Overview

URLkissmeslowly.com/BqDqwv2R?tag=Dj-500
IP 172.67.192.4 (United States)
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-02 06:14:10 UTC
StatusLoading report..
IDS alerts0
Blocklist alert13
urlquery alerts No alerts detected
Tags None

Domain Summary (21)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
kissmeslowly.com (1) 0 2020-08-18 15:22:59 UTC 2022-12-02 05:38:48 UTC 172.67.192.4 Unknown ranking
cdn-dt.fcdn.info (1) 230544 2019-03-21 02:06:06 UTC 2022-12-01 14:35:11 UTC 104.21.234.87
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-12-01 17:14:08 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-01 17:12:49 UTC 34.117.237.239
m.luvmenow.com (1) 0 2022-06-21 00:24:53 UTC 2022-12-02 00:02:13 UTC 172.67.165.172 Domain (luvmenow.com) ranked at: 252436
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 44.242.3.166
meshho.com (1) 0 2022-02-03 20:33:01 UTC 2022-12-02 04:33:55 UTC 54.154.42.150 Unknown ranking
ocsp.pki.goog (6) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.131
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
cdnjam.com (1) 204001 2021-02-18 07:53:51 UTC 2022-12-01 21:36:16 UTC 172.67.166.71
ocsp.digicert.com (6) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
ocsp2.globalsign.com (2) 1544 2012-05-23 18:10:04 UTC 2020-03-15 21:19:16 UTC 104.18.20.226
fordats.com (1) 0 2020-01-16 16:22:18 UTC 2022-12-02 04:33:55 UTC 54.154.42.150 Unknown ranking
bl.trackham.com (1) 0 No data No data 18.193.146.82 Unknown ranking
mycasualhookups.com (20) 0 2016-03-19 22:05:44 UTC 2022-12-01 19:55:44 UTC 172.67.71.67 Unknown ranking
app.api-push.com (1) 307671 2021-12-06 12:20:56 UTC 2022-12-01 21:36:16 UTC 172.64.162.28
r3.o.lencr.org (4) 344 No data No data 23.33.119.27
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-12-01 17:28:41 UTC 142.250.74.106
subscribe.api-push.com (2) 0 2022-06-02 01:41:52 UTC 2022-12-01 14:35:12 UTC 172.64.162.28 Domain (api-push.com) ranked at: 61402
makeyourwet.com (1) 0 2021-08-03 19:31:03 UTC 2022-12-02 04:33:50 UTC 172.67.175.125 Unknown ranking

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-02 2 kissmeslowly.com/BqDqwv2R?tag=Dj-500 Phishing
2022-12-02 2 mycasualhookups.com/sl/html/DE10/js/custom.js Phishing
2022-12-02 2 mycasualhookups.com/sl/common/js/lib/jquery.validate.min.js Phishing
2022-12-02 2 mycasualhookups.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode (...) Phishing
2022-12-02 2 mycasualhookups.com/sl/common/unsubscribe.html Phishing
2022-12-02 2 mycasualhookups.com/sl/common/cookies-policy.html Phishing
2022-12-02 2 mycasualhookups.com/sl/html/DE10/js/langs.js Phishing
2022-12-02 2 mycasualhookups.com/sl/common/css/style.css?1669961641 Phishing
2022-12-02 2 mycasualhookups.com/sl/html/DE10/js/config.js Phishing
2022-12-02 2 mycasualhookups.com/sl/common/js/main.js?1669961641 Phishing
2022-12-02 2 mycasualhookups.com/sl/common/js/lib/jquery-3.3.1.min.js Phishing
2022-12-02 2 mycasualhookups.com/sl/common/privacy-policy.html Phishing
2022-12-02 2 mycasualhookups.com/sl/common/js/lib/additional-methods.min.js Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.67.192.4
Date UQ / IDS / BL URL IP
2023-01-30 05:21:25 +0000 0 - 0 - 10 kissmeslowly.com/sWxQwTdZ 172.67.192.4
2023-01-01 00:21:22 +0000 0 - 0 - 11 kissmeslowly.com/ 172.67.192.4
2022-12-09 19:53:46 +0000 0 - 0 - 13 kissmeslowly.com/?_lp=1&_token=uuid_a2ehg47b7 (...) 172.67.192.4
2022-12-02 06:14:10 +0000 0 - 0 - 13 kissmeslowly.com/BqDqwv2R?tag=Dj-500 172.67.192.4
2022-11-16 15:24:07 +0000 0 - 0 - 1 196zz.cn/ 172.67.192.4


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-02-09 02:55:33 +0000 0 - 0 - 1 gitlab.com/proswapper/sdgsgs/-/raw/main/65138 (...) 172.65.251.78
2023-02-09 02:54:36 +0000 0 - 0 - 2 cdn.discordapp.com/attachments/83524623567788 (...) 162.159.133.233
2023-02-09 02:52:53 +0000 0 - 0 - 2 healthbenefitlifestyle.com/Argentina-sweeps/t (...) 172.67.191.21
2023-02-09 02:51:38 +0000 0 - 0 - 3 steamnconmuntiy.com/profles/765611979602799287 188.114.97.1
2023-02-09 02:51:18 +0000 0 - 0 - 1 blog.pamieciprzyszlosc.pl/wp-includes/js/tiny (...) 104.21.51.154


Last 5 reports on domain: kissmeslowly.com
Date UQ / IDS / BL URL IP
2023-01-30 05:21:25 +0000 0 - 0 - 10 kissmeslowly.com/sWxQwTdZ 172.67.192.4
2023-01-08 18:55:06 +0000 0 - 0 - 14 kissmeslowly.com/g7v2dHmL 104.21.20.87
2023-01-01 00:21:22 +0000 0 - 0 - 11 kissmeslowly.com/ 172.67.192.4
2022-12-09 19:53:46 +0000 0 - 0 - 13 kissmeslowly.com/?_lp=1&_token=uuid_a2ehg47b7 (...) 172.67.192.4
2022-12-04 14:52:14 +0000 0 - 0 - 11 kissmeslowly.com/LqdPDHT6?dir=cam 104.21.20.87


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-02-02 05:56:37 +0000 0 - 0 - 14 toomoffr.com/?a=16295&c=43694&p=r&s1=&s2=a_63 (...) 52.51.210.211
2023-01-25 06:02:09 +0000 0 - 0 - 11 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2023-01-24 22:18:38 +0000 0 - 0 - 12 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82
2023-01-23 06:27:15 +0000 0 - 0 - 10 meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_63ce (...) 52.19.202.187
2023-01-22 09:43:43 +0000 0 - 0 - 13 bl.trackham.com/f9908105-7257-45be-97c0-99904 (...) 18.193.146.82

JavaScript

Executed Scripts (12)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (61)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7917
Expires: Fri, 02 Dec 2022 08:25:55 GMT
Date: Fri, 02 Dec 2022 06:13:58 GMT
Connection: keep-alive

                                        
                                            GET /BqDqwv2R?tag=Dj-500 HTTP/1.1 
Host: kissmeslowly.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.67.192.4
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 02 Dec 2022 06:13:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate,post-check=0,pre-check=0
Expires: 0
Last-Modified: Fri, 02 Dec 2022 06:13:58 GMT
Location: https://makeyourwet.com/yrbPvQjh?s1=s8hnpa79j9g9&tag=17392&s2=frd
Pragma: no-cache
Set-Cookie: _subid=s8hnpa79j9g9;Expires=Monday, 02-Jan-2023 06:13:58 GMT;Max-Age=2678400;Path=/ _token=uuid_s8hnpa79j9g9_s8hnpa79j9g9638997a6a10356.57289792;Expires=Monday, 02-Jan-2023 06:13:58 GMT;Max-Age=2678400;Path=/ 9bf24=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE3NTU5MVwiOjE2Njk5NjE2Mzh9LFwiY2FtcGFpZ25zXCI6e1wiMTczOTJcIjoxNjY5OTYxNjM4fSxcInRpbWVcIjoxNjY5OTYxNjM4fSJ9.o7IJ5e67faVoupo-TPDiptpMmcxfy7VMoofqC4_FHoQ;Expires=Sunday, 03-Nov-2075 12:27:56 GMT;Max-Age=1670048038;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QI5uuOf8%2BMkDLpQNJ2Jk%2FErYgOPs5V6dvbHyC7E60%2BSftKzkQhXsaB%2Bq2IOEGjAFs9WDT3VBueb07iIIkFAM%2F50n75C16hFltSlvqzeOxrpEqGQeEeIOu6ukVHszQxuX1kJX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7731eb712eb5fac4-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1335
Cache-Control: 'max-age=158059'
Date: Fri, 02 Dec 2022 06:13:58 GMT
Last-Modified: Fri, 02 Dec 2022 05:51:43 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2387
Expires: Fri, 02 Dec 2022 06:53:45 GMT
Date: Fri, 02 Dec 2022 06:13:58 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 05:18:11 GMT
cache-control: public,max-age=3600
age: 3347
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: JxExJYMQWrf62XGa2eMuyUUwCpn630EP4RlyQMgPsd7cpAY6iCr3lMvDnwj0Jjl/5L3cDOT8khg=
x-amz-request-id: 0WKY4PNK1V0TVQ5H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 05:45:59 GMT
age: 1679
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 02 Dec 2022 06:13:58 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=159042
Date: Fri, 02 Dec 2022 06:13:59 GMT
Etag: "638961e9-116"
Expires: Sun, 04 Dec 2022 02:24:41 GMT
Last-Modified: Fri, 02 Dec 2022 02:24:41 GMT
Server: nginx
Content-Length: 278

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 06:11:15 GMT
cache-control: public,max-age=3600
age: 164
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=159042
Date: Fri, 02 Dec 2022 06:13:59 GMT
Etag: "638961e9-116"
Expires: Sun, 04 Dec 2022 02:24:41 GMT
Last-Modified: Fri, 02 Dec 2022 02:24:41 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /click?offer_id=5246&pid=31423&ref_id=s8hnpa79j9gd&sub1=28575&sub2=91.90.42.154&sub3=s8hnpa79j9gd&sub4=s8hnpa79j9g9&sub5=frd&sub6=&sub7=&sub8=17392 HTTP/1.1 
Host: m.luvmenow.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         172.67.165.172
HTTP/2 302 Found
                                        
date: Fri, 02 Dec 2022 06:13:59 GMT
content-length: 0
location: https://meshho.com/?a=16295&c=43694&p=r&s1=&s2=a_638997a78e81b30001854b65&s4=31423
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=638997a78e81b30001854b65; expires=Sat, 02 Dec 2023 06:13:59 GMT; secure; SameSite=None afoffers={"5246":1669961639}; expires=Sat, 02 Dec 2023 06:13:59 GMT; secure; SameSite=None
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FnG1am8mrkMAvQ0Uh50w2WgWIyD3TTxFJJ85odNDyDL9hahCvetJH6D0n0a5Dn0Lxf7d6ZbfcHCcJmA3FTozwYlEh80BKpxHFmO%2FVLRTqUEYuyJxDGxGXTOU2rIGf1%2FsCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb762ebeb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1318
Cache-Control: max-age=98088
Date: Fri, 02 Dec 2022 06:13:59 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:28:47 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NG7hU2IzK27Icwn9jqIulA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         44.242.3.166
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Mct7pCN262N2e2ua5OREjT5fiHQ=

                                        
                                            POST /gsalphasha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 02 Dec 2022 06:13:59 GMT
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 06 Dec 2022 03:40:10 GMT
ETag: "948b2be5c27759ecb122714bfd4e7b06810e4414"
Last-Modified: Fri, 02 Dec 2022 03:40:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7731eb775931b529-OSL


--- Additional Info ---
Magic:  data
Size:   1423
Md5:    ddce8417460e8c9d517378b9f49a5f85
Sha1:   948b2be5c27759ecb122714bfd4e7b06810e4414
Sha256: d38bb619c62a9c79d4f1d1a887efe390b17a30181730bdd381d4cb3a6cb0669c
                                        
                                            GET /?a=16295&c=43694&p=r&s1=&s2=a_638997a78e81b30001854b65&s4=31423 HTTP/1.1 
Host: meshho.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         54.154.42.150
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Content-Length: 269
Date: Fri, 02 Dec 2022 06:14:00 GMT
Location: https://fordats.com/?a=16295&c=43694&p=r&s1=&s2=a_638997a78e81b30001854b65&s4=31423&ckmguid=a69e8eb8-944a-47fd-b999-21dd8fe8cb6f
Connection: close


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   269
Md5:    c6b8f972ab113834adbc6bfc01330aa1
Sha1:   8d86ad4255aefec2cd222f4b19eb37c8339a6b3b
Sha256: 8b42a56a2045a894752288c97c2337d1c556daff45c672172876854504faf380
                                        
                                            POST /gsalphasha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 02 Dec 2022 06:14:00 GMT
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 06 Dec 2022 05:58:54 GMT
ETag: "0c1dce91ede3add25fead46245e5e2f55a63dc88"
Last-Modified: Fri, 02 Dec 2022 05:58:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7731eb7b1c64b529-OSL


--- Additional Info ---
Magic:  data
Size:   1423
Md5:    df0534e47269d859effc22b7ee9a94b4
Sha1:   0c1dce91ede3add25fead46245e5e2f55a63dc88
Sha256: 14eb22b7d7bec11ef0ba7bdd310990a5cab2d61b2052e1b479498637803c4713
                                        
                                            GET /?a=16295&c=43694&p=r&s1=&s2=a_638997a78e81b30001854b65&s4=31423&ckmguid=a69e8eb8-944a-47fd-b999-21dd8fe8cb6f HTTP/1.1 
Host: fordats.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         54.154.42.150
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Content-Length: 234
Date: Fri, 02 Dec 2022 06:14:00 GMT
Location: https://bl.trackham.com/f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-738829838&source=16295&sum=#p#
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=tWfSZvN/n2dCb0w7dKdawfjLQkQh4I3XBj305KJQPc+HXxNQb9gOqg==; domain=.fordats.com; path=/; HttpOnly trk=jNkOX63HNANlQf0lAaaYSPjLQkQh4I3XBj305KJQPc+HXxNQb9gOqg==; domain=.fordats.com; expires=Mon, 02-Dec-2024 06:14:00 GMT; path=/; HttpOnly c36197=tWfSZvN/n2e4d2MQMwzpdI0pTl9qF74PLOB1aqFFfENeCUghiDE1Zg==; domain=.fordats.com; expires=Sun, 01-Jan-2023 06:14:00 GMT; path=/; HttpOnly
Connection: close


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   234
Md5:    8706bd5587cd8d70c099af1d53d46c37
Sha1:   c0b6a7b73d3a678304aca9e382345fe4a9d5d54e
Sha256: 2cb816f638dcc08dba2a69c2286437ef734cf5064b576c0bfa77faf6e27d5f9b
                                        
                                            GET /f9908105-7257-45be-97c0-9990466cb2a4?external_id=36197-738829838&source=16295&sum= HTTP/1.1 
Host: bl.trackham.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         18.193.146.82
HTTP/2 302 Found
                                        
server: nginx
date: Fri, 02 Dec 2022 06:14:00 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://mycasualhookups.com/sl/html/DE10/n.php?cep=FVBiiCEFGqhw6YW-xRvov6phFYoiFA1qpkPgZBwKLvu1Q2pZSTcYxIFUlb4qk2IaqYlnQO8akOHqMMmAwl5o3e7B5KejPsTCWMsTJgzsJIEDhv057pyg72lZ-y5eOoEZsMbyhbprTVN6K3zgVdI7Ag8c1anKBt-E0zkwOLCJFs22QPeqxMzSPMY3lY-7XJq8aJXwqCH79z94udJbR0Di_Fuw-yr7wws9gYCeImeqW7G-3usams_J_WULYbIuaxWTkkvesU16Zt_mbszWuwued9EPP2Kw91m_mC0TYQaAvlXFnluR7rIwg_gnzhWrMcFMp4P9UDPyvIq3RZGXxD-1pecatrox1a_57Rvopbfu_0wZSytf9E2PiRa_bqKQIpdsuGB1Zmne23TbtLATD1BXnw&lptoken=1615692596fa34ff4029&external_id=36197-738829838&source=16295&sum=
pragma: no-cache
set-cookie: f9908105-7257-45be-97c0-9990466cb2a4-v4=r36MEJqNXW-sAtC8aywKnNPhEw5JUfgVqtFmC8IqVWg; Max-Age=86400; Expires=Sat, 03-Dec-2022 06:14:00 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None cep-v4=CPXelCwbdVUaTy1dBurHDgJDJxvCI_j38mE9NWawDl6N8U_vijY3-PRCSrfwFj1mPbZEovtdzGUMfRd-rn9auLhd9etr2-iCtuMd3pTerH1nEBRLiCpyHyzhEEZbYYUFenNrfChNpJt3qQfxpGWAl1zeEwZ11g9JJAFRAYFnpGjhwj_SlysPUFqObQvXYmlsAJCTpUZK2sBqV_hh-hg9uIXpZDfjc9k-zFZouaUTEAZrQqK6q-KiRrBWwPuojr5ErDgNNfWDwTuHZ7IOfxPOwLEfvl3xrlfGlzNgVqQZMiuA0UMRmzH8mH_P4ZNETjge3et9zYijRkBj5tKFXQxz7L0Rcgjv7OrunWzVlyjDpJuXPXb4rmEe-0JRZCpzP26hYidQqfFhNVKiNMEv0qr1MQ; Max-Age=86400; Expires=Sat, 03-Dec-2022 06:14:00 GMT; Domain=bl.trackham.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2

                                        
                                            POST /s/gts1p5/Dt6OUty8wSY HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 02 Dec 2022 06:14:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6509
Expires: Fri, 02 Dec 2022 08:02:30 GMT
Date: Fri, 02 Dec 2022 06:14:01 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6509
Expires: Fri, 02 Dec 2022 08:02:30 GMT
Date: Fri, 02 Dec 2022 06:14:01 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4840
x-amzn-requestid: 6bc8fa91-5696-4bc6-b1e7-3c36b2c01801
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGxTFxyoAMFRzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e6e-3e85b78905aaa73726eef85a;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UraCGe--VISONXzaUBpA7vuLuD5l7zihtQIph7LVn1QsS8MjLBbvKw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 30310
etag: "5ce119089f4a4cd139b523889b6cd84cd79191f4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4840
Md5:    60ccdde4ce64b4a3fe6fc2a059b3bde1
Sha1:   5ce119089f4a4cd139b523889b6cd84cd79191f4
Sha256: 2089225a6dc13845ab8e031416920d16952ae1461ca10d72c408ad001ed8f27b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:20:09 GMT
age: 82432
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6174
Md5:    b986f9fcbeca91ed5c8d58fbfaf47d19
Sha1:   6e6c8bd2bce144cc4da1cd7be375b046b60dca79
Sha256: 07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6564
x-amzn-requestid: e2875cf3-3915-43a5-a724-4de2ca03de56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepHOiIAMFTFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-5f7e2a3f609d54a609a12670;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mwGAEu-gPXY5Opwd972VbBA6l33dNk7bPFSyZmciaplQKj2ZuTkQSg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 31154
etag: "9bc47ee49fc070d0997e49a719bd9758685ad583"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6564
Md5:    58a28fc1cbcacdb07b3ca175281982b5
Sha1:   9bc47ee49fc070d0997e49a719bd9758685ad583
Sha256: d3bfcf749c4652cb29f7c82a5d7ba940bd607f9060e49c1c40a112eb3e625bd9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 02EF3QEVKmEB2ikbGk9gzQq7_VMi00ufHUNRFTL8MpwJKaXQwdT8HA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 03:42:27 GMT
age: 9094
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4834
Md5:    cd8ad22c2eb1eb91c76970fa449f1bc4
Sha1:   0de97f3a4964038222bd751e043e413113e6db9d
Sha256: 668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 30245
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2942
Md5:    b47431190f34eccf0a6efb98e2a32b7d
Sha1:   9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
Sha256: 08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
age: 30148
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11402
Md5:    1c80b8025242ddfcc816ec612456b99e
Sha1:   aa944d10fe4a44b790b01ef62edc0f85a6d558e3
Sha256: a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
                                        
                                            GET /sl/html/DE10/images/01.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
content-length: 63047
cache-control: max-age=86400
cf-bgj: h2pri
expires: Fri, 02 Dec 2022 22:50:17 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 26624
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8hTY%2BDTFKRFdfXLWxrlek%2BPQn4t%2FB%2BtdMLP61YLNEqSP2saUdwJRkyBXMO5MEmXYw7FAV9oCHGQeeyREOAo%2FM%2FV7reWYAUmuck4bTS9YQw6a2Cj%2BweM8QC1MtW4kcvZW%2BJy1VNs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731eb831a23b51d-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x736, components 3\012- data
Size:   63047
Md5:    3a850bc7c7440247f8464289ab4c282c
Sha1:   3347973cd9aa7a79cf9c87ea147a586a0da7fa9a
Sha256: d62defeba698e9f156e1f6f777d28ff475a8abf37c9dc632005fda06cba77fc1
                                        
                                            GET /sl/html/DE10/images/03.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
content-length: 58287
cache-control: max-age=86400
cf-bgj: h2pri
expires: Fri, 02 Dec 2022 22:50:18 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 26623
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AdtlEYza8TCLrIgF9vqPXoeJUDwTWxzExvodVhY%2BLbQIphoWFQIQpdlRmG9BuxO2zFNNF7Atihmogt3XT6dscZttFHpNRXnhFdGUQbHVPRyNi1yEC1d9pvI2diuEtCzTPYWoBVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731eb831a25b51d-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Cropped with ezgif.com", baseline, precision 8, 500x714, components 3\012- data
Size:   58287
Md5:    37bb1c4464d422fc75b5630e9ac8bebb
Sha1:   5e70235d897ab5e25a0905731d63a2e6fbbe0ff6
Sha256: d9ee942a4d8314c9094d342445921f0c46f55adeae1aa51b15599338f73cf7de
                                        
                                            GET /sl/html/DE10/images/04.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
content-length: 47131
cache-control: max-age=86400
cf-bgj: h2pri
expires: Fri, 02 Dec 2022 22:50:18 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 26623
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V7u88UMRcXJyvklP8IUMg%2FBPP0aKujCpZ6SUtyEbegG0Xtzjc6QfPIYFRLGilGvMK8cWSysJF9bdEZBaN3ZIUPQUT6JB6LzSR4DajOXdaVGruxwsEEwktoHxjNMI6RqpC4WTeXQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731eb831a27b51d-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x393, components 3\012- data
Size:   47131
Md5:    522d1fb81bd75e2160ce5fa2e05bcb80
Sha1:   bea0851dea66e6897cf9681055e34d4149d1f0fe
Sha256: 8305ef4314706cf7468a4d6230039a86c0120e284bd866f4c6b5cdf99d20206d
                                        
                                            GET /sl/html/DE10/images/02.jpg HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
content-length: 72269
cache-control: max-age=86400
cf-bgj: h2pri
expires: Fri, 02 Dec 2022 22:50:17 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 26624
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7IMBfTd%2Bn7Gadv8HNsyIgTxjABeOWgSj2MukBkjAT8JWJfdjv13mNX1rgI2ImSbrmsEzjO2o1jTAy2CH3Lmoh1i1FH8jJpjIvhXpqDqp6BJ9bvvEBjRtomagmWzi%2BvnxBpAxwXI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731eb831a24b51d-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x670, components 3\012- data
Size:   72269
Md5:    5a8b9b0560b1efd78ffc4b0a4b26d5dd
Sha1:   02c37f09435dd0df94fc9e291701cea61de47acd
Sha256: 69b803896c47dd6f767ec4475e28005b7a72b0273947a794391d857a93885a52
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 02 Dec 2022 06:14:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css?family=Open+Sans:300,400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 06:14:01 GMT
date: Fri, 02 Dec 2022 06:14:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1156
Md5:    c78525a3c8bfa9642c39fdcbf4db938d
Sha1:   43491c238ce10fe5878bc6de996235d372fbf797
Sha256: f14703eca02b6ba1d562d35a3a75f8e18164b0f43372a30e68ffa0e9b4e2aa6d
                                        
                                            GET /sl/html/DE10/js/custom.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=130977
expires: Fri, 02 Dec 2022 22:50:17 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 26624
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DVyQcO6dcb8DwzgKwf9nrBso8icbxM%2BIOJ8XTP6WiJG9kDsnMLQhqBTGgYQjr9z%2BqgjZWi2lEATWgsxfGHE9Lw1hJPizYoojh0xDvGzukRBRmj%2BeWZPD%2FBTiqRJmr%2B%2B%2B51Ud0as%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb830a0cb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1382)
Size:   35536
Md5:    47a31f326a03aabe8fbba4279b081463
Sha1:   0c4bf7b71aa90272d1860d5a743840157b290e17
Sha256: f685ce8528737c005faab77ac58a90ad8d3f48ee61ecbc95d3df4c9591506ef3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /swpush.min.js HTTP/1.1 
Host: cdn-dt.fcdn.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.234.87
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
last-modified: Sat, 07 May 2022 08:23:17 GMT
etag: W/"62762c75-8692"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 119833
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OMhn8ZajozjZUI8xfyuZe4dVC5lh92xnqkAYSDIwH5hv0VB%2BTmOUgS7K9KK7N%2BvHs6uRZNpaorVgTRYfdmBVFQA81Vka8Y8Ta3tM2%2BVdA0MGnUuE321f8Y3Am2VjqVFfE6M8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731eb857e2ddd68-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (34449)
Size:   11533
Md5:    91782fa22a576307f562121cc772cf2f
Sha1:   2453a2090e8b72f5897c23b72523faab61782d97
Sha256: 0072c8980a09893271c5a3058cf39a2c2fcc055aa24770782f94376fd010e4be
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1463
Cache-Control: 'max-age=158059'
Date: Fri, 02 Dec 2022 06:14:01 GMT
Last-Modified: Fri, 02 Dec 2022 05:49:38 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /sl/html/DE10/css/main.css HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=2611
expires: Fri, 02 Dec 2022 22:50:17 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 26624
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=63EEzqJ%2B2y5EBrvyu2%2FhuZBamryeHHPN7w89oQypoFzMyVWtTd1ctAncovh7cl1N3DJdMv%2BImvotBBRKVIrhL4FT%2FDoPgoJAPnWYGKnBKt%2F5iJReYiad5gWj2L3QA5SbAUv5%2B3U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb830a08b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2033), with no line terminators
Size:   747
Md5:    836c52e617da2d4e9087bc651ce55e78
Sha1:   0b4f85346fa9fae756cc635fbdc1e94c4845688d
Sha256: 38abc7b790be3b6250ea0df0a99cd0a4514adc6202cffe7e4d168cee087d5bba
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 02 Dec 2022 06:14:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 02 Dec 2022 06:14:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1464
Cache-Control: 'max-age=158059'
Date: Fri, 02 Dec 2022 06:14:02 GMT
Last-Modified: Fri, 02 Dec 2022 05:49:38 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 02 Dec 2022 06:14:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /sl/common/js/lib/jquery.validate.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 16:59:30 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 47670
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kKjTRhSxN50vPtmMBp0jJhK%2FcUfjY3ZX0Ar13Eyy1MOPvuWya1%2Bfrpji%2B%2FUNznXuKvUaXs7LaMcRZIG4kH3MdohwsnZx86YeeffEHBumGXBS0%2BCpttSlDg23JgeOz0CdNtjf2W0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb830a18b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (23122)
Size:   52672
Md5:    6998e85280fe97532bd0bb3a921d42cb
Sha1:   8565a0ed6039993a4aaae665a8b66027e9206e92
Sha256: 6f034e693870f35f110eb473ed57f5f5e14875670db7537615588e74cbb08366

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 02 Dec 2022 06:14:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            OPTIONS /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1 
Host: subscribe.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,x-referer
Referer: https://mycasualhookups.com/
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.162.28
HTTP/2 204 No Content
                                        
date: Fri, 02 Dec 2022 06:14:02 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: content-type,x-referer
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7kKCzd5HrfHFABD6KlRRvm9iiRQEHc1txEpW77fJvJmkgLx5c2DbmBJBQ6G0P5SmnUEtw0iFX4i38gZs3bN%2BgSRbxkGLXNz%2BXnsyeGsvULSrqFRRLTfLJwm1bJZ9NokrjAaEhuCKoV4%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb88380b0639-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /subscriber/null/4e027e5d-4862-46c4-9cb6-ae024d88181b HTTP/1.1 
Host: subscribe.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/DE10/n.php?cep=FVBiiCEFGqhw6YW-xRvov6phFYoiFA1qpkPgZBwKLvu1Q2pZSTcYxIFUlb4qk2IaqYlnQO8akOHqMMmAwl5o3e7B5KejPsTCWMsTJgzsJIEDhv057pyg72lZ-y5eOoEZsMbyhbprTVN6K3zgVdI7Ag8c1anKBt-E0zkwOLCJFs22QPeqxMzSPMY3lY-7XJq8aJXwqCH79z94udJbR0Di_Fuw-yr7wws9gYCeImeqW7G-3usams_J_WULYbIuaxWTkkvesU16Zt_mbszWuwued9EPP2Kw91m_mC0TYQaAvlXFnluR7rIwg_gnzhWrMcFMp4P9UDPyvIq3RZGXxD-1pecatrox1a_57Rvopbfu_0wZSytf9E2PiRa_bqKQIpdsuGB1Zmne23TbtLATD1BXnw&lptoken=1615692596fa34ff4029&external_id=36197-738829838&source=16295&sum=#p#
Origin: https://mycasualhookups.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.162.28
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Fri, 02 Dec 2022 06:14:02 GMT
content-length: 5
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hyTzTUC9McL0p3j07eUWVCHhjXV7NBM10CMLIVquL6DKPnOUOfXvpS2pfblb8NsOmSRcOHLP7yF8ZZWdIs1RfJzLomis%2BSVYtPScVRBWgY5%2B9jiZ5Nr6usAZHCbM4cNm7q8WS7kgXtcc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb8948b70639-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   5
Md5:    68934a3e9455fa72420237eb05902327
Sha1:   7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
Sha256: fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
                                        
                                            GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycasualhookups.com/sl/common/privacy-policy.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 02 Dec 2022 06:14:02 GMT
last-modified: Wed, 30 Nov 2022 18:31:41 GMT
etag: W/"6387a18d-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=19jfHlqUSU95NnDm8rnfEmmsbWA2AXoXpUZkr8mlYJF6idZZqjtv8OS%2BeH6h1amIyF20PeWrgOTnlrZlhgtMT36g%2BtGpyh8LULnoaqapmv5%2FEFugNLG16zBhwu3Kf7A4RRiWfnM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731eb89cf55b51d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 04 Dec 2022 06:14:02 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   933
Md5:    5a164009325920855f40ae3ca983820c
Sha1:   a82f97940d6fcf2400f3e6e85d03d3ada8f8a063
Sha256: 58062b1e4a487dba519b492fccc348331648660cc078fbb8a0f37474ec45049a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cdn/sdialog.min.css?_=4 HTTP/1.1 
Host: cdnjam.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.67.166.71
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 02 Dec 2022 06:14:03 GMT
content-security-policy: block-all-mixed-content
etag: W/"1d16caacad4ad6c40a99319a5d183947"
last-modified: Mon, 22 Nov 2021 08:00:52 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 16F5E342988C7B8C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 3533
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I49Cwm6Fm4HhT96Bdkd8Yx2quq8oiMXNRnc9y7f7OEfNpO%2FUIw%2BdOGAnchu7hqzDO205nPd1SKNSMnyG2IWSyhazmAjKB62KxwoZiECb%2Bu9QD58dbCbiUydL2257"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb90acbdb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6775)
Size:   1575
Md5:    bf5d751ef51812e306de3bba31707cde
Sha1:   ab88fb106f95fc103bad13b70537d214690eee55
Sha256: 461765162bcf55b96775c48ef48258448b628e2f2679749a07e096885582fc3e
                                        
                                            GET /sl/html/DE10/n.php?cep=FVBiiCEFGqhw6YW-xRvov6phFYoiFA1qpkPgZBwKLvu1Q2pZSTcYxIFUlb4qk2IaqYlnQO8akOHqMMmAwl5o3e7B5KejPsTCWMsTJgzsJIEDhv057pyg72lZ-y5eOoEZsMbyhbprTVN6K3zgVdI7Ag8c1anKBt-E0zkwOLCJFs22QPeqxMzSPMY3lY-7XJq8aJXwqCH79z94udJbR0Di_Fuw-yr7wws9gYCeImeqW7G-3usams_J_WULYbIuaxWTkkvesU16Zt_mbszWuwued9EPP2Kw91m_mC0TYQaAvlXFnluR7rIwg_gnzhWrMcFMp4P9UDPyvIq3RZGXxD-1pecatrox1a_57Rvopbfu_0wZSytf9E2PiRa_bqKQIpdsuGB1Zmne23TbtLATD1BXnw&lptoken=1615692596fa34ff4029&external_id=36197-738829838&source=16295&sum= HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
cache-control: max-age=300
expires: Fri, 02 Dec 2022 06:19:01 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eTOygCtYQIi%2F2qFRGayq0cc5TXUlbWJdnrXXmIaW8R6Wa%2FPB9s8csKvw3dO06OjzGtSfOF5U6VQRyngDuSQxochEDUcDLZyHuFP2jFr%2FX52rs7gZ09pZOfHZTHZO3Qkxhc2I1DM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb7f0f21b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/unsubscribe.html HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: text/html
                                        
date: Fri, 02 Dec 2022 06:14:02 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Fri, 02 Dec 2022 06:19:02 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vfkGPc2zSvZFRmb2050wNczoSzvr8JoMAbK62AKQxNyhh%2FTQ0NLcYI5OZMcDBH%2FUORurt29yegtnQlEm5KB9xCU7KmRY9G3wVLeLht1mtR1dTyWV5Vs38vagz3HmriPY%2FcO89J4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb868cfeb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /yrbPvQjh?s1=s8hnpa79j9g9&tag=17392&s2=frd HTTP/1.1 
Host: makeyourwet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         172.67.175.125
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Fri, 02 Dec 2022 06:13:59 GMT
location: https://m.luvmenow.com/click?offer_id=5246&pid=31423&ref_id=s8hnpa79j9gd&sub1=28575&sub2=91.90.42.154&sub3=s8hnpa79j9gd&sub4=s8hnpa79j9g9&sub5=frd&sub6=&sub7=&sub8=17392
cache-control: no-cache, no-store, must-revalidate,post-check=0,pre-check=0
expires: 0
last-modified: Fri, 02 Dec 2022 06:13:59 GMT
pragma: no-cache
set-cookie: _subid=s8hnpa79j9gd;Expires=Monday, 02-Jan-2023 06:13:59 GMT;Max-Age=2678400;Path=/ _token=uuid_s8hnpa79j9gd_s8hnpa79j9gd638997a7447ef6.11638968;Expires=Monday, 02-Jan-2023 06:13:59 GMT;Max-Age=2678400;Path=/ 9bf24=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjI5MDk1MFwiOjE2Njk5NjE2Mzl9LFwiY2FtcGFpZ25zXCI6e1wiMjg1NzVcIjoxNjY5OTYxNjM5fSxcInRpbWVcIjoxNjY5OTYxNjM5fSJ9.sU1J2CuoImr9ZAAbNlXGns9iZzV3eD4MyOgYXtYgELs;Expires=Sunday, 03-Nov-2075 12:27:58 GMT;Max-Age=1670048039;Path=/
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2BHCVccpqnBfwP%2F6TwxQuhl2vdvKisji8dK2vysy2LY5626FWxjuQzPuq3OEbQsCeUXyBgu%2Bbjv9S%2BWjTS7VIDSz2BcmIzPeAh1AsL2sGsumRGrivTd9NHPQKFbWnKWbiYw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb750de70af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/cookies-policy.html HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: text/html
                                        
date: Fri, 02 Dec 2022 06:14:02 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Fri, 02 Dec 2022 06:19:02 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HRR9kNwkhUXN9JJEQhVLb0f0GphfF764YDyT7uvM2Fjsfu2XnjRjfxBi5xzJk3HPrSx%2F7c0Ba8EVmbl0ngSCWy%2FCxCk00%2BE4EMm71EBdaV6xjhS%2F0TdGYU41D15RLRnM4%2FOG%2B2w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb868cfcb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /get-keys HTTP/1.1 
Host: app.api-push.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-referer: https://mycasualhookups.com/sl/html/DE10/n.php?cep=FVBiiCEFGqhw6YW-xRvov6phFYoiFA1qpkPgZBwKLvu1Q2pZSTcYxIFUlb4qk2IaqYlnQO8akOHqMMmAwl5o3e7B5KejPsTCWMsTJgzsJIEDhv057pyg72lZ-y5eOoEZsMbyhbprTVN6K3zgVdI7Ag8c1anKBt-E0zkwOLCJFs22QPeqxMzSPMY3lY-7XJq8aJXwqCH79z94udJbR0Di_Fuw-yr7wws9gYCeImeqW7G-3usams_J_WULYbIuaxWTkkvesU16Zt_mbszWuwued9EPP2Kw91m_mC0TYQaAvlXFnluR7rIwg_gnzhWrMcFMp4P9UDPyvIq3RZGXxD-1pecatrox1a_57Rvopbfu_0wZSytf9E2PiRa_bqKQIpdsuGB1Zmne23TbtLATD1BXnw&lptoken=1615692596fa34ff4029&external_id=36197-738829838&source=16295&sum=#p#
Content-Length: 89
Origin: https://mycasualhookups.com
Connection: keep-alive
Referer: https://mycasualhookups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.162.28
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Fri, 02 Dec 2022 06:14:02 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yjEJ2dX3ritWgn5ACKhr7YXC%2F%2FKXLpTcQbivv%2FBaeK2mxLZ1jfjN6Vd4I0%2FvTpfztyd8YVBQKP8PZd4HZTrzOSTjIAs6yxEX5q7qQ9tT5t3oRkVjVpB6436ByfXQncPXeUBO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb86bf020639-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/html/DE10/js/langs.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=36979
expires: Fri, 02 Dec 2022 22:50:17 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 26624
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yBCq%2FSf%2Fhpe2PSK6CzNhVk2qeYB1IUdVY1XrKJYoQNbXdrWAo6ZIqV4mpPzTm4r6Ma2e3SYCzSz3HqwxejEICuyCmfWIYgIXTmatMWvHkk7v8mo52TzQLLphhdg%2FwHVScixmGwc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb831a1eb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/css/style.css?1669961641 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 03 Dec 2022 06:14:01 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FyiaP4EjY%2Brp1S41dQciI%2F1jYoo091eSB55sJ2Aq4w0TI3pzusaFOFv%2BaNFGiTS8QApZXQCtUy7pmQnAS%2FnHji7d%2B5Cmqxk19Edldp6Bu9k5wbUXoju2idK8ef2rv3I9V7%2BG7%2F0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb830a0eb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/favicon.ico HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Fri, 02 Dec 2022 06:14:02 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 08:42:02 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 5607120
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZZ2lnzjygKZUKtZSc%2Fgwv3zSFb5nwLHhJUZRZ%2Bm8Zih6WuPjnFMH%2F3tzJmoMSVwUcAmagjF9w2YlyzXo2bBmxrljY6dNKpXbnh4B1zN9ORgRc%2FMIvkHbuPrbi5WJlO34nAjJgWE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731eb87adc2b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/html/DE10/js/config.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=704
expires: Fri, 02 Dec 2022 22:50:17 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
last-modified: Tue, 27 Sep 2022 14:26:07 GMT
vary: Accept-Encoding
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 26624
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z%2FRXzAycmuH78SBdbw%2Fs8vpJIdRqc12Fh22d0zDSEw0ZQn8vlAmovBqSaDG9c6RL0DVBTxNSX1pnLIO8lUyBrMh7gBP8MULgo628y73CkkuwuQFia8PoKMJbLH4GoVYtI%2FcvKLc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb831a1fb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/html/DE10/images/05.gif HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: image/gif
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
content-length: 295330
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 22:50:18 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 26622
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PmWzw%2FNHpOjcmfVkW9sirnuP6mmW9cyjd3Wb8mWO13UHpiKe1XwPEsfprR%2Fq6uUfO%2B01kIPF3peLycZOAgwcaXLDGrJF5GE63NA1k61MI5eZciSdmexqLHcvOIIFgUNt2NMjFfQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731eb831a2ab51d-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sl/common/js/main.js?1669961641 HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 03 Dec 2022 06:14:01 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h67CB5KFVYvV8yrM8r0HVb3DoiHkVuF%2BdIGe2z6xomQ6S7yvrgn0TJteVyo%2FMBk0YhTagss8wvb%2BRfejs%2B5g4xVjTwLCtpr61FJf0zoRVaiAZqlN1LyEUlDZXPkQbf%2FlfgGADCw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb831a21b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/jquery-3.3.1.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 16:59:30 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 47671
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qunYBq4wEHMAOGKIyST%2Bq5%2FgWnMgbY6kGUElGyCskCT%2F91d9BFkwZbV3TfxNka42qGf9uZ8yg%2F57x8XLQeSLfZA6dcgec%2B4uYhiz5uTDxL6I0THbd7GvmZ7%2BdUtO11nyLKEJBOc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb830a0fb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/privacy-policy.html HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: text/html
                                        
date: Fri, 02 Dec 2022 06:14:02 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=300
expires: Fri, 02 Dec 2022 06:19:02 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pckJHVR2pDZHqgXlDioZ6NJ8CYicwCPe3S26%2BAsGFJlllsVc9jx33Medxn1f7b0siCkHom9XzXff24iSiZCfT6hEYUHn5sfr1d9TD6LXxmcQrdefJYydXClseCrO%2Fl9GDYC%2BDUU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb868cf8b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sl/common/js/lib/additional-methods.min.js HTTP/1.1 
Host: mycasualhookups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycasualhookups.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.71.67
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 02 Dec 2022 06:14:01 GMT
last-modified: Mon, 26 Sep 2022 15:53:06 GMT
cache-control: max-age=86400
expires: Sat, 03 Dec 2022 05:15:00 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
cf-cache-status: HIT
age: 3541
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mctz80V%2Ff%2FLr1MBumeRCPTfleMYbcY7HeAc5nYXg4EHdSocx52WyFgKCAcwDcYghIE%2Bw4bBSlLOdW9kcpdQS3ZH42YKNH5CkVJUTJ%2B8ODFljTc3QebRyX%2BqBN5Rq8wmYtuL7MzY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7731eb831a1db51d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing