firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 10:05:05 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DDzB1Io1xBaTbDOqmJ-6T-umy9FT3jQ-luMZPRhNrRQPeuWVrnOdUg==
Age: 2545
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KlYqt5Hn8Jpr_oZeZesMYCCoHwzNi26yjooCHrbKQWgR40saS468ZA==
age: 4997
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6109
Expires: Tue, 27 Sep 2022 12:29:19 GMT
Date: Tue, 27 Sep 2022 10:47:30 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 10:47:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 89c3f2f09c18e3ff741688d1a7986cf1
ca2c5f269b15f0d923d2cbb9672be6716e0cfaf8
38bef8e403b8354afdf85f02f7aacf14530c092f59947f1796122c0a1ca4feb1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2293
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:31 GMT
Last-Modified: Tue, 27 Sep 2022 10:09:18 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 89c3f2f09c18e3ff741688d1a7986cf1
ca2c5f269b15f0d923d2cbb9672be6716e0cfaf8
38bef8e403b8354afdf85f02f7aacf14530c092f59947f1796122c0a1ca4feb1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2293
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:31 GMT
Last-Modified: Tue, 27 Sep 2022 10:09:18 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278
connect.facebook.net/en_US/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash 31a16612b942dc35071633722e41fe26
a03ceadd09a67d4de77997d0f2f97687a6804343
0a7ec9da0e39041d00931856aa7c081aebfc86bab3e43c1b39a78c94f5d449fd
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: ee74e527e7e6cd9083ff44de3e0573df
ETag: "48fe65f276c33345f4b30eeb54c7d1a6"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Tue, 27 Sep 2022 11:01:02 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: MaFmErlC3DUHFjNyLkH+Jg==
X-FB-Debug: vGc7cQrXwrCyoPPGfOASjHxCFaKpwqjdKNrPav+Hwjhp/zG8zMMRBC8d6iOZg4IcNxNbtg0Cyhj5P6aA51PXQA==
X-FB-TRIP-ID: 1679558926
Date: Tue, 27 Sep 2022 10:47:31 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 1687
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c939f97c8bcbfea356e92036803714bc
608c795e7c4fb943a4db49a4e4533c41ea717023
b05b38c78c15c259720bfc6783ac65ab60ceb1e6037b45b08113f183554f08cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 10:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 11:02:07 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: K4V16-3eQHZy57qvI1K8EuC72UA_wpS0fauPdEkJ6QKNqkeItNUc8Q==
Age: 2205
www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P
142.250.74.72200 OK 57 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P
IP 142.250.74.72:0
File type ASCII text, with very long lines (35661)
Hash d34f1670bb284b2b49248f9380e590c9
1df733c002ffc2aeace7bf915d716664baba3426
5d4a9a2ef3c7d4f6cbdd07e8f98fe533a42f8726d1b59dd1ba46fde3a49b8a6b
GET /gtm.js?id=GTM-T2GJ57P HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 10:47:31 GMT
expires: Tue, 27 Sep 2022 10:47:31 GMT
cache-control: private, max-age=900
last-modified: Tue, 27 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 56692
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c939f97c8bcbfea356e92036803714bc
608c795e7c4fb943a4db49a4e4533c41ea717023
b05b38c78c15c259720bfc6783ac65ab60ceb1e6037b45b08113f183554f08cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3097
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:31 GMT
Last-Modified: Tue, 27 Sep 2022 09:55:54 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
172.98.65.24200 OK 781 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
IP 172.98.65.24:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (33214)
Size 781 kB (780786 bytes)
Hash a17026e5303d403f36fc9260a2942aa5
01faa73a10891df0fa03a81fc430acda621a731a
eb1190f073acb847895452eb8939e2a6a8d554d76a817db1792511ac1eebf5da
GET /update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:30 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js
143.204.48.96200 OK 74 kB URL HTTP/2 cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js
IP 143.204.48.96:0
File type ASCII text, with very long lines (31366)
Hash 0c146375278c227da8767deab2b10d93
ac969d154ab1ed604974aca6ffa5ce55368f9d46
3a8d342e6c6f1dfe1ac11fbcf2e05e23d15367e7edb495ef5a4e07272354cf76
GET /analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 18:04:02 GMT
x-amz-version-id: YnCyzjpCjV986.xpNLpvtAI2y.y0XmP_
server: AmazonS3
content-encoding: br
date: Tue, 27 Sep 2022 10:47:32 GMT
cache-control: public, max-age=120
etag: W/"08521cc76b5cdf06eab95b9fc031b95b"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: h83yPJDZwIz8ZVqcggKFAy7ka7bZeO7AXjueDQRSVERUNpRhVz6u7g==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps-api-v3/api/js/32/2/stats.js
142.250.74.106200 OK 1.6 kB URL HTTP/2 maps.googleapis.com/maps-api-v3/api/js/32/2/stats.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (936)
Hash a203584a43f2a974503019bb3d16697c
7ff8f27007e5406405b2b254f2da0cd29982e9cb
50027d52b012183d159d7e5a0661aa8844c3a3aa2452e186c244506f81e84091
GET /maps-api-v3/api/js/32/2/stats.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 1574
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 06:30:16 GMT
expires: Tue, 26 Sep 2023 06:30:16 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Feb 2018 06:05:46 GMT
content-type: text/javascript
age: 101835
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps-api-v3/api/js/32/2/util.js
142.250.74.106200 OK 52 kB URL HTTP/2 maps.googleapis.com/maps-api-v3/api/js/32/2/util.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (2193)
Hash cb4892d0e6cfcc58b8e23f88e6e07260
f4bdc3c54593506399ac2b3babadfe6ca52cba59
f7371ea1643d3e827558be9d67abb0788853db74d3154c59735daa45f6594bc8
GET /maps-api-v3/api/js/32/2/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 51988
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 06:30:16 GMT
expires: Tue, 26 Sep 2023 06:30:16 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Feb 2018 06:05:46 GMT
content-type: text/javascript
age: 101835
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391
142.250.74.106200 OK 199 B URL HTTP/2 maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391
IP 142.250.74.106:0
File type ASCII text, with no line terminators
Hash d753ddf308007bf2963889db280fca6d
b52cd7f36a769e92b893c3cfc59478ae2792bc00
97d8c57d5a2a66974ff48805365f709c2acc88b3eb5b23d7ddc91ae5efe28a85
GET /maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Tue, 27 Sep 2022 10:47:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-disposition: attachment
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: mafe
content-length: 199
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=15
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
34.218.159.206101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.159.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EsVTl8fyQbBhVpea7VbGew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: e0l3WXKKq47tmpfmFb/JQXS132Q=
bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js
172.98.65.24200 OK 20 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js
IP 172.98.65.24:0
File type C source, ASCII text, with very long lines (533)
Hash 0373b7787b60a2dfe54326de8b1f4b85
87b9015d8ac4b025c15470988a63fd54aded2996
bec11db4f9e8415d4718c34d7ff9a2968f0e64a9e9e1e91279f79c9fe8135b7b
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/ATRK_52A44AA2_min.js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
Cookie: ajs_anonymous_id=%22bacc043d-4073-44eb-815a-28e8b33929b3%22
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:32 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 19905
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: application/javascript
cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js
143.204.48.96200 OK 80 kB URL HTTP/1.1 cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js
IP 143.204.48.96:0
File type ASCII text, with very long lines (31366)
Hash a3c786b2b469861249f7f620ad0dce05
f6c950fd540dc4912fdc72a603ff07668d2f5683
17b9591209f4e77462ec9c82913fa6f0f7d067cdd0d8d25ec5ff01da4403170d
GET /analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
x-amz-replication-status: COMPLETED
Last-Modified: Thu, 16 Jun 2022 18:04:02 GMT
x-amz-version-id: YnCyzjpCjV986.xpNLpvtAI2y.y0XmP_
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 27 Sep 2022 10:47:33 GMT
Cache-Control: public, max-age=120
ETag: W/"08521cc76b5cdf06eab95b9fc031b95b"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HPkolcRKETGVKlyGHYzcDv3p99dwT1UuekhrigBbguZmFMpJywB9Tw==
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash e31c66dc3b32427a3b9633b91ab64e9a
d65e18f1c06af73cc584fec8db8b6c6beb19c481
3b44c17a39075d8020dfd2d41a90e179890b656775eb0e9c8dfceaebf949ca59
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 10:47:32 GMT
Last-Modified: Tue, 27 Sep 2022 09:11:51 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -4hR1nouO2aYKkiobZSKA5Ay9wBWfeCoIFQUVim3CkzBK7c_mFbOvw==
Age: 5741
bangextreme.cedges.com/update/music/christianmingle/css/s.js
172.98.65.24200 OK 58 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/s.js
IP 172.98.65.24:0
File type ASCII text, with very long lines (881)
Hash 9038bfff3bfe3fc0bcefa895fea7ccb7
f8e55264a1876d8b59d25b630c646d52526faabf
242770dc1a3f6e097f9b5213c8562974501b681cf155e49b64a2f75cf8abe47d
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/s.js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
Cookie: ajs_anonymous_id=%22bacc043d-4073-44eb-815a-28e8b33929b3%22
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:32 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 57588
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/javascript
api.segment.io/v1/p
34.209.118.12200 OK 21 B IP 34.209.118.12:0
File type JSON data\012- , ASCII text
Hash 90749a50019a27e1f32cebdbaa7a1bc1
8329e3339f928f8591024bb0f938dab99c0ad4b8
12f71cb993958eefc4bdb41d7dbbda490779a9c7aba448f7be52bb63912e0254
POST /v1/p HTTP/1.1
Host: api.segment.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1163
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 10:47:32 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: http://bangextreme.cedges.com
strict-transport-security: max-age=31536000
vary: Origin
X-Firefox-Spdy: h2
api.segment.io/v1/p
34.209.118.12200 OK 21 B IP 34.209.118.12:0
File type JSON data\012- , ASCII text
Hash 90749a50019a27e1f32cebdbaa7a1bc1
8329e3339f928f8591024bb0f938dab99c0ad4b8
12f71cb993958eefc4bdb41d7dbbda490779a9c7aba448f7be52bb63912e0254
POST /v1/p HTTP/1.1
Host: api.segment.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1163
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 10:47:32 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: http://bangextreme.cedges.com
strict-transport-security: max-age=31536000
vary: Origin
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg
172.98.65.24200 OK 3.6 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg
IP 172.98.65.24:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3605), with no line terminators
Hash 1fc2f4c7a120346c0dbfdc72c1a925b5
e593fa0daad30c0c4fda97489d1dbc548450a667
1a310e172227e76183c8859859410900f5f78dc859854c59fba1f79a76cf04e5
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:32 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 3605
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg
172.98.65.24200 OK 5.0 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg
IP 172.98.65.24:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (5038), with no line terminators
Hash b1fe73573691e00e8abc9724bdf18a64
96ed1473608b28543349e05d9b8d703f8e7f3ae3
75458168a5a076536706ee20473c29a07eeeb4b3793446c3595d069dadb8345d
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:32 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 5038
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
bangextreme.cedges.com/update/music/christianmingle/css/tp.png
172.98.65.24200 OK 0 B URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/tp.png
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /update/music/christianmingle/css/tp.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
bangextreme.cedges.com/update/music/christianmingle/css/0.txt
172.98.65.24200 OK 0 B URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/0.txt
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/0.txt HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
Cookie: ajs_anonymous_id=%22bacc043d-4073-44eb-815a-28e8b33929b3%22
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12132
Expires: Tue, 27 Sep 2022 14:09:45 GMT
Date: Tue, 27 Sep 2022 10:47:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12132
Expires: Tue, 27 Sep 2022 14:09:45 GMT
Date: Tue, 27 Sep 2022 10:47:33 GMT
Connection: keep-alive
maps.googleapis.com/maps-api-v3/api/js/32/2/common.js
142.250.74.106200 OK 503 B URL HTTP/2 maps.googleapis.com/maps-api-v3/api/js/32/2/common.js
IP 142.250.74.106:0
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
GET /maps-api-v3/api/js/32/2/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 33005
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 06:30:16 GMT
expires: Tue, 26 Sep 2023 06:30:16 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Feb 2018 06:05:46 GMT
content-type: text/javascript
age: 101836
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12132
Expires: Tue, 27 Sep 2022 14:09:45 GMT
Date: Tue, 27 Sep 2022 10:47:33 GMT
Connection: keep-alive
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d
172.64.146.139404 Not Found 5.0 kB URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d
IP 172.64.146.139:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (379), with CRLF, LF line terminators
Hash fc818706a8ecc5a518091aef8159e7d5
bcec361f0c14c112edbd582415d01c1ad3576055
7ee1789dddb58418c7edf5f25db8a1255c4c602b96d0e718af30801eea85267a
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Tue, 27 Sep 2022 10:47:32 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=PZ.Vkhjw1Rru92t4p_5Z0agtvqgNYybcqJOy0Ht.bv4-1664275652-0-AU9iGujdbJytV/0m3NhZSbNy1BMuKLYJsFzBBNZ7E2oON+ZhRMrmN5rFAsfZ+vbQ94bJLfizY0FKr8bfGA29L6c=; path=/; expires=Tue, 27-Sep-22 11:17:32 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7513a966ec34b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.appboycdn.com/web-sdk/1.6/appboy.min.css
104.17.217.31200 OK 18 kB URL HTTP/2 js.appboycdn.com/web-sdk/1.6/appboy.min.css
IP 104.17.217.31:0
Hash 26b567ed87758b2a525394578f9eeccf
a599775cd8bf0d6dcd1ad7f36f66eaa1fa09a8a6
c5c036c9c4b5ffc0fc50ad1ddc707860b77e0904a308071d5d5689659132fc03
GET /web-sdk/1.6/appboy.min.css HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 10:47:31 GMT
content-type: text/css; charset=utf-8
x-amz-id-2: huDB3PumhyF6WrF6APQUv+8CD8wIbVcPv5aL7uohp3adWf2h9c1YeKxEl7ZrrKdJivchdPfudxs=
x-amz-request-id: KAMFRPEM2QQ08FFS
last-modified: Fri, 06 Oct 2017 18:19:54 GMT
etag: W/"3f4d7e756ec9b4609665da772b9cef98"
cf-cache-status: HIT
age: 4284
expires: Tue, 27 Sep 2022 14:47:31 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7513a9640fb5b500-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.appboycdn.com/web-sdk/1.6/appboy.min.js
104.17.217.31200 OK 45 kB URL HTTP/2 js.appboycdn.com/web-sdk/1.6/appboy.min.js
IP 104.17.217.31:0
Hash 5dc90b339e9cc457875efd3d79b0ce53
b841457bca47df420f5570de6d00269fb843eade
2dca98390f1bf9eba1a5e516c0993254be83942a69e9509ed3bdc3e768c2597e
GET /web-sdk/1.6/appboy.min.js HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 10:47:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: rBuvKgQ/AJ4VKKVa4JPfGH0D9BYLN+9Tuba5TDUdtFCtVz03KgtpPlGQQpbbQMIOSgzGsmSJaRA=
x-amz-request-id: PFEFER0M5H56YP5K
last-modified: Fri, 06 Oct 2017 18:19:54 GMT
etag: W/"bd8c768fe5e4740920f57a1a01e14a3f"
cf-cache-status: HIT
age: 6503
expires: Tue, 27 Sep 2022 14:47:31 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7513a9641fc5b500-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3
172.64.146.139404 Not Found 7.8 kB URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3
IP 172.64.146.139:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (379), with CRLF, LF line terminators
Hash da00662cadc21b28f60cabda3c64474c
e4aa52d05d22d39a198d1222426e202178bc87f7
9864e63c79433e469d1be7d9401e4225d1e156235c141d4259e88fdf0303fc0f
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Tue, 27 Sep 2022 10:47:32 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=hI8sYrys.Lke5jaKvrF_z6gVrqkIiRmyzx_hjh4Pvvs-1664275652-0-AZ/GxP2tZg1Y5iIr1oSwBLaK6OI6UAn78Wrt3DkF2srA1tF8AnpXgZHgvWv+wGC0HsAPhqJXz3bgP6OVlv7uO5k=; path=/; expires=Tue, 27-Sep-22 11:17:32 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7513a966fc54b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bs6HOUmHOoYKDuzBoVHhcr8d4HP4bBmwUF3EtOmwKXo7ozhfaIYEvw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:07 GMT
age: 47306
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 19:30:21 GMT
age: 55032
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
104.18.10.207200 OK 57 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 104.18.10.207:0
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:33 GMT
Content-Type: font/woff2
Content-Length: 56780
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "97493d3f11c0a3bd5cbd959f5d19b699"
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 08/18/2022 19:50:49
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: f6d9533382d31b3c2c696d5a8f6cceb1
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 85761
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7513a9730bb81c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
js.acq.io/ATRK_52A44AA2_min.js
143.204.55.16200 OK 6.6 kB URL HTTP/1.1 js.acq.io/ATRK_52A44AA2_min.js
IP 143.204.55.16:0
File type C source, ASCII text, with very long lines (575)
Hash eeef1d14f989b83a5a9fcd8136dfdf31
ea2f32e7197d5af32ce24334f34238ff57cb69a0
d1f73bf5acf5b8b294efdec1cbefbb232b188b657e894d25beb47fc63265b6ef
GET /ATRK_52A44AA2_min.js HTTP/1.1
Host: js.acq.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 09 Feb 2021 18:47:48 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 26 Sep 2022 22:47:06 GMT
ETag: W/"33b83171c1044dc6bdc7ae7a647443a1"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2js7j32gjpzqVC7Qs17e4AcmiK8SZeAxFo-RM_VaK3K8rMd0xRCayw==
Age: 43228
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf99681f6f1d6e00e0abca7033eb6219
73261f7daa90ce6fd7a81b10ed7bd762200c3f28
3f4bfe673679f8f0650774c07f8707a7013ac7e1c3e1b3b03e68cbaa5ccc1af6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4655
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:33 GMT
Last-Modified: Tue, 27 Sep 2022 09:29:58 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d
172.64.146.139404 Not Found 69 kB URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d
IP 172.64.146.139:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (379), with CRLF, LF line terminators
Hash 42d918a41da0e5d53bab4ca358ea6d0e
5613259ac4d952a1a9e1c954addce423789b3fee
c903cfe17c14bb50b3a4ef31607209b5bd8be7b6edebbfc2fda4c8a0ee8ef8c8
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Cookie: __cf_bm=PZ.Vkhjw1Rru92t4p_5Z0agtvqgNYybcqJOy0Ht.bv4-1664275652-0-AU9iGujdbJytV/0m3NhZSbNy1BMuKLYJsFzBBNZ7E2oON+ZhRMrmN5rFAsfZ+vbQ94bJLfizY0FKr8bfGA29L6c=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Tue, 27 Sep 2022 10:47:32 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7513a96c2c2bb511-OSL
content-encoding: br
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html
172.98.65.24200 OK 1.8 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html
IP 172.98.65.24:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (517), with CRLF line terminators
Hash 9f371c2150a8decf9afafd1307790421
abcf3d1c8c901229fb3897f8b4f07e0caf33c380
747c93671bc7eaef5c90e54f2827c965a41d601640afed9666615a543d325553
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
Cookie: ajs_anonymous_id=%22bacc043d-4073-44eb-815a-28e8b33929b3%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d58df80-5709-f21f-4893-2d9001fa371a%22%2C%22c%22%3A1664275649865%2C%22l%22%3A1664275649865%7D; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2299a1fc29-283b-b063-a8f4-d3b1ace72188%22%2C%22e%22%3A1664277450325%2C%22c%22%3A1664275649863%2C%22l%22%3A1664275650325%7D
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:33 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 1795
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: text/html
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.149.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (21747)
Hash cef0e6a73f52f72e73d57867726399ff
2611e0920611a653446508e5f3de017900cc49f2
97cc12a095136523b16da09953e6f3e405b658978cb37cbc3d3ccb9f94faf0a6
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 10:47:33 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: zvDmpz9S9y5z1XhncmOZ/w==
last-modified: Tue, 27 Sep 2022 03:08:41 GMT
etag: 0x8DAA03594B1CEBE
x-ms-request-id: f5d74579-401e-00f0-041e-d20888000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 3887
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7513a973f85fb4fd-OSL
X-Firefox-Spdy: h2
staticxx.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
157.240.200.14302 Found 0 B URL HTTP/2 staticxx.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
IP 157.240.200.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42 HTTP/1.1
Host: staticxx.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 3AEWCNfXXF4N3di545XrOk2eoac4Aq3Ob9NOrnLgCAZ5fQcNtVM6cGKSFrMhynuCn2ZPfyCVQl7bqQ5P7p7o4g==
content-length: 0
x-fb-trip-id: 1679558926
date: Tue, 27 Sep 2022 10:47:33 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/css/tp.png
172.98.65.24200 OK 0 B URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/tp.png
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /update/music/christianmingle/css/tp.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
Cookie: ajs_anonymous_id=%22bacc043d-4073-44eb-815a-28e8b33929b3%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d58df80-5709-f21f-4893-2d9001fa371a%22%2C%22c%22%3A1664275649865%2C%22l%22%3A1664275649865%7D; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2299a1fc29-283b-b063-a8f4-d3b1ace72188%22%2C%22e%22%3A1664277450325%2C%22c%22%3A1664275649863%2C%22l%22%3A1664275650325%7D
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf99681f6f1d6e00e0abca7033eb6219
73261f7daa90ce6fd7a81b10ed7bd762200c3f28
3f4bfe673679f8f0650774c07f8707a7013ac7e1c3e1b3b03e68cbaa5ccc1af6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4655
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:33 GMT
Last-Modified: Tue, 27 Sep 2022 09:29:58 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json
104.16.149.64200 OK 1.2 kB URL HTTP/2 cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (2927), with no line terminators
Hash 8e4c72ec00a99fd7823125c4372c2d79
60101617ed9f7b11074366762007f3d16358a8de
71a566eced85606c6ea616ea8575233de1f8a96bfa8d603f44474fc53a140b49
GET /consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 10:47:33 GMT
content-type: application/x-javascript
content-length: 1216
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: jkxy7ACpn9eCMSXENywteQ==
last-modified: Tue, 30 Mar 2021 08:14:21 GMT
etag: 0x8D8F353D2921816
x-ms-request-id: c59c0bb0-a01e-0110-5b88-c9a855000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Tue, 27 Sep 2022 14:47:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7513a9743f7db518-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f672a70e2c28b98564b551f9ceb91a42
7d5104657aa988f8ecd474675d2efcdc5348eed4
662d3516c787bc7651cfd4f0075877e57fc545a4e6fc631934ca9527101f8b86
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4449
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:33 GMT
Last-Modified: Tue, 27 Sep 2022 09:33:24 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
157.240.200.35404 Not Found 72 B URL HTTP/2 www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
IP 157.240.200.35:0
File type HTML document, ASCII text, with no line terminators
Hash 2556c01148fc3cf811a190ae37345224
644567805749ab3ec4df4a00c82b0a4f8566f25d
f65e4cc023578b2bb3522d09231cd56eb84d209b18d501eeebf8a0b098f7635e
GET /connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: xwoI7cUfH4TvRelWG9pe3H6SEBbIvSJbMqnodOHrIcoe0gXEko/lzw0kbybwTSnxdEOSZwbgEJQSAlKUrhbfdw==
content-length: 72
date: Tue, 27 Sep 2022 10:47:33 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/css/0.txt
172.98.65.24200 OK 0 B URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/0.txt
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/0.txt HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
Cookie: ajs_anonymous_id=%22bacc043d-4073-44eb-815a-28e8b33929b3%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d58df80-5709-f21f-4893-2d9001fa371a%22%2C%22c%22%3A1664275649865%2C%22l%22%3A1664275649865%7D; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2299a1fc29-283b-b063-a8f4-d3b1ace72188%22%2C%22e%22%3A1664277450325%2C%22c%22%3A1664275649863%2C%22l%22%3A1664275650325%7D; ATRK_a=d6b03c5e4f174a81aa33a8b89407a175.1; ATRK_y=1; ATRK_t=1
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f672a70e2c28b98564b551f9ceb91a42
7d5104657aa988f8ecd474675d2efcdc5348eed4
662d3516c787bc7651cfd4f0075877e57fc545a4e6fc631934ca9527101f8b86
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4450
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:34 GMT
Last-Modified: Tue, 27 Sep 2022 09:33:24 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
HTTP/1.1 200 OK
Cache-Control: private,max-age=1800
Content-Length: 11367
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 28 Jul 2022 17:32:37 GMT
Accept-Ranges: bytes
ETag: "80a8697a8a2d81:0"
Vary: Accept-Encoding
Set-Cookie: MUID=37A00D507345652D19701F7C72B0649C; domain=.bing.com; expires=Sun, 22-Oct-2023 10:47:34 GMT; path=/; SameSite=None; Secure; Priority=High;
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 90C6060173EE4FB780A1AAA58775CF3B Ref B: OSL30EDGE0519 Ref C: 2022-09-27T10:47:34Z
Date: Tue, 27 Sep 2022 10:47:33 GMT
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=2374DCAAFAE360EB1F11CE86FBB46196; domain=.bing.com; expires=Sun, 22-Oct-2023 10:47:34 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 14064ACE780A453DB0E62A944E6C36F7 Ref B: OSL30EDGE0408 Ref C: 2022-09-27T10:47:34Z
date: Tue, 27 Sep 2022 10:47:33 GMT
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/images/73d62878f28d372f1361d5c93770683d.png
172.98.65.24200 OK 2.4 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/images/73d62878f28d372f1361d5c93770683d.png
IP 172.98.65.24:0
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash 73d62878f28d372f1361d5c93770683d
91febc5c28d7d7f975d1f933727ab30b19e0842e
1e503d1de5566b7048b83491f5a7d3b9133122114009bb6c98fb07fc4ebdabb3
GET /update/music/christianmingle/images/73d62878f28d372f1361d5c93770683d.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
Cookie: ajs_anonymous_id=%22bacc043d-4073-44eb-815a-28e8b33929b3%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d58df80-5709-f21f-4893-2d9001fa371a%22%2C%22c%22%3A1664275649865%2C%22l%22%3A1664275649865%7D; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2299a1fc29-283b-b063-a8f4-d3b1ace72188%22%2C%22e%22%3A1664277450325%2C%22c%22%3A1664275649863%2C%22l%22%3A1664275650325%7D; ATRK_a=d6b03c5e4f174a81aa33a8b89407a175.1; ATRK_y=1; ATRK_t=1; __ssid=2a1e4aee-5657-405b-98af-0763db12fe0d
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:34 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 2386
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: image/png
bangextreme.cedges.com/update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png
172.98.65.24200 OK 457 B URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png
IP 172.98.65.24:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash c2ab4218f7d4cf593f4d6620f780f7f8
8050352dea4a1bc1021cc839fdfde2a80a1bd93b
a31af8633a6dc1857d3a5e9c231c03a49f80306580c3773ac4cddfe441c9bd8d
GET /update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
Cookie: ajs_anonymous_id=%22bacc043d-4073-44eb-815a-28e8b33929b3%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d58df80-5709-f21f-4893-2d9001fa371a%22%2C%22c%22%3A1664275649865%2C%22l%22%3A1664275649865%7D; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2299a1fc29-283b-b063-a8f4-d3b1ace72188%22%2C%22e%22%3A1664277450325%2C%22c%22%3A1664275649863%2C%22l%22%3A1664275650325%7D; ATRK_a=d6b03c5e4f174a81aa33a8b89407a175.1; ATRK_y=1; ATRK_t=1; __ssid=2a1e4aee-5657-405b-98af-0763db12fe0d
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:34 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 457
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: image/png
script.hotjar.com/modules-fa7b914657f32d32df01f26b19e8f066.js
143.204.55.68403 Forbidden 243 B URL HTTP/2 script.hotjar.com/modules-fa7b914657f32d32df01f26b19e8f066.js
IP 143.204.55.68:0
Hash 92849845ef76f758305fa3ab9ed04a17
4ebd84df9757f7e6e04feba52a99c302cd773f82
83a6ca5d9c9e90337c81ffe119d84f5c72c56ce3e283fbca9a2cf433529600ff
GET /modules-fa7b914657f32d32df01f26b19e8f066.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: application/xml
content-length: 243
date: Tue, 27 Sep 2022 10:47:34 GMT
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: E7stlzRlEjAiULjd33gmZ92cbECG2_TmqUz_l7JOe_02qr2nZb9kjA==
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=5525601&Ver=2&mid=85abf37a-3714-42e7-bd8e-651ed136d202&sid=c9fc68b03e5111edb3ae9dd3fb8b46df&vid=c9fc71603e5111eda907bd5a2dabc3f0&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Def30c3bdaa84435252e47a5e8e629ea2%26securessl%3Dtrue&r=<=3029&evt=pageLoad&sv=1&rn=493451
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5525601&Ver=2&mid=85abf37a-3714-42e7-bd8e-651ed136d202&sid=c9fc68b03e5111edb3ae9dd3fb8b46df&vid=c9fc71603e5111eda907bd5a2dabc3f0&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Def30c3bdaa84435252e47a5e8e629ea2%26securessl%3Dtrue&r=<=3029&evt=pageLoad&sv=1&rn=493451
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5525601&Ver=2&mid=85abf37a-3714-42e7-bd8e-651ed136d202&sid=c9fc68b03e5111edb3ae9dd3fb8b46df&vid=c9fc71603e5111eda907bd5a2dabc3f0&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Def30c3bdaa84435252e47a5e8e629ea2%26securessl%3Dtrue&r=<=3029&evt=pageLoad&sv=1&rn=493451 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3486FC96208460D70430EEBA21D36173; domain=.bing.com; expires=Sun, 22-Oct-2023 10:47:34 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FAB07079731C4424A0B364807467A006 Ref B: OSL30EDGE0408 Ref C: 2022-09-27T10:47:34Z
date: Tue, 27 Sep 2022 10:47:33 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=27017382&Ver=2&mid=8f4085b0-1a3f-4502-98e5-f5196ac0f10f&sid=c9fc68b03e5111edb3ae9dd3fb8b46df&vid=c9fc71603e5111eda907bd5a2dabc3f0&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Def30c3bdaa84435252e47a5e8e629ea2%26securessl%3Dtrue&r=<=3029&evt=pageLoad&sv=1&rn=597988
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=27017382&Ver=2&mid=8f4085b0-1a3f-4502-98e5-f5196ac0f10f&sid=c9fc68b03e5111edb3ae9dd3fb8b46df&vid=c9fc71603e5111eda907bd5a2dabc3f0&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Def30c3bdaa84435252e47a5e8e629ea2%26securessl%3Dtrue&r=<=3029&evt=pageLoad&sv=1&rn=597988
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=27017382&Ver=2&mid=8f4085b0-1a3f-4502-98e5-f5196ac0f10f&sid=c9fc68b03e5111edb3ae9dd3fb8b46df&vid=c9fc71603e5111eda907bd5a2dabc3f0&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Def30c3bdaa84435252e47a5e8e629ea2%26securessl%3Dtrue&r=<=3029&evt=pageLoad&sv=1&rn=597988 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0057B21F8FE9693E1283A0338EBE68FA; domain=.bing.com; expires=Sun, 22-Oct-2023 10:47:34 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3F808C45957B43E5B46A78FC3BB4E586 Ref B: OSL30EDGE0408 Ref C: 2022-09-27T10:47:34Z
date: Tue, 27 Sep 2022 10:47:33 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/5525601.js
13.107.21.200200 OK 666 B URL HTTP/2 bat.bing.com/p/action/5525601.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 6035d901b1e248c3f3ffca691342d795
eec8681b6b015af22ee45ad909775ddf8c734d51
785e8939d96003b3775eac0e3d1cba195a96097027d5cdb69dffa3324f597881
GET /p/action/5525601.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 666
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=07E701004CD06AE61DB7132C4D876BBA; domain=.bing.com; expires=Sun, 22-Oct-2023 10:47:34 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1D261548917440BE8A592F61FF4FCCAF Ref B: OSL30EDGE0408 Ref C: 2022-09-27T10:47:34Z
date: Tue, 27 Sep 2022 10:47:33 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/27017382.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/27017382.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/27017382.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=05A5FF1B61D9673C0464ED37608E66C6; domain=.bing.com; expires=Sun, 22-Oct-2023 10:47:34 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A16E37247B1A4D00A0328EA8EC9E2322 Ref B: OSL30EDGE0408 Ref C: 2022-09-27T10:47:34Z
date: Tue, 27 Sep 2022 10:47:33 GMT
X-Firefox-Spdy: h2
www.clarity.ms/tag/uet/5525601
13.107.219.53200 OK 1.6 kB URL HTTP/2 www.clarity.ms/tag/uet/5525601
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (1590), with no line terminators
Hash 1fcac9e3f0ed6ab9ed961321faeba046
a75897b6dff8e3ce530713fba53bebc4dbb95e27
c6168f400e81f6c556f0966b71545c05b892ba4767c329011140e3f9b848db7b
GET /tag/uet/5525601 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-length: 1590
content-type: application/x-javascript
expires: -1
set-cookie: CLID=2132e0d0d6e34318b2d34ddb55a45ed5.20220927.20230927; expires=Wed, 27 Sep 2023 10:47:34 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:e97341f6-8fff-46a6-9229-fbbfe0892c78
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0xtQyYwAAAAAUJQ0N51XsS539wUAb5nAdT1NMMjMxMDUwMjAzMDIxADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Tue, 27 Sep 2022 10:47:34 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.14.0/otBannerSdk.js
104.16.149.64200 OK 86 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.14.0/otBannerSdk.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (60044)
Hash 462fd628aa6cbc286b7c69370f7a8514
5411e8cafb28ee3ee92447eefd12dc7b47c061c6
d104ff8f3afb79a66b56df6a816ffdf5f85ec34872180bb50237425e05a7cca2
GET /scripttemplates/6.14.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 10:47:34 GMT
content-type: application/javascript
content-length: 83472
content-encoding: gzip
content-md5: bk+c/8JAdlTEAluR1Sm6dw==
last-modified: Wed, 24 Feb 2021 17:18:15 GMT
etag: 0x8D8D8E82BC311EE
x-ms-request-id: 5feb9f59-301e-0115-7b42-ca5c2a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 3770
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7513a9788f5bb4fd-OSL
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.41/clarity.js
13.107.219.53200 OK 35 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.41/clarity.js
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (54809)
Hash 1be1f6eb374068fc92b71b70aa0a7f0d
e33abc2656fd1b5ccf7aa4fd214140692c2f2062
e6174c2f865db6e00017b1240c825d952c3725778fb8d0435ced52ed7dc5373d
GET /eus2/s/0.6.41/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8d107429df470"
vary: Accept-Encoding
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0xtQyYwAAAABhJiWbF6s3RYpMihdX1Oh2T1NMMjMxMDUwMjAzMDIxADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Tue, 27 Sep 2022 10:47:34 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.14.0/assets/v2/otPcPanel.json
104.16.149.64200 OK 11 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.14.0/assets/v2/otPcPanel.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (37569)
Hash 948df0a720ec743942dfa05ff9d9a208
30eeb25ed7ba0d4d6c008cff70669fbad304c251
458ac22a60d60de32868af11acc9ae4c57212de2385a7fd2f7a24454ede05002
GET /scripttemplates/6.14.0/assets/v2/otPcPanel.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 10:47:34 GMT
content-type: application/json
content-length: 11445
content-encoding: gzip
content-md5: lI3wpyDsdDlC36Bf+dmiCA==
last-modified: Wed, 24 Feb 2021 17:18:07 GMT
etag: 0x8D8D8E8271D14E5
x-ms-request-id: 40f4942b-901e-007a-14e5-ceb2ab000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7513a9797f1db518-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json
104.16.149.64200 OK 2.7 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (7345)
Hash 064b4b17fd057f4289dff082cb288634
b84ad2cb8df7bad25d9dbdd8bb74f1fccffdcef6
2f0b307c5c84699437ea90cd220c493fa97e38b9eaead519c261117c82b8fd01
GET /scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 10:47:34 GMT
content-type: application/json
content-length: 2655
content-encoding: gzip
content-md5: BktLF/0Ff0KJ3/CCyyiGNA==
last-modified: Wed, 24 Feb 2021 17:18:06 GMT
etag: 0x8D8D8E82687488A
x-ms-request-id: c5b9ad28-201e-0027-5888-c942af000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7513a9797f1bb518-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/actionp/0?ti=5525601&Ver=2&mid=85abf37a-3714-42e7-bd8e-651ed136d202&sid=c9fc68b03e5111edb3ae9dd3fb8b46df&vid=c9fc71603e5111eda907bd5a2dabc3f0&vids=1&msclkid=N&evt=dedup
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/actionp/0?ti=5525601&Ver=2&mid=85abf37a-3714-42e7-bd8e-651ed136d202&sid=c9fc68b03e5111edb3ae9dd3fb8b46df&vid=c9fc71603e5111eda907bd5a2dabc3f0&vids=1&msclkid=N&evt=dedup
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /actionp/0?ti=5525601&Ver=2&mid=85abf37a-3714-42e7-bd8e-651ed136d202&sid=c9fc68b03e5111edb3ae9dd3fb8b46df&vid=c9fc71603e5111eda907bd5a2dabc3f0&vids=1&msclkid=N&evt=dedup HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0DE590F196C56CC4005782DD97926D90; domain=.bing.com; expires=Sun, 22-Oct-2023 10:47:34 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 04AE370810434095B81E7B4F05D89A4A Ref B: OSL30EDGE0408 Ref C: 2022-09-27T10:47:34Z
date: Tue, 27 Sep 2022 10:47:34 GMT
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3
142.250.70.195204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3
IP 142.250.70.195:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
date: Tue, 27 Sep 2022 10:47:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 81a847a6714ccfff2b6ed94362a1d24f
456645074d07f5c041119c03272602715b077598
8e69e0cf797b4a8a28324ee0a2b31b63b208bb7c129a7e3aa13d8d15a4c14135
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5498
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:35 GMT
Last-Modified: Tue, 27 Sep 2022 09:15:57 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
cdn.siftscience.com/s.js
34.96.67.224200 OK 23 kB IP 34.96.67.224:0
File type ASCII text, with very long lines (4212)
Hash 4642e66c7d470aeeae0a67f758a1f6e5
fde98a26d6efc9e2d3ce95828245bf064686a061
2b37cacf73c1f8e53ca863d6913403a28b21fb89f3caf71ecc0956a08e1d27fa
GET /s.js HTTP/1.1
Host: cdn.siftscience.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv0HziESc2mZrmc9DIR4y77uI8sCcvwgqqRzAhJfCdbgoSAdkRH8aI4NCuOnqu42rY1DpNQqsz3XS5yxbbhJTcl5g
x-goog-generation: 1586469553682331
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 20452
content-encoding: gzip
x-goog-hash: crc32c=fIrBTA==, md5=B8uCAxWKuyazwYMYNQ57Ng==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 20452
server: UploadServer
date: Mon, 26 Sep 2022 14:04:38 GMT
expires: Tue, 27 Sep 2022 14:04:38 GMT
cache-control: public, max-age=86400
age: 74577
last-modified: Thu, 09 Apr 2020 21:59:13 GMT
etag: "07cb8203158abb26b3c18318350e7b36"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 54 kB IP 93.184.220.29:0
File type gzip compressed data, from Unix\012- data
Hash 2a867880e148f90377cdf0b6b19defd4
7f1dbbe49eb0c2673b8e27d919bde8438e5c41aa
4413309a03ff61085009eed3ddb478adac37a2de0220903df25f07634c72e24c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5498
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:35 GMT
Last-Modified: Tue, 27 Sep 2022 09:15:57 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=0B73421F23E145F197C02241F1F1B087&RedC=c.clarity.ms&MXFR=37A3F135784E626A1CECE3197C4E6C36
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=37A3F135784E626A1CECE3197C4E6C36; domain=.clarity.ms; expires=Sun, 22-Oct-2023 10:47:35 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Tue, 27 Sep 2022 10:47:34 GMT
content-length: 0
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=0B73421F23E145F197C02241F1F1B087&RedC=c.clarity.ms&MXFR=37A3F135784E626A1CECE3197C4E6C36
13.107.21.200302 Found 21 kB URL HTTP/2 c.bing.com/c.gif?CtsSyncId=0B73421F23E145F197C02241F1F1B087&RedC=c.clarity.ms&MXFR=37A3F135784E626A1CECE3197C4E6C36
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type gzip compressed data, from Unix\012- data
Hash b894269ff30e25dad41e0490d72cc0a6
1276f66e4006f7e115ea0911b2d26b296d1dfcdd
de5ba4df0faa3a2a9cc7695a879e7de04aea9f7f4cd268fb598b2a6027d6d3de
GET /c.gif?CtsSyncId=0B73421F23E145F197C02241F1F1B087&RedC=c.clarity.ms&MXFR=37A3F135784E626A1CECE3197C4E6C36 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=0B73421F23E145F197C02241F1F1B087&MUID=0196AD8982A460DF32E4BFA583F361B1
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=0196AD8982A460DF32E4BFA583F361B1; domain=c.bing.com; expires=Sun, 22-Oct-2023 10:47:35 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FC5E1A4F451B4E8CA853031FB873F656 Ref B: OSL30EDGE0408 Ref C: 2022-09-27T10:47:35Z
date: Tue, 27 Sep 2022 10:47:34 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=0B73421F23E145F197C02241F1F1B087&MUID=0196AD8982A460DF32E4BFA583F361B1
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=0B73421F23E145F197C02241F1F1B087&MUID=0196AD8982A460DF32E4BFA583F361B1
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=0B73421F23E145F197C02241F1F1B087&MUID=0196AD8982A460DF32E4BFA583F361B1 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Tue, 27-Sep-2022 10:57:35 GMT; path=/; SameSite=None; Secure;
date: Tue, 27 Sep 2022 10:47:34 GMT
content-length: 42
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 10:47:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 681562
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://bangextreme.cedges.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Tue, 27 Sep 2022 10:47:35 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 121458
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://bangextreme.cedges.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Tue, 27 Sep 2022 10:47:35 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 327
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://bangextreme.cedges.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Tue, 27 Sep 2022 10:47:38 GMT
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-692969.js?sv=5
143.204.55.98200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-692969.js?sv=5
IP 143.204.55.98:0
GET /c/hotjar-692969.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 27 Sep 2022 10:47:34 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/d2d253608568ea4329e99d14d59cf91c
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SH5SwgFuN3HxUY3FMp-UGEkEf7SIs7SYLWcem3S-Zj4ekElm1Ax1FQ==
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
172.64.146.158200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 172.64.146.158:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 10:47:34 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7513a976ecaeb523-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
sdk.iad-01.braze.com/api/v3/data/
151.101.85.208200 OK 0 B URL HTTP/2 sdk.iad-01.braze.com/api/v3/data/
IP 151.101.85.208:0
OPTIONS /api/v3/data/ HTTP/1.1
Host: sdk.iad-01.braze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-requested-with
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type,x-requested-with
content-encoding: gzip
accept-ranges: bytes
date: Tue, 27 Sep 2022 10:47:32 GMT
via: 1.1 varnish
x-served-by: cache-bma1680-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664275652.456451,VS0,VE100
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
hexagon-analytics.com/images/166244.gif?bk=1f4e7326ba&tm=120&r=207187849&v=103&cs=UTF-8&h=bangextreme.cedges.com&l=en-US&S=a8d0d2f557b98a1e5dd5da63129b2ae6&uu=2a1e4aee-5657-405b-98af-0763db12fe0d&t=Christian%20Mingle%20-%20Login&u=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Def30c3bdaa84435252e47a5e8e629ea2%26securessl%3Dtrue&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=0&mh=d41d8cd98f00b204e9800998ecf8427e&np=0&ph=d41d8cd98f00b204e9800998ecf8427e&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=unspecified&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=16&je=false&z=z
34.102.232.42200 OK 0 B URL HTTP/2 hexagon-analytics.com/images/166244.gif?bk=1f4e7326ba&tm=120&r=207187849&v=103&cs=UTF-8&h=bangextreme.cedges.com&l=en-US&S=a8d0d2f557b98a1e5dd5da63129b2ae6&uu=2a1e4aee-5657-405b-98af-0763db12fe0d&t=Christian%20Mingle%20-%20Login&u=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Def30c3bdaa84435252e47a5e8e629ea2%26securessl%3Dtrue&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=0&mh=d41d8cd98f00b204e9800998ecf8427e&np=0&ph=d41d8cd98f00b204e9800998ecf8427e&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=unspecified&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=16&je=false&z=z
IP 34.102.232.42:0
GET /images/166244.gif?bk=1f4e7326ba&tm=120&r=207187849&v=103&cs=UTF-8&h=bangextreme.cedges.com&l=en-US&S=a8d0d2f557b98a1e5dd5da63129b2ae6&uu=2a1e4aee-5657-405b-98af-0763db12fe0d&t=Christian%20Mingle%20-%20Login&u=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Def30c3bdaa84435252e47a5e8e629ea2%26securessl%3Dtrue&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=0&mh=d41d8cd98f00b204e9800998ecf8427e&np=0&ph=d41d8cd98f00b204e9800998ecf8427e&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=unspecified&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=16&je=false&z=z HTTP/1.1
Host: hexagon-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 10:47:33 GMT
content-type: image/gif
x-content-type-options: nosniff
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-692969.js?sv=6
143.204.55.98200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-692969.js?sv=6
IP 143.204.55.98:0
GET /c/hotjar-692969.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 27 Sep 2022 10:47:34 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/d2d253608568ea4329e99d14d59cf91c
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AoJVJZ9Gj_ylX45JUPQ39hG-V4eCX5KISq8DIwmAiCxukiqLJfeMJw==
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/css/js
172.98.65.24200 OK 0 B URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/js
IP 172.98.65.24:0
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=ef30c3bdaa84435252e47a5e8e629ea2&securessl=true
Cookie: ajs_anonymous_id=%22bacc043d-4073-44eb-815a-28e8b33929b3%22
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 10:47:32 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 81829
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89
172.64.146.139404 Not Found 0 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89
IP 172.64.146.139:0
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Tue, 27 Sep 2022 10:47:32 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=_NVRLHksgEnC0Uu3JsNpuBfu8eEOP74X8GZdjGY1X_M-1664275652-0-AdECHYLNpVO4HXcODusnrQJb47jPp3s2gpVAheYLRga9HqrQkLrUHG29EC1Y1kXbo5K9o1pkyElO8vD/gYRyRrU=; path=/; expires=Tue, 27-Sep-22 11:17:32 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7513a966ec39b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
sdk.iad-01.braze.com/api/v3/data/
151.101.85.208200 OK 0 B URL HTTP/2 sdk.iad-01.braze.com/api/v3/data/
IP 151.101.85.208:0
OPTIONS /api/v3/data/ HTTP/1.1
Host: sdk.iad-01.braze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-requested-with
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type,x-requested-with
content-encoding: gzip
accept-ranges: bytes
date: Tue, 27 Sep 2022 10:47:32 GMT
via: 1.1 varnish
x-served-by: cache-bma1680-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664275652.095467,VS0,VE374
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
172.64.146.139404 Not Found 0 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
IP 172.64.146.139:0
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Tue, 27 Sep 2022 10:47:32 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=RPxSqK_HlN9MFJVG6duN6wGrDGIczN5AowcBpsXo8mM-1664275652-0-AfIthH6WcWW3Scz8cK7r3FrPWt7ZHw3LkAqr/sdmS49Uq7+xxBvwkQpP8MECruEHwb/bogYTg0GnhoBr26RiGos=; path=/; expires=Tue, 27-Sep-22 11:17:32 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7513a9686e46b511-OSL
content-encoding: br
X-Firefox-Spdy: h2