Overview

URL bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-737007561&source=16295&sum=
IP18.193.146.82
ASNAMAZON-02
Location Germany
Report completed2022-11-15 09:13:19 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-15 2 mycasualhookups.com/sl/common/js/main.js?1668503588 Phishing
2022-11-15 2 mycasualhookups.com/sl/html/ES11/js/modernizr.custom.js Phishing
2022-11-15 2 mycasualhookups.com/sl/common/css/style.css?1668503588 Phishing
2022-11-15 2 mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js Phishing
2022-11-15 2 mycasualhookups.com/sl/html/ES11/js/langs.js Phishing
2022-11-15 2 mycasualhookups.com/sl/html/ES11/js/config.js Phishing
2022-11-15 2 mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode (...) Phishing
2022-11-15 2 mycasualhookups.com/sl/common/js/common-langs.js Phishing
2022-11-15 2 mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js Phishing
2022-11-15 2 mycasualhookups.com/sl/common/js/lib/additional-methods.min.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (13)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.189.157.130
mnemonic passive DNS cdn-dt.fcdn.info (1) 230544 2019-03-21 02:06:06 UTC 2022-11-14 23:59:04 UTC 104.21.234.87
mnemonic passive DNS bl.trackham.com (1) 0 No data No data 18.193.146.82 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-14 06:01:23 UTC 34.102.187.140
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-15 06:00:48 UTC 34.117.237.239
mnemonic passive DNS app.api-push.com (2) 307671 2021-12-06 12:20:56 UTC 2022-11-14 23:59:04 UTC 172.64.139.29
mnemonic passive DNS r3.o.lencr.org (3) 344 No data No data 23.36.76.226
mnemonic passive DNS mycasualhookups.com (15) 0 2016-03-19 22:05:44 UTC 2022-11-15 05:20:51 UTC 104.26.13.87 Unknown ranking
mnemonic passive DNS subscribe.api-push.com (1) 0 2022-06-02 01:41:52 UTC 2022-11-15 07:32:41 UTC 172.64.139.29 Domain (api-push.com) ranked at: 61402
mnemonic passive DNS img-getpocket.cdn.mozilla.net (3) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
mnemonic passive DNS cdnjam.com (1) 204001 2021-02-18 07:53:51 UTC 2022-11-14 23:59:05 UTC 104.21.58.242


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 18.193.146.82

Date UQ / IDS / BL URL IP
2022-12-02 00:19:43 +0000
0 - 0 - 12 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2022-12-01 21:51:14 +0000
0 - 0 - 1 walter-larence.com/e90c5688-f303-43ee-8f72-7d (...) 18.193.146.82
2022-12-01 11:07:14 +0000
0 - 0 - 1 walter-larence.com/32090fb9-a01d-4354-a8dc-ba (...) 18.193.146.82
2022-11-30 21:40:38 +0000
0 - 0 - 11 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2022-11-30 07:34:34 +0000
0 - 0 - 1 walter-larence.com/f8756588-2326-45d7-95cb-b1 (...) 18.193.146.82

Last 5 reports on ASN: AMAZON-02

Date UQ / IDS / BL URL IP
2022-12-02 02:04:41 +0000
0 - 0 - 2 52.62.144.52/234/vbc.exe 52.62.144.52
2022-12-02 02:00:45 +0000
9 - 0 - 3 www.saveprivatedataservice.com/c/67df7174117b (...) 52.19.101.114
2022-12-02 02:00:41 +0000
13 - 0 - 2 odm.analyseyouridentity.site/c/fb54fdd6487220 (...) 52.51.27.131
2022-12-02 01:58:41 +0000
0 - 0 - 1 worood.net/sdawd/9cf716ea1b3a7c018fd44420a746 (...) 99.83.154.118
2022-12-02 01:55:30 +0000
0 - 0 - 1 track.supercosmo.xyz/88144826-3e1c-4c21-ae5e- (...) 18.192.108.151

Last 5 reports on domain: trackham.com

Date UQ / IDS / BL URL IP
2022-12-02 00:19:43 +0000
0 - 0 - 12 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2022-11-30 21:40:38 +0000
0 - 0 - 11 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2022-11-27 21:00:13 +0000
0 - 0 - 12 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2022-11-27 13:15:14 +0000
0 - 0 - 11 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2022-11-24 13:56:59 +0000
0 - 0 - 12 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-22 23:25:40 +0000
0 - 0 - 10 transitgirls.com/GmFMkHVJ 104.21.77.2
2022-11-22 22:51:28 +0000
0 - 0 - 10 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2022-11-21 21:24:32 +0000
0 - 0 - 9 track.morclicks.com/click?pid=461&offer_id=59 (...) 34.147.1.177
2022-11-11 18:14:48 +0000
0 - 0 - 10 meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_636e (...) 52.18.157.191
2022-11-11 18:14:46 +0000
0 - 0 - 10 woulda1.com/?a=16295&c=43694&p=r&s1=&s2=a_636 (...) 52.18.157.191


JavaScript

Executed Scripts (13)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (36)


Request Response
                                        
                                            GET /f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-737007561&source=16295&sum= HTTP/1.1 
Host: bl.trackham.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         18.193.146.82
HTTP/1.1 302
                                        
Server: nginx
Date: Tue, 15 Nov 2022 09:13:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://mycasualhookups.com/sl/html/ES11/n.php?cep=9nWFvtqhDAnE7Pl0MMy2YUZgJ4bGK_FpcpKqIqI3IMStP1Og9lXYnzfEZC_OWlAiyJyPuDOxAgV9JR1HOtjY2_B9JaDQL-qWPHPzD17C52Su_KZkG_3YDqPyKRcV0KlS2o51YEjtr_xOfoMpxZPCLN-7Oq6uNgYRVJkF_YburlEwWwvJzPFkaVluVXm1RuSNDojT75KDNzIqrJs9_pr-aPf_U8F-sqUDmCjDvVwJNsXrR1VSkRU1SYDKhaS71a9Z16206TQrGzONB6ESBeu9EGux6TYI3OLMuRJvcohX1OqvwPj9CHpaFauDBJ9900EB7aZtPCfCTg7j9IzJutKiaLkRasLsJjv9zMB9IKyaQ-hg4-4uiwYGQu9H5fZiGtCZZhifiO27adDsyBBiL1EiRg&lptoken=162868bc50de53178734&external_id=36197-737007561&source=16295&sum=
Pragma: no-cache
Set-Cookie: f9908105-7257-45be-97c0-9990466cb2a4-v4=yzbf3gt5LdSg4TQXGIb_tYNJiSqbZpa5pqOjVofNgo0; Max-Age=86400; Expires=Wed, 16-Nov-2022 09:13:07 GMT; Domain=bl.trackham.com; Path=/; HttpOnly cep-v4=JeFghkuFwqzljSTpmjCqu7yeO3kXcA4AsYTIgF7qZ3YUmhoEsTqppMiDobWTjT9IfJKEGFJJsnTwK1-A7v8bM0rEUvUNSZw9SOUcg9v0Kw-ppnI34QAKDaTnaU1eIUko4alfX-T8woTNj38vSAeiMnNuzDb4XcijjvrJJL7ZH0UEMK48jXDJ9WTYMPsS5J0j1pBVfm90WgMMT1LP26vQOLM-TdzjLniVHIPx342J2SUrxhkwMh9_uvOPE7hafbcVVPu8WsNTaU8CCeTFTyzjDLZXwpVFR-7xfzl_J-gdM4JJcW2dWnmLvjsOCUxn2xm7dHjnaaHaolX2bvf7VYtyr1lr4Gt5pmJRr04M7PjeQKwyRV0hwc-zWOaBuZvKRJm5H49YGLr5XgBDSKBL2hKdpg; Max-Age=86400; Expires=Wed, 16-Nov-2022 09:13:07 GMT; Domain=bl.trackham.com; Path=/; HttpOnly

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15057
Expires: Tue, 15 Nov 2022 13:24:04 GMT
Date: Tue, 15 Nov 2022 09:13:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2250
Cache-Control: max-age=93340
Date: Tue, 15 Nov 2022 09:13:07 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 11:08:47 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 15 Nov 2022 08:44:37 GMT
cache-control: public,max-age=3600
age: 1710
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DB1A82D8A2BACC0257B87EFEC0C365C1B769700FA27CE928321E082505F1D72A"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3840
Expires: Tue, 15 Nov 2022 10:17:07 GMT
Date: Tue, 15 Nov 2022 09:13:07 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: PH1PSomIE0xq7PkN9+8ZWRK+0zcYkyRg15FpUqm3wkp9uu6H/ps70s/p4kqBB80p3Wc02zKKszw=
x-amz-request-id: MX7SAT116QRAVPJK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 15 Nov 2022 08:14:11 GMT
age: 3537
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 15 Nov 2022 09:13:08 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 15 Nov 2022 08:44:48 GMT
cache-control: public,max-age=3600
age: 1700
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4763
Cache-Control: max-age=90796
Date: Tue, 15 Nov 2022 09:13:08 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 10:26:24 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

                                        
                                            OPTIONS /get-keys HTTP/1.1 
Host: app.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-referer
Referer: https://mycasualhookups.com/
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.139.29
HTTP/2 204 No Content
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: content-type,x-referer
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CRVK8YJ8RuD1STwU5IBg76dzZKxsJQBM%2BdZUKdOCo3LA2gt%2F0ETTRytDLrRa5jE6GiZeBl1THAc%2FNAFivZbHAwx0%2BEYvszFeWEeeIN%2BJ9%2BxJQ5TKkFSkA3EiUB8O%2Btj1N%2B4I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de866da373f3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5Fekzs176NhRboH7/crG6g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.189.157.130
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Lvs9BVyCXf5YNd6dwZHq5B7VPd4=

                                        
                                            POST /get-keys HTTP/1.1 
Host: app.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/ES11/n.php?cep=9nWFvtqhDAnE7Pl0MMy2YUZgJ4bGK_FpcpKqIqI3IMStP1Og9lXYnzfEZC_OWlAiyJyPuDOxAgV9JR1HOtjY2_B9JaDQL-qWPHPzD17C52Su_KZkG_3YDqPyKRcV0KlS2o51YEjtr_xOfoMpxZPCLN-7Oq6uNgYRVJkF_YburlEwWwvJzPFkaVluVXm1RuSNDojT75KDNzIqrJs9_pr-aPf_U8F-sqUDmCjDvVwJNsXrR1VSkRU1SYDKhaS71a9Z16206TQrGzONB6ESBeu9EGux6TYI3OLMuRJvcohX1OqvwPj9CHpaFauDBJ9900EB7aZtPCfCTg7j9IzJutKiaLkRasLsJjv9zMB9IKyaQ-hg4-4uiwYGQu9H5fZiGtCZZhifiO27adDsyBBiL1EiRg&lptoken=162868bc50de53178734&external_id=36197-737007561&source=16295&sum=
Content-Length: 89
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.64.139.29
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 15 Nov 2022 09:13:09 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S8CnojV4iLMbFoE35bpzzpUC2hXcC0rVniLoNXEyeegODC0fZvx5fF1jxZrb5q6OtTduhDBBDmnbB6MwDANyFVAPJps8qkKNRotMA8bYPlhot5pkIM86gh0gjam0bpU5UlHk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de86cdee73f3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2116), with no line terminators
Size:   917
Md5:    513e2d6f7c4afa7a467e568b61c21860
Sha1:   ac4f6c25cdb7c39831cb5fbb29145329a81abee4
Sha256: a1d29eaf84ca426460dada1ebf6d4d2c709ad23201f8bc53d4f9dbdc65aa4d20
                                        
                                            GET /sl/html/ES11/css/style.css HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=8344
expires: Tue, 15 Nov 2022 14:06:39 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 68789
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Z3fdVRgTpH6PHonIgv1C7Kza5DC4JzynreMGah2l894xQkTwO6P4adtLd1LgwTWIRl6qXDAzF01y2RgXKTd4ZFGWbvwRuLNU3NhwgDocGXqvYTdYe6aW%2FFUduypMdcixetxHQM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de852d92b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6417), with no line terminators
Size:   170922
Md5:    5ff8b2de2c01a9e9bb8714513a29d3e1
Sha1:   e202781dd305752adcf09b259265dfe386d2ec36
Sha256: e1c81dec9f2ceaee018c2997134e8e2b2eb28777ecefef8a2a7800820dfd0270
                                        
                                            GET /sl/html/ES11/images/bg.png HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/html/ES11/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 15 Nov 2022 09:13:09 GMT
content-length: 938
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
cache-control: max-age=86400
expires: Tue, 15 Nov 2022 23:37:29 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 34539
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lkyui%2F%2FrSBRhpp5RUVWfAMu9b1gigqSNWb1ttjfL4WE2Xae%2BZGT%2FFrTGK%2FGJwFklemr5v38OuSK54JvXqSlO8st3%2F%2BLGtwrgXt27gopzqpBJQzUQ4csan5DsSMcoz2VAPc3MGws%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a6de88ba3eb50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 4 x 4, 8-bit/color RGBA, non-interlaced\012- data
Size:   938
Md5:    4a31108b720e625e216849d8cc915a7c
Sha1:   2f402a077c309a2921b5f1b3c658b1a5cc1dcf51
Sha256: bbbb6afb30bdc0a925e7ce10fdcd74613185d5fc2060c1dc2efee7693a4c8d1f
                                        
                                            GET /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1 
Host: subscribe.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/ES11/n.php?cep=9nWFvtqhDAnE7Pl0MMy2YUZgJ4bGK_FpcpKqIqI3IMStP1Og9lXYnzfEZC_OWlAiyJyPuDOxAgV9JR1HOtjY2_B9JaDQL-qWPHPzD17C52Su_KZkG_3YDqPyKRcV0KlS2o51YEjtr_xOfoMpxZPCLN-7Oq6uNgYRVJkF_YburlEwWwvJzPFkaVluVXm1RuSNDojT75KDNzIqrJs9_pr-aPf_U8F-sqUDmCjDvVwJNsXrR1VSkRU1SYDKhaS71a9Z16206TQrGzONB6ESBeu9EGux6TYI3OLMuRJvcohX1OqvwPj9CHpaFauDBJ9900EB7aZtPCfCTg7j9IzJutKiaLkRasLsJjv9zMB9IKyaQ-hg4-4uiwYGQu9H5fZiGtCZZhifiO27adDsyBBiL1EiRg&lptoken=162868bc50de53178734&external_id=36197-737007561&source=16295&sum=
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.64.139.29
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 15 Nov 2022 09:13:09 GMT
content-length: 5
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QkHMdnjqvFw9P9B9tco9si2kAzxmMLe0Kg7DSOXikYj9qxUiNTdGesrr8IoAPjffmf%2FVofsaT0YLvDmxF0z7Fzwp2AESAb%2FBbqyB6AFGOBQX4sTRW4CurRDunmNQglQilr%2FNuHoofKys"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de883f8673f3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   5
Md5:    68934a3e9455fa72420237eb05902327
Sha1:   7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
Sha256: fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12389
Expires: Tue, 15 Nov 2022 12:39:38 GMT
Date: Tue, 15 Nov 2022 09:13:09 GMT
Connection: keep-alive

                                        
                                            GET /sl/common/js/main.js?1668503588 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 15 Nov 2022 09:13:09 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Wed, 16 Nov 2022 09:13:09 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u55a9DAjIGEodHYokD6KPalYTbG7TCUFBzEuTfb%2B63m%2BNaKmq5RSz8nZ4q1NTyP2kBKI%2BFYIZ78rIszfQRw%2BKwAroavC%2Bn7ajNYIy1qBOmBBhVwv8N1goph%2Bw2rQ2Zfxa2ZchiQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de853da5b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2321
Md5:    62ef094a4e3a6b404e91d9ad340a863c
Sha1:   83d3d37563da6ad9dadc5a7ce85f2dc593d5c92d
Sha256: de33498ee81a73fc69c9ccb369488d802a416c745eb39a98b151f38cb5681279

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/ES11/js/modernizr.custom.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=8371
expires: Tue, 15 Nov 2022 23:37:28 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 34540
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JA3Nycrpxmdz5L0FjsLeDss%2BNHwBgMBhhvmA7cI41v%2BMe0mca1w%2BTlM6JLtHZjmxZurjXYV4PiIlO%2BKb8D%2BhU%2BanhBEzX6%2B7SYSZ0yJ1vh46x5PWTgiVxTLb%2B0jR1uVTULYWB4g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de854db9b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (8200), with no line terminators
Size:   4108
Md5:    ad0349ea62f9e7fc4c4131de2cf0d37d
Sha1:   a69ac442267fd51b6aad0a09faf2f98d06d8362d
Sha256: 5822f8ce8f3ad05d3bdb308d4829d24a632189471e84cb2fee03e0b7057b74c0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/css/style.css?1668503588 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 15 Nov 2022 09:13:09 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Wed, 16 Nov 2022 09:13:09 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uJsPHYThzXBNbCmP%2B6vzChd0eeGkKxb5IBxWskBPrvl58wSMPP79ieTtzKObYFNyTYoknVwptu391rZTYTHgO9gS6xpoKgZm9uEPi8%2BII%2BDeYWUB0UIQfKITdPYugy8vR5VFIls%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de852d93b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   12513
Md5:    57bb5762bfdf2a57abeb23b5ad4fbf66
Sha1:   2cfced5c2dab19a5358ce09370eb1f424ab2c39a
Sha256: 8037a12f4795eba16446877a0973ace585d418ba0637c2e785caf65e3961af57

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 15 Nov 2022 15:29:09 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 63839
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XebGKdjM5WscPlmWFJz2vfB8V6pzhualhmTXdxyrLjE%2F%2FODgHrkHF7Gnya4XVbSd%2BZBmXFrXrszZZQfyCvOKMaCj%2BpVWi2sWa9N1rEemU%2FYC2kGbFTVre7Q3nBA0tP4zTczP2d0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de852d96b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (23122)
Size:   18345
Md5:    56685804533581271cb95f22e9be2e50
Sha1:   d71f537fe41d9b3f116dd0a1b617d61a0031941d
Sha256: d3dde0e51197611d54619f8944095c1ce92f2a6789b08e341f1f955157230aa5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/ES11/js/langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=68596
expires: Tue, 15 Nov 2022 18:14:04 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 53944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i1528bjOuLIdikb9HO5n%2B9TLAMT47HdcEl2ifoYM6OpHCT%2FOX6kc8yW%2BXqAnqs%2F4Q3XUv9oVLx41WMxEwf0mpvpydJVbAiJhOm5Ge8k8aIKeWqH5YvQ1NV7HP1pk9TwqvNPsrq0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de852d9bb50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (46348), with no line terminators
Size:   34197
Md5:    8bc1d4369eb7718fa7f5ef22e176fdda
Sha1:   be542a25a71e284ed2f7477e1c776645b122cf78
Sha256: cdd61d2a939f006423e2384e25861053945b57da96f7c693e3fcfdf5781b6526

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9311
x-amzn-requestid: 32874a50-bbc5-4246-a819-cd65fe918bd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bKuFsG5IIAMF7zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63675d57-64c21f6448b29b4710c8c638;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 07:08:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wLkQgLmUk7U5jQPXEljFQpuwHVgHUKHHA63UwzEicdLPMMo1decu3g==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 05:54:08 GMT
age: 11941
etag: "7295ef4c52bcea1be24b963d7ff170ef5bacf713"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9311
Md5:    c5f45accbd2d3551103631fa77deee8f
Sha1:   7295ef4c52bcea1be24b963d7ff170ef5bacf713
Sha256: 495e2cef9d9ebec66f1ddcf478512af7e37a301b562d7b75e5d28bb7753d2290
                                        
                                            GET /sl/html/ES11/js/config.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=701
expires: Tue, 15 Nov 2022 23:37:28 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:27:45 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 34540
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4P9fA%2FxDk7znhSHPNMhFtWrgbJk2sJOmMoymvxBOPxy5gTOe78HkbhOaHIqA6OMF3jzNKtzhn6jsqZ6uHmDlkYk%2BnsEb0Qn7tcCYuEtGaYCyIKNTQWolSPOuiCNwLhF4CdTuodo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de852da2b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (332)
Size:   6044
Md5:    546fc90060a29054d0c759aa8fba5e54
Sha1:   6969a6dbda22cb883d31e2fd0234613d23ebe9cf
Sha256: d757547c6afcf4f687e1cbac06c7ae53d2c3aba8fe49d08352250cd827c55269

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50ad5043-e51e-4766-8f6a-d0782645cc84.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11290
x-amzn-requestid: e56e4731-696e-4c63-9b48-1be184b32098
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bhPzMHOEoAMFVJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63706014-22c49f066ed90cf35d5bba3d;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 03:10:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: RXdcX1PweMfXctBjufkeOtyV8F9Yb8OyZJaUX38cdaswfBHCim7mGQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 04:13:35 GMT
age: 17974
etag: "2ca4915631ddcda64c1cb70674f4b1379e288050"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11290
Md5:    49fc9477e5982c76b5205fe284f50848
Sha1:   2ca4915631ddcda64c1cb70674f4b1379e288050
Sha256: 496e4e4317538bd34bc6bc28f0c772b7afaf0edac6d2a8686f5e6c4f44331bb4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3383
Cache-Control: max-age=105951
Date: Tue, 15 Nov 2022 09:13:10 GMT
Etag: "637245ce-117"
Expires: Wed, 16 Nov 2022 14:39:01 GMT
Last-Modified: Mon, 14 Nov 2022 13:42:38 GMT
Server: ECS (amb/6B8E)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3383
Cache-Control: max-age=105951
Date: Tue, 15 Nov 2022 09:13:10 GMT
Etag: "637245ce-117"
Expires: Wed, 16 Nov 2022 14:39:01 GMT
Last-Modified: Mon, 14 Nov 2022 13:42:38 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f468d3-7a15-4d9a-b9b7-5c6fbf2260a2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5827
x-amzn-requestid: 13f1239a-4f37-4c8d-9114-f6880e1883a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bnEhrGqzIAMFfvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6372b470-2605b8f41ebacb1d5da15dca;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 21:34:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rjUz_LZxMkyAQlwkskJ8gG6w-lG_FgI20NbRPt4jB7Drkji35OCnTw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:45:53 GMT
age: 41243
etag: "86a2e71c436e8af1cf117aad1d614c3ac0e53df3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5827
Md5:    e933dcdb5b2f2b23e2a76371e20a5764
Sha1:   86a2e71c436e8af1cf117aad1d614c3ac0e53df3
Sha256: d0a1abda9256eff9be44c5556abc865e75c076bf99b9295b0d7d8edccf6def68
                                        
                                            GET /sl/html/ES11/n.php?cep=9nWFvtqhDAnE7Pl0MMy2YUZgJ4bGK_FpcpKqIqI3IMStP1Og9lXYnzfEZC_OWlAiyJyPuDOxAgV9JR1HOtjY2_B9JaDQL-qWPHPzD17C52Su_KZkG_3YDqPyKRcV0KlS2o51YEjtr_xOfoMpxZPCLN-7Oq6uNgYRVJkF_YburlEwWwvJzPFkaVluVXm1RuSNDojT75KDNzIqrJs9_pr-aPf_U8F-sqUDmCjDvVwJNsXrR1VSkRU1SYDKhaS71a9Z16206TQrGzONB6ESBeu9EGux6TYI3OLMuRJvcohX1OqvwPj9CHpaFauDBJ9900EB7aZtPCfCTg7j9IzJutKiaLkRasLsJjv9zMB9IKyaQ-hg4-4uiwYGQu9H5fZiGtCZZhifiO27adDsyBBiL1EiRg&lptoken=162868bc50de53178734&external_id=36197-737007561&source=16295&sum= HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
cache-control: max-age=300
expires: Tue, 15 Nov 2022 09:18:08 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iEzlr48ZdxHB9oLBdrJh3BuMyNt0vPS7qqE4DFAeJZv%2FkQVIWe8fXNt6n9cHnPHd%2FibNW5UvAKh7e3M5eMR2P89Hn%2FvaInjpJj%2BOhZ4GEWZ4UIi8b9j41ePCI6wywgaMyGZVzS8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de812876b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/html/ES11/images/01.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
content-length: 58814
cache-control: max-age=86400
cf-bgj: h2pri
expires: Tue, 15 Nov 2022 23:37:29 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:07 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 34539
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iXEEmLvhSVo5Dh9g5cSY8sKM8K8rUBDNvJYDUNJtukdStFlh004mG52H%2B6ETfRTA5wLVVZPoc7NlhlVWhv3YpVmjKEd80R6GUf4BZKJyT02UV82RDgEhj3RPbBXoyE%2B8FiGOhrY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a6de854dc0b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/common/privacy-policy.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 15 Nov 2022 09:13:09 GMT
last-modified: Wed, 09 Nov 2022 12:52:00 GMT
etag: W/"636ba270-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W7J4pvW2L9UVp4LvbACjrQuLYeCEVZdiaR92bMFHQHmYZe5i2NuxbQhjCCXlQ94PsBRp2REN1jTI23Iji%2FUrVeK6LU0MmjdI5yYZLQ6FfUDAZrFNesURvrh8Fdw8Znu8e7njJwk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a6de89bb86b50b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 17 Nov 2022 09:13:09 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /swpush.min.js HTTP/1.1 
Host: cdn-dt.fcdn.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.234.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1721887
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yz4YdqpbIKLBACu4DKF%2FxEA3ffVbjRsJI7FHToVyBrZpAkswGO1tR%2FtK5zX6YTkb3BxKVUnvOv%2BFIq8cW%2F3oYppwndlSbDX9OdpbIMZWycMdueu1Bh1LWA%2B5IWgNKMl1anYy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a6de85cdb7f3e7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/js/common-langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=19528
expires: Tue, 15 Nov 2022 15:29:09 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 63839
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=exD83it3ZRTRKBf6HACND9CoWwJ3cKm44FtHtIphX7XLckEpXl4%2FeLk6spePaFFc7bsgRrJeItwIkTnL53w1IB3Szrg2gHsE5cmAW4eIRviwxc79VoE%2BwqDtrwXq3HQxmow%2Br9c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de852da4b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 15 Nov 2022 15:29:09 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 63839
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s7%2FrbI5oE1aRn7WYFbBXvJ8yNTRmsM6NJB1NlkHlitncIa%2BJfXIGTxX2qAvapkt5DHxYurqLjCJ4T9sQe2KI3PdCDB5LunpQ1faaQN7NGVPi%2BEapjl4UpmRFTtj%2FnddAE3bVZ5I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de852d94b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 15 Nov 2022 09:13:08 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Tue, 15 Nov 2022 15:29:09 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 63839
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TeXSyXDHlWtlpVLjPJSy5pG8xJ%2BVyayE2xgXDF%2FSpbJ5icIPtypT5kjJ2onzjFcpokCyeAPxvSwZkMqUc7x35yBzeZ3djEF1%2BzytUXaA%2BmBl%2BYECDRQhH5oxSThV8k%2BpVK5vhsU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de852d98b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cdn/sdialog.min.css?_=4 HTTP/1.1 
Host: cdnjam.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.58.242
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 15 Nov 2022 09:13:10 GMT
content-security-policy: block-all-mixed-content
etag: W/"1d16caacad4ad6c40a99319a5d183947"
last-modified: Mon, 22 Nov 2021 08:00:52 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 16F5E342988C7B8C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 6027
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hd%2FCT8bUpChEsqOyyRAI91VdsUzPo2LJzfcYP2cbBe0O73KSqhMNojxmzMOCg5J%2BksoGmLnY1n8puB6dYcmzTDxzOEJNMGeVEULMsWgtM8W4OFFDDtDVb4t2UNng"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a6de903b220b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/favicon.ico HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.13.87
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Tue, 15 Nov 2022 09:13:09 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 4149067
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SnooCSMQE8Pz63kMShmsUkH59VjCte3l2Obd97VWeja253L1B2o8tw4YjOETAyhHvif911a9pnS7SNeR83qMH%2FVk%2BmDdTrNzdo%2BkxMj0q7fM06OgX5%2FD%2FhRSu6tkbFJLw7Go0eA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a6de899b57b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---