nY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b5d0c03b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/css/style.css?1668287190 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Sat, 12 Nov 2022 21:06:31 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 13 Nov 2022 21:06:30 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eRTr%2BEoxwMe%2BAEUp0BySpB5PSFUY5q2gR30hTGnGC%2FqPQk%2FcclxZd577wRp6IlnI4bnkxeFI5czeUsC8LEontpPtzQ5J0I8BTbLAHzRykVGQUKieUrb0O%2FgNVUkKB8wiVVdbID0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b5d0bfab4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/main.js?1668287190 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 12 Nov 2022 21:06:31 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 13 Nov 2022 21:06:30 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mhGMBShjZX7S501OcwGMwE%2Fm2PCH1yEGdztCGrKo%2F4wd5Rxa4pfvRhZwfiVYPKamuANqhXM9to0J6OkkPhof%2FArWxR9TOcWdxteSu8uIns6uqeqV1Y7qISXH3nmeRy6HlP0JMo8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b5d0c09b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/DE10/js/custom.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=130977
expires: Sun, 13 Nov 2022 19:52:36 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 4434
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WWCxwZjGYu49Bgzu5GodINUZILJT11l9zmpg1UbfGPnhXQvKZ5knHP%2BiYekX5VsmW0Jv9vhpdkVRHAfdjUC5CdTtT%2BEOt%2F1FOhUqbDoGg8m%2FR4OYp7S71XiVfu6AF3fKWuG8Z%2BI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b5cfbf8b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /swpush.min.js HTTP/1.1 
Host: cdn-dt.fcdn.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.234.86
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 864595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XRg22iuSdWnfIua5EHmb1tBjA%2B8vmNCkHvHJV2Rzr%2BBu%2B7L4EwOVeAkYrG6ScuSSTRaWH4xvF19T%2FNYrHkSZuzpJBZUoa%2Bi%2BWkzNFqMXGVDeRnlGFjewHGRTCpRuzpWqI1Zf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76923b5dbd5edd68-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /cdn/sdialog.min.css?_=4 HTTP/1.1 
Host: cdnjam.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.58.242
HTTP/2 200 OK
content-type: text/css
                                        
date: Sat, 12 Nov 2022 21:06:32 GMT
content-security-policy: block-all-mixed-content
etag: W/"1d16caacad4ad6c40a99319a5d183947"
last-modified: Mon, 22 Nov 2021 08:00:52 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 16F5E342988C7B8C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oZkbFUdlVOHQL8nWTN5whN1WBuorD2iX4mruYaUPa6uDu17wMWlrAcvTySfdL3jsQrs65nzbiT4%2FoaycXnrlqsdNPy0TBfYeYKzHD8ZqF41NjTxOrqwP%2FzmCqqNf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b686d8cb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/html/DE10/js/langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=36979
expires: Sun, 13 Nov 2022 19:52:36 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 4434
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H9r869xVpyJeUgnaFkpeHbDWczsan9GvE3XyiwkAHkSPaTngzbg%2F7qK%2BjJXAsOPUe%2FHiWkpryZfVVBVGkf7Vkuhzrh7U0r0RyJnMlDhuzkEWhFmplIoKVa%2B3%2FXBCUY6GMpP3%2Fl0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b5d0c02b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/common/cookies-policy.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 12 Nov 2022 21:06:31 GMT
last-modified: Wed, 09 Nov 2022 12:52:00 GMT
etag: W/"636ba270-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8IOYQOMDxS3Keze%2FV8LcaNa9aLGVG7imvCf32CsnZlYGbRS8DviQ5oYd5jRj00bVdkeU1L%2B77iTC1YoBNmQT5NrJ%2BQ5AKaeOZmoG7KgZx%2BcUgcDo%2BVjSP%2FIIrFYQNCLNyaMVyWk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76923b638cb3b4f4-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 14 Nov 2022 21:06:31 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 12 Nov 2022 21:06:30 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sun, 13 Nov 2022 15:10:27 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 21363
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kZis%2FIwO47zWwkF3h5FgF%2FDeRSV1MpMZNUF6Dg780lh%2BwoRVpxIHjn4CAxVpdikSL1RLbkxFkWVneTL%2F%2FSnbsqtOxlGxZYbKgTl3G87svQg7YOmTA5AY8T1osCH%2Fhw%2BXm%2FHfmSE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76923b5d0bfcb4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing