Overview

URLv2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310
IP 3.66.74.238 (Germany)
ASN#16509 AMAZON-02
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-28 11:16:44 UTC
StatusLoading report..
IDS alerts0
Blocklist alert14
urlquery alerts No alerts detected
Tags None

Domain Summary (16)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
bl.trackham.com (1) 0 No data No data 18.193.146.82 Unknown ranking
mycasualhookups.com (24) 0 2016-03-19 22:05:44 UTC 2022-11-28 08:19:16 UTC 104.26.12.87 Unknown ranking
firefox.settings.services.mozilla.com (1) 867 2020-06-04 20:08:41 UTC 2022-11-28 05:55:58 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-28 05:46:10 UTC 34.117.237.239
img-getpocket.cdn.mozilla.net (5) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
fonts.google.com (1) 31986 2016-08-14 00:49:44 UTC 2022-11-28 09:44:51 UTC 142.250.74.46
v2.trckguardlnk.com (5) 0 No data No data 18.194.62.185 Unknown ranking
ocsp.r2m01.amazontrust.com (1) 0 2022-10-12 20:43:53 UTC 2022-11-28 05:20:32 UTC 54.230.80.227 Domain (amazontrust.com) ranked at: 581
v2.trckguardlnk.com (5) 0 No data No data 18.195.157.163 Unknown ranking
ocsp.pki.goog (2) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
cdn-dt.fcdn.info (1) 230544 2019-03-21 02:06:06 UTC 2022-11-28 06:26:26 UTC 104.21.234.87
r3.o.lencr.org (4) 344 No data No data 23.36.76.226
ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.218.164.174
app.api-push.com (1) 307671 2021-12-06 12:20:56 UTC 2022-11-27 21:00:02 UTC 172.64.139.29

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-28 2 mycasualhookups.com/sl/common/js/common-langs.js Phishing
2022-11-28 2 mycasualhookups.com/sl/common/css/style.css?1669634195 Phishing
2022-11-28 2 mycasualhookups.com/sl/html/RU2/js/langs.js Phishing
2022-11-28 2 mycasualhookups.com/sl/common/privacy-policy.html Phishing
2022-11-28 2 mycasualhookups.com/sl/common/js/lib/additional-methods.min.js Phishing
2022-11-28 2 mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js Phishing
2022-11-28 2 mycasualhookups.com/sl/common/js/main.js?1669634195 Phishing
2022-11-28 2 mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js Phishing
2022-11-28 2 mycasualhookups.com/sl/html/RU2/js/config.js Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-28 2 trckguardlnk.com Sinkholed
2022-11-28 2 trckguardlnk.com Sinkholed
2022-11-28 2 trckguardlnk.com Sinkholed
2022-11-28 2 trckguardlnk.com Sinkholed
2022-11-28 2 trckguardlnk.com Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 2 reports on IP: 3.66.74.238
Date UQ / IDS / BL URL IP
2022-12-05 01:48:38 +0000 0 - 0 - 4 it.gratissesso.me/click?o=262&a=4197 3.66.74.238
2022-11-28 11:16:44 +0000 0 - 0 - 14 v2.trckguardlnk.com/click?a=1276&sub_id1=w7s1 (...) 3.66.74.238


Last 5 reports on ASN: AMAZON-02
Date UQ / IDS / BL URL IP
2023-02-08 13:12:06 +0000 0 - 2 - 0 fba5e4af70.clvaw-cdnwnd.com/ab080ac6a08f8192b (...) 54.230.111.30
2023-02-08 13:06:53 +0000 0 - 5 - 0 worsley.intelligentgolf.co.uk/login.php 34.251.163.236
2023-02-08 12:59:15 +0000 0 - 2 - 0 timify-desktop-app.s3.eu-central-1.amazonaws. (...) 3.5.134.125
2023-02-08 12:50:05 +0000 0 - 2 - 0 updates-cardano-preview.s3.amazonaws.com/daed (...) 52.219.140.138
2023-02-08 12:34:08 +0000 0 - 2 - 0 www.topsevenreviews.com/downloads/free-flv-to (...) 35.166.219.36


Last 5 reports on domain: trckguardlnk.com
Date UQ / IDS / BL URL IP
2023-01-21 17:57:42 +0000 0 - 0 - 4 v2.trckguardlnk.com/click 35.156.69.71
2022-12-23 06:38:54 +0000 0 - 0 - 16 v2.trckguardlnk.com/click?o=2202&sub_id1=003a (...) 35.156.69.71
2022-12-23 06:38:53 +0000 0 - 0 - 17 v2.trckguardlnk.com/click?a=519&sub_id1=59b0d (...) 52.28.74.46
2022-12-11 06:39:06 +0000 0 - 0 - 15 v2.trckguardlnk.com/click?sub_id1=ad1eaf25de8 (...) 18.193.235.190
2022-12-08 06:39:09 +0000 0 - 0 - 15 v2.trckguardlnk.com/click?a=519&sub_id3=a170c (...) 18.193.235.190


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-20 23:02:55 +0000 0 - 0 - 8 bl.trackham.com/0192bfd1-5e02-41b0-abc1-ecf37 (...) 18.193.146.82
2023-01-12 12:25:54 +0000 0 - 0 - 11 winter.nizejudy.online/?a= 192.64.119.254
2022-12-23 06:39:18 +0000 0 - 0 - 12 bl.trackham.com/c40fc32b-aea7-4400-9940-2d3ec (...) 18.193.146.82
2022-11-30 21:40:38 +0000 0 - 0 - 11 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2022-11-26 11:51:16 +0000 0 - 0 - 10 joe.cometurnmeon.xyz/ 192.64.119.254

JavaScript

Executed Scripts (13)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (54)


Request Response
                                        
                                            GET /click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310 HTTP/1.1 
Host: v2.trckguardlnk.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         18.194.62.185
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: awselb/2.0
Date: Mon, 28 Nov 2022 11:16:33 GMT
Content-Length: 134
Connection: keep-alive
Location: https://v2.trckguardlnk.com:443/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   134
Md5:    4aa7a432bb447f094408f1bd6229c605
Sha1:   1965c4952cc8c082a6307ed67061a57aab6632fa
Sha256: 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3959
Expires: Mon, 28 Nov 2022 12:22:32 GMT
Date: Mon, 28 Nov 2022 11:16:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2025
Cache-Control: max-age=172113
Date: Mon, 28 Nov 2022 11:16:33 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:05:06 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 10:17:46 GMT
cache-control: public,max-age=3600
age: 3527
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2736
Expires: Mon, 28 Nov 2022 12:02:09 GMT
Date: Mon, 28 Nov 2022 11:16:33 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: Cdayaobt4m0A3/j7ElR6z54OdmMq1jgkiTaNkPsqMNl1XN+3qCBsH8FQhCrjy6biylE5apVYcKCt6sHnqygGRw==
x-amz-request-id: XNY3BW83856P7K62
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 10:45:00 GMT
age: 1894
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 28 Nov 2022 11:16:33 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.r2m01.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         54.230.80.227
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=87928
Date: Mon, 28 Nov 2022 11:16:34 GMT
Etag: "6383355a-1d7"
Expires: Tue, 29 Nov 2022 11:42:02 GMT
Last-Modified: Sun, 27 Nov 2022 10:00:58 GMT
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8F0dAdIam1fGttZfUP0LH0jeBh-Mi2OskIEOLjc7XHvOHQdxxpJhcQ==
Age: 6064

                                        
                                            GET /click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4310 HTTP/1.1 
Host: v2.trckguardlnk.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         18.195.157.163
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 11:16:34 GMT
location: https://v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4309
server: nginx/1.20.0
x-powered-by: PHP/7.4.21
set-cookie: U-c96c08f8bb7960e11a1239352a479053=unique; expires=Wed, 28-Dec-2022 11:16:34 GMT; Max-Age=2592000; path=/; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3438
Cache-Control: 'max-age=158059'
Date: Mon, 28 Nov 2022 11:16:34 GMT
Last-Modified: Mon, 28 Nov 2022 10:19:16 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yJFwpksoQto0R1MBy73muA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.218.164.174
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: T75w1YXPrU0GhzWRlQE5GlEsTP0=

                                        
                                            GET /c40fc32b-aea7-4400-9940-2d3ec633506e?external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855 HTTP/1.1 
Host: bl.trackham.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         18.193.146.82
HTTP/2 302 Found
                                        
server: nginx
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855
pragma: no-cache
set-cookie: c40fc32b-aea7-4400-9940-2d3ec633506e-v4=9wIxubUrd-ELv_-wQLtJZQ3j5vT06bel1p2_kyX9kzw; Max-Age=86400; Expires=Tue, 29-Nov-2022 11:16:35 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None cep-v4=kZtVXz63NN6LqgQ0BapGTseAPeyBcfyh5PWGcke75QPmUQ7ckwNNKT6rTbHC-j-X_Df74sRXI5FL9StSF2J9Mh61kI253v4x7PPQGg9UUEFY1ILIv96uFfpEQ5SpVT6MWMeVxAdPMAUS8dMrqQ-GF4X9hfJ8fIWWT2p5CMfY_xA5AYsrSlb0d7dtkb7Vb9TvlOC-9wHxMoIIv5qJVeNwmh5huLtHUmjZpLPN224ELKkR602xDU04vRIBJcRTey2axquyUUTyA8Wo1p8ME5be-F6oHq0CqFZHjmDsOzZS-BYOA4005dutoAD1Il-XT5ZWJacYuvYudUEYDXTulu3uU8EPADp7crs3tApILWFBoxfXbsLwICK2B_hb6ayQBniHjANMOBUqA4oIeaEwVn2TfRTv-kSF9sW0B-KyzBNgH7Yn-4PCudp93qPRZWrquUEh; Max-Age=86400; Expires=Tue, 29-Nov-2022 11:16:35 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: v2.trckguardlnk.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: U-c96c08f8bb7960e11a1239352a479053=unique; U-f2b5e92f61b6de923b063588ee6e7c48=unique; U-dd28e50635038e9cf3a648c2dd17ad0a=unique; o_dd28e50635038e9cf3a648c2dd17ad0a=46de84e7-1e89-487f-b036-c60dd26a9c14
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         18.195.157.163
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 318
server: nginx/1.20.0
last-modified: Tue, 04 May 2021 06:35:26 GMT
etag: "6090eb2e-13e"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 16 colors, 4 bits/pixel\012- data
Size:   318
Md5:    a976d227e5d1dcf62f5f7e623211dd1b
Sha1:   a2a9dc1abdd3d888484678663928cb024c359ee6
Sha256: 66332859bd8e3441a019e073a318b62a47014ba244121301034b510dc7532271

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /s/gts1p5/Dt6OUty8wSY HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:16:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /sl/html/RU2/images/p1.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 71788
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85007
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t6WL%2BJOvJt28lF2IiaHAJdbg8gokxzu1tyh1j5sIKvz4yFvQSM7ggrKB1orVA2yEHroReNfzBXc5yxhMU%2FcqQLGovyidqueu%2B65DhJ%2FOO6ODL1Zk4Yc2%2B2nWyd0IKuH4iKBUUpQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cab660b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 470 x 470, 8-bit colormap, non-interlaced\012- data
Size:   71788
Md5:    494bbc5aef3a6bf81a7a6d280cd30a91
Sha1:   21dd9687dad7c2f7fc97494f84136178791fbf62
Sha256: fa7f290f3c686364205a6e48f3a90425b0de1509667c4cba327b6bded85fc783
                                        
                                            GET /sl/html/RU2/images/p2.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 55912
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Tue, 29 Nov 2022 01:51:19 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 33916
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O%2BmacduhCMFmpXOo83UeKkn6rnVYps3ShB4xafsa8PqcvFQ8wZPVElMvfSs%2Fsodsz8EV8d9B%2BRG6owpWHW3mTcIouY3ic8IoyLHb5dDq0oqGrqAhuqNLaqG4eZSJ0OhN8v3o1Ck%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cab6c0b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 470 x 470, 8-bit colormap, non-interlaced\012- data
Size:   55912
Md5:    d17402bdc0fcf83d5878d9074160707f
Sha1:   cb809d72be0902532628bc6766345a2383ba7510
Sha256: 0d05698c116356d975e2996f4db6522dfef1ab6b0f26666b6ec67c5bf601e369
                                        
                                            GET /sl/html/RU2/images/m4.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 12580
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85006
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7uqweMwYQ8YeOwQpNot1HoJbW4wyyfFAmUmQP9zYyP8tql91sHSUBf3BBDbL27cDNUIP6yTr3fu3obKb2jKhDv4QdV9aCcM0pyGzBDViRuC%2B4dVmgnuogDPv%2FWiJulTJ0sHeX0s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb8f0b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size:   12580
Md5:    70c557deb46154f4594a4a68c6f459b2
Sha1:   12c80c7e03a8b02333835196bc9e76227633a87d
Sha256: 0ce2024114ad366085043259ac2657ca445ab8200685ca945e8b8a9ebd7b0186
                                        
                                            GET /sl/html/RU2/images/p4.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 78226
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85007
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k4l9anT36NEDVr0t6zC23u9dLQzUZutLJRjo%2BIQez4K5XQUrG2VIZ24oRb3svlWLG48P0TvRWIkURVCHY0M%2B3BqWF78OBoVpmwhmkhrmZyA3CereEOsxMz%2BNBgH66bFsSF9bFuY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cab760b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 470 x 470, 8-bit colormap, non-interlaced\012- data
Size:   78226
Md5:    bd41111acd12d477e09e11090dbefb58
Sha1:   a17a15bd3a700417f9f325bb65aa2b28bd5b82c7
Sha256: b1088758ed8635e8bd3cf3b1db1a89569af3bfdc606444f4ba8bd4bdbe22f291
                                        
                                            GET /sl/html/RU2/images/m2.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 13364
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Tue, 29 Nov 2022 01:51:19 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 33916
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EUMmgujCTqMSvOiWN0BcZfukIgf5R0i2PkCVtsFSBwEnnm5oUSPAkmEABAquh1ijqJlEDpuVkNgh%2BtolSYAq3%2FzrqADv9trhZS6RrEFac3MhjUgZlFsqp8yT%2BJ%2FhFCtlYIukfHE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb890b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size:   13364
Md5:    09574b395fb72dad469685d2955ff37f
Sha1:   56b46b108e724d0e49d458b3ded7321b0f58c16c
Sha256: 1f751083fcd680a2583b1024f3067ba7400432a8413b2c2779d15a88531db6da
                                        
                                            GET /sl/html/RU2/images/m3.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 11098
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85006
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mcM%2BfIeFLVYg%2B9RkMSoGdOk1mXej2bC3heMCBJ9vl2cOERHCi2NS9AqQqY%2BEsgBnRHrvLXw2RMFy7spqtDQzThp9IwbyIp5LqTcArWWCQkGZL%2B4zWWef6woLdfxX2si8V7RnwSs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb8c0b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size:   11098
Md5:    296818e43acc9a58fb83db7091802257
Sha1:   5beea1ab17c5446a423c21becadca646c47195d8
Sha256: 9427ea76fcdb78ef95a266713426fc848ec47c0a848db2708c42120e29c13179
                                        
                                            GET /sl/html/RU2/images/m5.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 13059
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Tue, 29 Nov 2022 01:51:19 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 33916
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oELUNoZiJ81oGT0OKaMO%2F2TOyBbgDy39ybgytRbfX8Y6%2FUcogyiA1NgFsNKmrud9pxBgFaJFWl9DPVzhAjXDMxY7PjdoTCRJC8ZHiWk1iMVHYWFyWLbX2rMdBtya1u9Rel4qidc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb980b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size:   13059
Md5:    8eea83352f8e64280addd3cb6b9613bd
Sha1:   3392e29069d3996a394bbaf13e6342dc990450ba
Sha256: 4b39a98216d3813d0aee7dc6cee9a37d4a9910feeedb7853892948c752aaad82
                                        
                                            GET /sl/html/RU2/images/m1.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 13181
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85006
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=55eLJuSH5WzlP9FOFzel1knN65DIKOZp9kx%2FAv5TUuxzswjE5Mclu8dTjYvWk1nI%2Fnfv8nRJuKAoSYfys3lABD0A8qNn6OwO5u%2B7kFNBkrE9GB2K%2BWhSXT9%2Fb7ZSv%2BoM5MGPysg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb840b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size:   13181
Md5:    c8afa3eeb639bd0be03958c7c41d9b0e
Sha1:   9f994ff365870aca072d551ade941740462aad29
Sha256: 039d6dca957e3c0aadfb23beaabad3dfba54aed212d80ba877ef518d7c65d43e
                                        
                                            GET /sl/html/RU2/images/m6.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 12057
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85006
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IhkqubeNPP%2F6ATKai2RM5cyow3SGX3UZZGPa8V3y0OhBm%2F2EfqyU3Nv7pm7cfwQ8umKw7wlFr0eggudiXEQfrdEkg079yd%2BaZRyrUh2bOM9eiupXLXLYKbTznf0icniUmlwKuNg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cbb9d0b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 152 x 155, 8-bit colormap, non-interlaced\012- data
Size:   12057
Md5:    a480372e36452358657427972871d48f
Sha1:   2fd2321bdd8a948676c59b06c68349f792ffdc05
Sha256: 870440a46aa0d05ee4b6118e968fc819b75483a563e905cf1c622ee887db1acb
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6061
Cache-Control: max-age=131867
Date: Mon, 28 Nov 2022 11:16:36 GMT
Etag: "6383e102-117"
Expires: Tue, 29 Nov 2022 23:54:23 GMT
Last-Modified: Sun, 27 Nov 2022 22:13:22 GMT
Server: ECS (amb/6B74)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /sl/common/js/common-langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Mon, 28 Nov 2022 16:48:43 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 66471
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7RWfjCVSDogncuof3CTI%2FWeO7Unw6RyAbYSGmTqf5tOQ8YQ0aYqg2iD%2FwvkWN5Q%2BL6l%2F7BuEZCpW1JQmR0Zj5dkGO3jiqYJXHR4hAAU2fi5mcyTU3BO6y96djuyM9UyxtyJV5Sg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13cab630b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12768)
Size:   6549
Md5:    7430e5046cabdbf90754b32edafae04d
Sha1:   abe9525eb2cf598fd2e7840199fd956583b87d1b
Sha256: 2e11890e98e5aa0464853991e83451ba38dfcc196a2365e12c0b14a99f66c605

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6061
Cache-Control: max-age=131867
Date: Mon, 28 Nov 2022 11:16:36 GMT
Etag: "6383e102-117"
Expires: Tue, 29 Nov 2022 23:54:23 GMT
Last-Modified: Sun, 27 Nov 2022 22:13:22 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11345
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 11:16:36 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11345
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 11:16:36 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11165
x-amzn-requestid: 9e35d865-adea-4d2a-b20f-beb014cdd42f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JE2VIAMFYgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-7cf4db38152cdfa1448cba3d;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: SFO5-C3, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4YRocKXYUOkfho0bEHNX0xMxhhKNH2Cm3XtQDtQK7x2dFOsipPjfCw==
via: 1.1 dec8fa38a453902521b941c7cd70d33c.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:26:45 GMT
age: 46191
etag: "65941dd34eb1063a3f7fe2b6790a11a484a06b9a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11165
Md5:    a8935783026c10470f60033d3a860f7b
Sha1:   65941dd34eb1063a3f7fe2b6790a11a484a06b9a
Sha256: e88c706458faf5b5512212692392c7c1a0d8e60af62962267166f5cb60ee9c89
                                        
                                            GET /specimen/Noto+Sans HTTP/1.1 
Host: fonts.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.46
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 28 Nov 2022 11:16:36 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin-allow-popups
content-security-policy: script-src 'nonce-xRvtRZQbc8gaUroiUnMC7A' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=kn-qlnl28WNtEwnLOYUugi61uoz5AfcPnmYDLRIqG663kK1hClQphANoW840gLPHZlofwz-euknXgk28lehrMjuS0CJah6C0p0bZdtl6F5TGqvfn12l9Q7t6OTGxK7wYPGfyVxfLsyAsWa-AGCNV2JrI7gca_ymWeehPQKbQako; expires=Tue, 30-May-2023 11:16:36 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8776
Md5:    cc25ccd5f31e89ea851b66e81a6b4af3
Sha1:   9d820a69caaf374437a42a4488df6a670e4fe395
Sha256: 876452740e701bd5c55b3f61d60b4b9bdea73477a2b3ac21aff5d35ef5e952be
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 47690
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9430
Md5:    1f434933b5bd6377d299ada22d1ae7ef
Sha1:   075531f525e625b117b2497f31139c9824d0e9c5
Sha256: b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74165307-11fe-455f-9c90-106d24a6495f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6498
x-amzn-requestid: 2499eb0e-74c9-4c04-ba58-3e65fc452c34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR8IwHU4oAMFaAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383da37-12f14e7a30bc1a75499cb272;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:44:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WaCfMUy6EtOLWvJy1jFbKp9KQzG5v7nq27sIo7d8gFeGesFd4uWdEw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:24:14 GMT
age: 46342
etag: "771d38e18cdfa54052f7cb150b73c03154eb4368"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6498
Md5:    1bb306213437ea24ab879adc9e3b6da4
Sha1:   771d38e18cdfa54052f7cb150b73c03154eb4368
Sha256: d4cce7533fd59ef11fb8fec4bc114d5be0bacaa9134e3f1536e0d6bac1f58ffb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _jTN1lFL0_PS-9DYgE6O2V6s6AYnlGJs0xCEHn761Mxq_asytlaRoQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:40 GMT
age: 48296
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10119
Md5:    15bd53848c7082464273007e010c54e0
Sha1:   9a3ca698ca1aeae695923277ed2244465e01a1ea
Sha256: 36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:13:33 GMT
age: 3783
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8885
Md5:    3a1a4e00f1f15827cf651f373863c379
Sha1:   70c2a238f06ca7e56ef80c83738e081bf0de3330
Sha256: 3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
                                        
                                            GET /swpush.min.js HTTP/1.1 
Host: cdn-dt.fcdn.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.234.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 28 Nov 2022 11:16:36 GMT
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 432810
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J2VQ6Q0vtA9gRvfbr8m17Wc54snkadttQ5FRoIol2gHToJyjDp3bQwJ%2BooO6R8MDi%2Fj4AJtaIH0ViWiHm1MSGE2gEyt5ZyjNxy6Z7TVD4XpqWN4ZXxtZ4hwbrfx%2BiuNcmtMA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13d8e8a74fd-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (34449)
Size:   11254
Md5:    06fd10c15cb7d9518c48a7434d811ca7
Sha1:   01ed736653a5e1e517568af784bac66269cfbab6
Sha256: 5e7513ecc9b7c3ba1e5e52ec834601cba7e6d672f46510f8ac03a00969f96306
                                        
                                            GET /sl/html/RU2/images/bg.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/RU2/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 28 Nov 2022 11:16:36 GMT
content-length: 36598
cache-control: max-age=86400
cf-bgj: h2pri
expires: Mon, 28 Nov 2022 11:39:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85008
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w4BENrWO7%2BDIy32iTZDvaX19Z7Oi8LNWiqABWZ6knXa6m3wxEWxL1Il3x3znAmtTG2n8eIHB7sAAC2ViMs7VyWE1dO4qOOAbEZC5bLE%2FN9Ia8c4ZerP2EL81%2FLhaNK8%2BO5zeu4E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b1401f9a0b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x900, components 3\012- data
Size:   36598
Md5:    c80c180ac6a28573549e83964002870d
Sha1:   f41e5a44394bd1ab5d2ca4aff4a7ced9a5e8ee5a
Sha256: b60b1d5cdb8a5f8ffb975fbb3cd7201f6f27d647ef21b5dbf27839c260381517
                                        
                                            GET /sl/html/RU2/images/age.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/RU2/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 28 Nov 2022 11:16:36 GMT
content-length: 3644
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:49 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85007
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EbWE%2FEh2IGoyY4cwQP9LrDYwxMc5HmSXeVuwmtFFvvfT34LR%2BVtez2DrxsPxVKVFjLGo7irjriRqABE7Sr%2FB%2FC%2BJr2HfN09fCxMOH502uM8Kj65z%2FSgnYpcQaoDKm4wzXwpCxf0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b1401f9b0b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 127 x 113, 8-bit colormap, non-interlaced\012- data
Size:   3644
Md5:    0798f2a9127a2f7d93d2ddd886776b9e
Sha1:   d187d1c08c21c66314943ee855f4d5fb768acd28
Sha256: 0d828a8f43a3fb3ef10e9f925633d3e4a711f39620085bbd310379e9cd4bbacc
                                        
                                            GET /sl/common/favicon.ico HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Mon, 28 Nov 2022 11:16:36 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 5279674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BPKpGwZnHZLdAvnoW9lpjNb%2FzWcbPS9ujbWFxkE%2BIRjnbf%2FLQTkRenvy3JZ%2BPuykRdGp%2F4ULTdUMjR%2Bd8t59UqLPTQqROCLgbm%2FRGfaFHhYBrP02MIdTHuM2rBRHhYEPiZ0dr88%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b140d87c0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Size:   434
Md5:    63d1053e9fe9f7eb81819c89f257feef
Sha1:   59af5293706f43199cbe46304a97a0ac06f0a934
Sha256: 5b0aa29f3b8062052e5a87b2af0c0e7d94d6e7c625614acef4ea6b225e761b95
                                        
                                            GET /sl/common/css/style.css?1669634195 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Mon, 28 Nov 2022 11:16:36 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 29 Nov 2022 11:16:36 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PuqY3XHvJgitnNaJ7aOneEx54KSg2d6V704JDBXc1Oxgi4Qb5uAdh91gb2G3ZM1FTjUpTHA9gqcEyGrdTuXM0CDCMOz0xetZQbhVz28XPfvPdscJAjGHpDFNlmZVSF8gcHgYFGY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13c9b4a0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4045
Md5:    c969024082babbba7625ccfe1200ad70
Sha1:   c33a7ec8815beab95a821a724650f2c8bb3a7a58
Sha256: c70dcb06da7b83355c6f741b7856aee6a14fe1fae9bc1496012b908ddd9be7b1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Mon, 28 Nov 2022 11:16:38 GMT
Etag: "6383694e-118"
Server: ECS (amb/6B9A)
Content-Length: 280

                                        
                                            POST /get-keys HTTP/1.1 
Host: app.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855
Content-Length: 89
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.139.29
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Mon, 28 Nov 2022 11:16:36 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CVovr3v4OwIFd3BKFU4dwY4GyjV4F67Ha7ouCtacPhuowLJIE%2FeAeTcCYXVqRIbxhnUTLr30Ta7%2B39qC9LF2yQqxqh128iJHU%2F9pkgvn%2BCs2S2f7SKE2Jtg7LeM%2FTY2FdLZ3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13f2a8f88bf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2116), with no line terminators
Size:   2494
Md5:    0dc8f1546e9e5b6e80a22f221b231834
Sha1:   6be7ea979397c7d2b26b5ae473ef1f4ade261ea5
Sha256: 5f307794ff5da9a6ada9d3f74ccd34e5dce7e70d48fbd3d1ebbdad6a1e4c7ba2
                                        
                                            GET /click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=4309 HTTP/1.1 
Host: v2.trckguardlnk.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: U-c96c08f8bb7960e11a1239352a479053=unique
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

search
                                         18.195.157.163
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 11:16:34 GMT
location: https://v2.trckguardlnk.com/click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=2202
server: nginx/1.20.0
x-powered-by: PHP/7.4.21
set-cookie: U-f2b5e92f61b6de923b063588ee6e7c48=unique; expires=Wed, 28-Dec-2022 11:16:34 GMT; Max-Age=2592000; path=/; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /click?a=1276&sub_id1=w7s110prbjssprpki2abmfbc&sub_id3=zooxmil855&o=2202 HTTP/1.1 
Host: v2.trckguardlnk.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: U-c96c08f8bb7960e11a1239352a479053=unique; U-f2b5e92f61b6de923b063588ee6e7c48=unique
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

search
                                         18.195.157.163
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 11:16:34 GMT
server: nginx/1.20.0
x-powered-by: PHP/7.4.21
set-cookie: U-dd28e50635038e9cf3a648c2dd17ad0a=unique; expires=Wed, 28-Dec-2022 11:16:34 GMT; Max-Age=2592000; path=/; secure; SameSite=None o_dd28e50635038e9cf3a648c2dd17ad0a=46de84e7-1e89-487f-b036-c60dd26a9c14; expires=Mon, 05-Dec-2022 11:16:34 GMT; Max-Age=604800; path=/; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /sl/html/RU2/js/langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=33329
expires: Mon, 28 Nov 2022 16:37:13 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 67162
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eXn%2BSPuiJ7drsK25y8QHOWDyO2rqFDmg4qi%2BG2lk8EWOVpxWQ82gmrq%2BC%2FmQqFQtnvv1tbl0QwAZ%2BI6WY1efpLnlv83qlei%2BZxU0KPDJ0jesqIQKRntI29Vygrq%2FdbtI%2B1axipk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13cab530b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/RU2/images/p3.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
content-length: 76183
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 11:39:48 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 85007
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zOVN2YgtzdOV7pBfLzN2k1P%2FGoKA8L3j5IDw6hd88a6lWoXrXUelJfIf0XqE5snH3VZPTb0ENmrytT3SiXqLibrBk6lFktpwcdPJ3BqCH%2FJ2%2B0ysXS87ydVmfAXM0lrXAOcebko%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7712b13cab730b49-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/html/RU2/css/style.css HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=8687
expires: Mon, 28 Nov 2022 16:37:12 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:08 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 67163
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=004lhcdd3jwjyfEO92JairhJr9%2BkytBGcSpaE2XgydRhHG7hTjxsEs1LYizNfow1zpLSITRCaNpMCcq3xoUj%2BxlQc5wum5k3Y5NB6Iw1jfjMEJLHZVoo0pUms1mH7XV3S51sO2g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13c9b480b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/privacy-policy.html HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: text/html
                                        
date: Mon, 28 Nov 2022 11:16:36 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Mon, 28 Nov 2022 11:21:36 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1pC9Dxihxh3HM8F3xBJAOzRHqBtph6AU387UvhV%2Fu1xYqS%2BzRch0RUiWUYHThxU3vPM632vfdLVeQuH3rEl7a1p6gMIaGs6ZzZxxIxIhBGsLDuR2bzoUpwXoqgzwsxOr41iIfuQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b1401f7f0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/RU2/n.php?cep=dpZ-5qk_JNUgL6Yv6GKw--s4tUsWTe--3n3kGYWj7D6OqarDF7QJHj6Z4stDzI7VK4UEJYcnTqCJj7SKpDp3WpI-vFOCaS70vh5rXdgto2I9XSVs0H7TPA1o_uD3DIeniUAEPYRruVeuzClMNXhokGxNCEtXYjKdbTzg3Q1J1ZadoknPrGwT0VC-6rA5eAWN6tTdRnlx8Iarj4edoFaRSn8--Wk07XkUWjopNzU9---w2bdF2urwSZGNZ5XoiUKkntXQ23tJG4kWqCNzu1Xnzd4E0JZBTYKr0DHHjQCKauc6jBq2rEKLghKw9EQRljLW8JVooZp4gT1_Bh5dRRdkCY4Cju-06JP-_hBr4fCjqwpPvYYPQZZ7_TUBQabTPcieGdBG5SQzxILzxO8meik7PFB0pqTqAT4IRtuldjTD9oFh7VH2XF8oR2iuJuB3r3cJ&lptoken=16f269236374599b95d0&external_id=abc8c6b796a660abcf0e7ab01a87bd0d&source=1276_zooxmil855 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
cache-control: max-age=300
expires: Mon, 28 Nov 2022 11:21:35 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DIvvYjAeNW5L1aV6eUb%2BB3JmaKHilq4j6AdoYZel5Zys%2BNii7Lp5Zg72jj0wjR3iBdhVqt41E9pChqnoAFpvtCpOz8K7ZLh2McJ3QjXrrUo9A38Johyf3d7qfRp83PqibbRW2bg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b1390ee50b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 16:48:43 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 66471
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kxXEKBl%2BB76vxbipRoEGTXKU%2FlpcGQNPuA4B7%2BR4uJ%2FjmPb8sXT3kJO4rzKT%2FRYa%2Fq3pWjQNo7qU9iFZ0TuFbBdFcgSXgY4Oa7%2Fs8uUbDZpGnCOWnkS%2F1ern%2Bl01Gy0iQD7BHO0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13c9b4e0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 16:48:43 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 66471
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c3MUDBoVlzgrqk9Oo3DndSc8VisLZPzi3JNHmbDN9%2BMfVz0EtXlpowTYqBP8rk2C6t%2FeaDIY%2FXhIydNLGXTQZmH6ED7YmsPHxb5AqqggaPtNLebEvS3Hn%2FQ4Q%2BuUQe6gWYgEz5o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13c9b4d0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/main.js?1669634195 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 28 Nov 2022 11:16:36 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 29 Nov 2022 11:16:36 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uXBQMtIiLxp3uhkv4NuJe40gzBeBFePBQ7MTn3A7fNd%2BwvTHkw8sjxB0LGnUkEGGPmEjiRKy0%2F0JdZi5xPOzu6adkGCATDTGt4AD3Sn%2FvT0k6SIWRbIh%2BtrX62In4M%2F3wQJxpb4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13cab640b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Mon, 28 Nov 2022 16:48:43 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 66471
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xAdVGkUALxZChPcb2YJ%2Bp4JDqumcVV5OlEQ2c3GTqimnkkrneTZvCcgeDpqkyZB67bIEbkvmXDTQn7UexIRJIRh9OkKfI03CCQII0xJXGg98INWlsBNBgMdmkLYQCy2X7lCGu%2Bg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13c9b4b0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/RU2/js/config.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.12.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 28 Nov 2022 11:16:35 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=701
expires: Mon, 28 Nov 2022 16:37:13 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:29:38 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 67162
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e4j2G8ycVxcb7ibYn83LcJ%2Bt%2FWci15hzIOxknOhKVPNhtbttbG7A1jEfcY2P6dY2FuJs6bGjmyWCVIS41mHCA3g7e4TDptLF1wpocAdX0lfZfDXFPxp%2F%2BUcph3h82tpPBCOJChk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712b13cab5f0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing