Report - bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true

Report Overview

Submitted URL
bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true
IP
172.98.65.24
ASN
#46562 PERFORMIVE
Submitted
2022-10-26 12:23:33
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
cdn.segment.com	1618	2014-04-11T14:30:48Z	2023-03-10T13:20:01Z	739 B	81 kB	143.204.48.96
csi.gstatic.com	unknown	2017-01-29T08:59:01Z	2023-03-10T14:25:44Z	452 B	545 B	216.239.32.3
cdn.siftscience.com	7858	2013-08-02T10:58:58Z	2023-03-09T12:25:31Z	353 B	21 kB	34.96.67.224
js.appboycdn.com	5270	2015-07-21T23:45:03Z	2023-03-09T14:34:45Z	757 B	102 kB	104.17.218.31
www.christianmingle.com	546516	2012-07-12T12:35:02Z	2023-02-20T19:14:50Z	3.2 kB	18 kB	172.64.146.139
sdk.iad-01.braze.com	648	2018-04-18T09:52:11Z	2023-03-09T18:12:12Z	1.5 kB	95 kB	151.101.85.208
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	3.0 kB	6.3 kB	142.250.74.35
api.segment.io	1076	2012-08-25T10:37:04Z	2023-03-10T13:40:54Z	878 B	528 B	54.201.194.161
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-10T05:15:22Z	722 B	118 kB	157.240.221.16
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-10T12:09:36Z	390 B	809 B	143.204.55.46
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.3 kB	3.5 kB	23.36.77.32
cdn.cookielaw.org	502	2013-12-28T14:20:36Z	2023-03-10T06:41:47Z	2.6 kB	123 kB	104.16.148.64
staticxx.facebook.com	13631	2017-01-30T06:00:10Z	2023-03-10T09:24:33Z	510 B	431 B	157.240.221.16
hexagon-analytics.com	5444	2016-10-14T15:29:03Z	2023-03-09T07:47:21Z	1.0 kB	2.8 kB	34.102.232.42
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-10T09:34:35Z	740 B	10 kB	143.204.55.84
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	321 B	229 B	34.117.237.239
maxcdn.bootstrapcdn.com	724	2014-06-18T02:37:31Z	2023-03-10T13:32:40Z	758 B	64 kB	104.18.11.207
bangextreme.cedges.com	unknown	2017-12-18T21:46:55Z	2023-02-26T12:56:59Z	8.4 kB	953 kB	172.98.65.24
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	3.3 kB	7.4 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	401 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	594 B	127 B	44.237.163.41
bat.bing.com	387	2014-04-08T11:23:16Z	2023-03-10T09:34:35Z	4.4 kB	28 kB	13.107.21.200
maps.googleapis.com	33876	2019-10-17T17:56:16Z	2023-03-10T14:06:43Z	1.7 kB	90 kB	142.250.74.170
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	338 B	1.0 kB	54.230.245.110
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	1.6 kB	26 kB	34.120.237.76
js.acq.io	95874	2013-08-25T14:53:42Z	2023-03-06T20:51:04Z	278 B	7.1 kB	143.204.55.115
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	505 B	2.9 kB	157.240.221.35
geolocation.onetrust.com	802	2018-02-07T12:23:41Z	2023-03-10T12:09:50Z	434 B	394 B	172.64.146.158

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-26	medium	bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js	Phishing
2022-10-26	medium	bangextreme.cedges.com/update/music/christianmingle/css/js	Phishing
2022-10-26	medium	bangextreme.cedges.com/update/music/christianmingle/css/0.txt	Phishing
2022-10-26	medium	bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg	Phishing
2022-10-26	medium	bangextreme.cedges.com/update/music/christianmingle/css/s.js	Phishing
2022-10-26	medium	bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html	Phishing
2022-10-26	medium	bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg	Phishing
2022-10-26	medium	bangextreme.cedges.com/update/music/christianmingle/css/0.txt	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (39)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 04:11:42 Times Seen37110444 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	connect.facebook.net/signals/config/594461023970302?v=2.9.88&r=stable	300 kB	2023-03-10	2023-03-10
Pretty URL connect.facebook.net/signals/config/594461023970302?v=2.9.88&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 15:02:58 Last Seen2023-03-10 16:06:21 Times Seen1 Hash 4771888a1d8f0ba9a3d665079bc6fc69 672bf39a3be7e368ca11300a0660283e013cadf8 0d40c14a7753a037d7504643b427c1513d97f0f85e23b8af638ae10e433b986a Loading...

	static.hotjar.com/c/hotjar-692969.js?sv=5	12 kB	2023-03-10	2023-03-10
Pretty URL static.hotjar.com/c/hotjar-692969.js?sv=5 IP 143.204.55.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 15:15:50 Last Seen2023-03-10 15:15:50 Times Seen1 Hash 382c0b585185bf50b915384d3c12d691 1729c59bd55175227a7c09f4d2afc33984c5c0cc 171cd7d48ebb7bc78e9e5496ab112eb765b7283637a45e193731a5e90ac8cd8c Loading...

	connect.facebook.net/signals/plugins/iwlparameters.js?v=2.9.88	5.4 kB	2023-03-07	2023-03-26
Pretty URL connect.facebook.net/signals/plugins/iwlparameters.js?v=2.9.88 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-26 01:36:45 Times Seen2 Hash 25630f2f957e0a344c4f790faed35cf4 d5929fe654fd0f41050d618dfac5a11943f8e1f3 3725573fa792a660b2a5f19d04c3506b7965a21a32bdad4b92dca29b1cce6d3f Loading...

	www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P	177 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 15:15:50 Last Seen2023-03-10 15:15:50 Times Seen1 Hash c499d1ca9db4c8ef717485843a3342a6 5d78b8247f59ca0248dc0618d52aa0e1a48dc2c2 04b05f851701c59aadb4f97baca539e01b1774d140edbd878e1ceefdac7b1223 Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true	373 B	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 476ccb1600c51eb47c7821b30c4d4457 5a892f0173d0efc30c390f76438d9a55599c65de 5bfde0e4e30fa338e39ac9075c537c912319ac5652b282a3e7026a52fced5c42 Loading...

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	22 kB	2023-03-07	2024-03-05
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.16.148.64 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:52 Last Seen2024-03-05 19:00:25 Times Seen96 Hash a750a84d2cd5eb69aa0b8b1b94db6da8 56fd3e55c49aa5f3e48e525ae794da9b070cfa6c bbc4456bca95006683a8f081d0d2ed645eef5b14c62eca12c70f7e1cec26c1a0 Loading...

	maps.googleapis.com/maps-api-v3/api/js/32/2/util.js	138 kB	2023-03-07	2023-11-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/32/2/util.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-11-08 07:16:54 Times Seen3 Hash 1ed023ae1b2b2d50bf3f3cd5d643e8f4 af0756e44de86ed293762f71f38eb0a98c151ff7 de347da780ca612e0e219921aa47b7bd21ddecfe900c1698a3b1dea2671481f5 Loading...

	connect.facebook.net/signals/plugins/iabpcmaebridge.js?v=2.9.88	5.4 kB	2023-03-07	2023-05-01
Pretty URL connect.facebook.net/signals/plugins/iabpcmaebridge.js?v=2.9.88 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-05-01 22:08:27 Times Seen4 Hash 7a041e9b69b7efad0a405d02b755680f bfcbfd53afea990064f8f28644f41503ac2e4eaf 6a71303fa4d325911546aa69b25f4095fce70a63f415ecf517e78cbf9676e22a Loading...

	connect.facebook.net/signals/plugins/cookie.js?v=2.9.88	5.4 kB	2023-03-07	2023-03-26
Pretty URL connect.facebook.net/signals/plugins/cookie.js?v=2.9.88 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-26 01:36:45 Times Seen2 Hash ef61935e15f101ed912dd6d414d3449f eb3090d11ea791f937f5272ca2912c7163495cb6 bac0ac3d48ed82f14cc4d362f9c090adfa56c205044c4a63f85fece82af1a57b Loading...

	connect.facebook.net/signals/plugins/prohibitedsources.js?v=2.9.88	5.4 kB	2023-03-07	2023-05-01
Pretty URL connect.facebook.net/signals/plugins/prohibitedsources.js?v=2.9.88 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-05-01 22:08:27 Times Seen4 Hash d7a785f9c6fad778867e81e0c64b5ac9 afbb7d15c27db65d3b2c9690adef6f46022f32b6 cb61abb0cd0019be8532b8d78758e52ca2d0d31bc647effbf3ab9dbb85f4b657 Loading...

	bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html	1.6 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 7edc670cb3e363da9a5b80bc2a958ddd e2b24ff91268f238649fbe9aecc86eb7782fb188 26abde77f596faf0906e9cca91c8facc297bba5bd7d84d5f51441cae0f91cbc9 Loading...

	cdn.siftscience.com/s.js	63 kB	2023-03-07	2024-02-01
Pretty URL cdn.siftscience.com/s.js IP 34.96.67.224 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-02-01 18:22:43 Times Seen47 Hash e070b4e00be46786aecb7d768fc81b82 94f1dd9f21f233293161dd8b2f13881288764126 7921df86278b7fa9be0cbd78d9990071763ec4e9e88aaff2c3d466723090b8ae Loading...

	bat.bing.com/bat.js	39 kB	2023-03-07	2023-08-25
Pretty URL bat.bing.com/bat.js IP 13.107.21.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2023-08-25 07:33:07 Times Seen42 Hash 16911c194f6e9313655f07c4eb9d8737 d39ccfa8c6d785af331afafe9e36336031f41b64 30153b15b4cb898c421e657f6de21dc27435cb990e7888367bdee12e06398da7 Loading...

	connect.facebook.net/signals/plugins/identity.js?v=2.8.12	65 kB	2023-03-08	2023-10-31
Pretty URL connect.facebook.net/signals/plugins/identity.js?v=2.8.12 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:47:10 Last Seen2023-10-31 18:18:05 Times Seen6 Hash 3db1d62e0f7e350997486f47458484bf 1fec0c1504d1b5afd937c7d8829c7ca76907c5d9 e3b9d52f002201be697fbc0ebf4bdcc61d6c01d0bb1359213e62c67e21850047 Loading...

	connect.facebook.net/en_US/sdk.js	3.1 kB	2023-03-10	2023-03-10
Pretty URL connect.facebook.net/en_US/sdk.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 15:15:50 Last Seen2023-03-10 15:15:50 Times Seen1 Hash cb0da1520484778cb89fdcca48b1db7f 11d7d8bb2e6588f7a49634c3dc11a1466a27b543 ff15c25a7e81454fd4d36ed8773c75a1f9cf7b4b1a59ff7731f62e258374e7a9 Loading...

	maps.googleapis.com/maps-api-v3/api/js/32/2/common.js	97 kB	2023-03-07	2023-11-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/32/2/common.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-11-08 07:16:54 Times Seen3 Hash d188db2b2cb16ec233af31f34c6c8b94 8a88b9ad6dff1bb288be777a189b26175c7b5925 76f9a4e05b607e8f7622fc8a3fbf79752c80f5c7b5bbe5f836ea7bb41792acfc Loading...

	bangextreme.cedges.com/update/music/christianmingle/css/js	82 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/css/js IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash b34a055aea7c0e7dfeb23312a9fc0760 c3d4489c667d2fcb6e52347d951c47d50b5a902a 766af0dc386594786e3c59282bc86384db697f50a48a5c0bfd5898f20b5aa1be Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true	424 B	2023-03-07	2023-03-10
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:43 Last Seen2023-03-10 16:06:21 Times Seen1 Hash b2f4aab247c44e5b951f0bbff1d3f477 05b833d3050aa7fe0015bab122f5c3a4b7a89cf6 3951cf5e33ae9efcca8c1810cdaa077fdc00e8c208a78ee3c1966986cd2d7806 Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true	368 B	2023-03-07	2023-03-10
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:43 Last Seen2023-03-10 16:06:21 Times Seen1 Hash 375a546ee7935a430bb74d6c70103cee 1611e1a544566a2abc9a4cbc43c4388198023031 49699d6dba5054532454a5fd31a94238e87297caa0fea447967e48d94acaacf3 Loading...

	cdn.cookielaw.org/scripttemplates/6.14.0/otBannerSdk.js	378 kB	2023-03-07	2024-04-23
Pretty URL cdn.cookielaw.org/scripttemplates/6.14.0/otBannerSdk.js IP 104.16.148.64 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:55:54 Last Seen2024-04-23 09:03:55 Times Seen107 Hash 4b732508f22f3022356407b9457e4c86 91216c391f265871ab932330ff541e8b22c19a74 e7c129ee5de51a2692632d98e0e18cbc092fb758635921e4ecc404293495fafa Loading...

	connect.facebook.net/en_US/fbevents.js	104 kB	2023-03-10	2023-03-17
Pretty URL connect.facebook.net/en_US/fbevents.js IP 157.240.221.16 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:59:40 Last Seen2023-03-17 18:53:20 Times Seen1 Hash f57aba97948a746d2066bdfee6d725f1 e5963d1dee17faeac81bc96e8b63d41b7198d1ac e432523f77f554cf143883486329c1e97472bed166a3efd6c2a8ec8299caafca Loading...

	cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js	416 kB	2023-03-07	2023-03-17
Pretty URL cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js IP 143.204.48.96 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 08521cc76b5cdf06eab95b9fc031b95b f02cb321b16d6f3c41a3fc6d32b13481c8e3dc6a 440db39f7904f66ab63d7594ac9f14f8864143f1eec32d806c342a6199e7b04f Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true	2.7 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 41f0b9631cd41555323371b59416f2fd 3afcfe6c5ae3f83729a76bf716fe420d4544de8c a61b33346c8c750908236e51b654380f746ec0baeb4862d040e44f488c36c872 Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true	1.2 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:53:00 Times Seen1 Hash b13ab42d63a6650cd5462d2d3dd96aa9 0b811490c8ec9ee2f37fb5994608d5dcc9a9ec66 c3ffb7f8ce9a931b5b96c0726543aff9fd6c6a21cccd9746366e5c0bb8d309bd Loading...

	js.acq.io/ATRK_52A44AA2_min.js	24 kB	2023-03-07	2023-03-17
Pretty URL js.acq.io/ATRK_52A44AA2_min.js IP 143.204.55.115 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 33b83171c1044dc6bdc7ae7a647443a1 579b2d02a34746fb1fef7f07a7cdcc5925632fb2 b6ba561e0d0da4d376021107cb318192ea2177aa162b4130b4f113f84fc7749d Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true	183 B	2023-03-07	2023-04-11
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:40:33 Last Seen2023-04-11 03:35:01 Times Seen2 Hash eb436d252df33a20c4768f5246a655cd 93ab70cc5fcfc1964f22e4c8df5e47e17df03f09 8a4304c7bf43c1ef8356d7fd3b1871c92ef83655b588bebf1b231a2e1864801c Loading...

	connect.facebook.net/signals/plugins/unwanteddata.js?v=2.9.88	5.4 kB	2023-03-07	2023-05-01
Pretty URL connect.facebook.net/signals/plugins/unwanteddata.js?v=2.9.88 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-05-01 22:08:27 Times Seen4 Hash 687d4f9af3ad21232dbc1d690803a5a1 57c6389e96fd3cef831fa05ac2d8ccc9e15ebde9 f3b8552f0cd5bb3422cfc212949b1ef10b53e0c7fa45ca581b7ea1beb7ba9b89 Loading...

	bangextreme.cedges.com/update/music/christianmingle/css/s.js	58 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/css/s.js IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 9038bfff3bfe3fc0bcefa895fea7ccb7 f8e55264a1876d8b59d25b630c646d52526faabf 242770dc1a3f6e097f9b5213c8562974501b681cf155e49b64a2f75cf8abe47d Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true	250 B	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash d81bccfce0a2bb62bd8dd63e859f21e3 74168820acf915e6f0cf1c66f031f979b9136593 f8c2f637802b14486199e6f583718ed0762de76b46619731fcc160a3b03ae2d3 Loading...

	connect.facebook.net/signals/plugins/automaticmatchingforpartnerintegrations.js?v=2.9.88	5.4 kB	2023-03-07	2023-05-01
Pretty URL connect.facebook.net/signals/plugins/automaticmatchingforpartnerintegrations.js?v=2.9.88 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-05-01 22:08:27 Times Seen4 Hash d47f2d5154ee5799bac71188ba3b07e2 14670594ae74eae9353b228f927a8a19e1d9c9d1 ac80f1bae5262bdbbbe15d67c2c611e00c52295329316d290589773e87969634 Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttp%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3De30b50dd9c3c236b097372969cbc3394%26securessl%3Dtrue&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._e3kres&token=53125	248 B	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttp%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3De30b50dd9c3c236b097372969cbc3394%26securessl%3Dtrue&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._e3kres&token=53125 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 15:15:50 Last Seen2023-03-10 15:15:50 Times Seen1 Hash f7767e097f89233648baf836abd9d29a 20c923d5a100f1ed21754e1f991c18f65dc16eeb c73645a31ebf91ae2ffdd21fd121d63b86c185bcc03062951ae0a974560e386f Loading...

	js.appboycdn.com/web-sdk/1.6/appboy.min.js	143 kB	2023-03-07	2024-01-27
Pretty URL js.appboycdn.com/web-sdk/1.6/appboy.min.js IP 104.17.218.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-01-27 09:18:54 Times Seen17 Hash bd8c768fe5e4740920f57a1a01e14a3f e9676f6d6599a3a2053d0759bf2d73ca7bab3849 b8a01b01a8545511558be10066e3eb5af36f93ba7135552b235e30d612f58997 Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true	107 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 4cc7bbedd3b3118584be5c7d3043c31f d8b3dfa18b62e9b1c5ebcf6d46f0c8b6071b0077 db8826d8a632a68a3df915e38e41b34500f94aa56d637f95c938daeccb746a42 Loading...

	bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js	20 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 0373b7787b60a2dfe54326de8b1f4b85 87b9015d8ac4b025c15470988a63fd54aded2996 bec11db4f9e8415d4718c34d7ff9a2968f0e64a9e9e1e91279f79c9fe8135b7b Loading...

	maps.googleapis.com/maps-api-v3/api/js/32/2/stats.js	3.6 kB	2023-03-07	2023-11-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/32/2/stats.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-11-08 07:16:54 Times Seen5 Hash e95163e44e2ab0f37f5ceff2ff85f273 6e34cd047f35f9e52e6fccd5c647521080fa7843 3bf3d38af8c3f4e4a41ec0f4eacad1abe37df97c4b00e93f52c056f7fd0458f6 Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391	248 B	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391 IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 1bcb4fb53e134b086ae4df2ffdade78d e0390a4944dff37109eca62b12711abb5e8589c1 db814af25b67dbf0ac33e0f81467e4ef7f98a3ec394876bc1ba340814744aa41 Loading...

	connect.facebook.net/signals/config/594461023970302?v=2.8.12&r=stable	182 kB	2023-03-08	2023-03-10
Pretty URL connect.facebook.net/signals/config/594461023970302?v=2.8.12&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:58:11 Last Seen2023-03-10 16:06:21 Times Seen1 Hash 4ff6def5496a9b23b792557b9a0c99ad be80273eb8c43e4d1658afbfd785913ad409f9af 77025c424f9afd1f7f1b327a6ea1202bd50b9e61b8d75a861e2a689c33fddb5a Loading...

		Size	First Seen	Last Seen
	#1 Write - d4bf1003aeb402abe1751838593af234	85 B	2023-03-07	2023-03-17
Pretty Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash d4bf1003aeb402abe1751838593af234 ed9d06e72f12e7415ba63fa2c84766662a8fca10 cb48acc85e0d9b09186e84dc1759fc9586be3d09d8cbc8e23100660a3a10e205 Loading...

HTTP Transactions (87)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e36c852b5e145f2f09fe73111fb162e1
e439c6a462f86a3003d6464a8b9999b1c4d1e210
52a721168d0c41cb0854ff8c730fce3b79db2e804b383238e95ff1401922bd74

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52A721168D0C41CB0854FF8C730FCE3B79DB2E804B383238E95FF1401922BD74"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5611
Expires: Wed, 26 Oct 2022 13:56:51 GMT
Date: Wed, 26 Oct 2022 12:23:20 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5893
Cache-Control: max-age=168355
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:20 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 11:09:15 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a39eea1096852891690eaee02a64383e
c273000f799fc3676e8e3ef3617611a31252cffc
d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15102
Expires: Wed, 26 Oct 2022 16:35:02 GMT
Date: Wed, 26 Oct 2022 12:23:20 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 8Pt9gZhlgbZeVjiURuDINHJpcIyGRK4WTKGYzN5jbHeW+9hCIkO6Os8yqkcB6wNDSSwyLAv6XNICKa5jCeBWhA==
x-amz-request-id: 6HBPBAEEQY9WFA7D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 26 Oct 2022 12:09:21 GMT
age: 839
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 12:23:20 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
a2d444e5f0c56eff53fc311fff74e106
bf251cb8edfb7a5070e9b0bded154664c4d9461b
82e26364c2895ad31cf21fe7d4af77b439a5243449cf0291d342e7478b68f718

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4573
Cache-Control: max-age=95001
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:21 GMT
Etag: "6357e4f5-116"
Expires: Thu, 27 Oct 2022 14:46:42 GMT
Last-Modified: Tue, 25 Oct 2022 13:30:29 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
a2d444e5f0c56eff53fc311fff74e106
bf251cb8edfb7a5070e9b0bded154664c4d9461b
82e26364c2895ad31cf21fe7d4af77b439a5243449cf0291d342e7478b68f718

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4573
Cache-Control: max-age=95001
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:21 GMT
Etag: "6357e4f5-116"
Expires: Thu, 27 Oct 2022 14:46:42 GMT
Last-Modified: Tue, 25 Oct 2022 13:30:29 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278

js.appboycdn.com/web-sdk/1.6/appboy.min.js

104.17.218.31

200 OK

39 kB

URL HTTP/2
js.appboycdn.com/web-sdk/1.6/appboy.min.js
IP
104.17.218.31:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (43293)
Size
39 kB (38747 bytes)
Hash
cdc2991f37d8911a92c2255304f68a93
fc9caee5febfba9c1f642dcbf18712004ee26bf2
0a7b9bcb391711cff7f9bef8c3bbf132e28507eae1b7403b95928a919da21f57

HTTP Headers

GET /web-sdk/1.6/appboy.min.js HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:23:21 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: rBuvKgQ/AJ4VKKVa4JPfGH0D9BYLN+9Tuba5TDUdtFCtVz03KgtpPlGQQpbbQMIOSgzGsmSJaRA=
x-amz-request-id: PFEFER0M5H56YP5K
last-modified: Fri, 06 Oct 2017 18:19:54 GMT
etag: W/"bd8c768fe5e4740920f57a1a01e14a3f"
cf-cache-status: HIT
age: 6052
expires: Wed, 26 Oct 2022 16:23:21 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 760329a4c9800b06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

js.appboycdn.com/web-sdk/1.6/appboy.min.css

104.17.218.31

200 OK

63 kB

URL HTTP/2
js.appboycdn.com/web-sdk/1.6/appboy.min.css
IP
104.17.218.31:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
63 kB (62642 bytes)
Hash
bc02ac2d615baf3fcc8b6bdafa506730
c9f89fdb01ad3e802a91b1e949f7bda1466e3073
b5e7c3f3c6dd01afdc95a685c539de41ae9c1aa7c0d44fc7f00ad56a2e984f01

HTTP Headers

GET /web-sdk/1.6/appboy.min.css HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:23:21 GMT
content-type: text/css; charset=utf-8
x-amz-id-2: huDB3PumhyF6WrF6APQUv+8CD8wIbVcPv5aL7uohp3adWf2h9c1YeKxEl7ZrrKdJivchdPfudxs=
x-amz-request-id: KAMFRPEM2QQ08FFS
last-modified: Fri, 06 Oct 2017 18:19:54 GMT
etag: W/"3f4d7e756ec9b4609665da772b9cef98"
cf-cache-status: HIT
age: 5346
expires: Wed, 26 Oct 2022 16:23:21 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 760329a4a95c0b06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css

104.18.11.207

200 OK

6.0 kB

URL HTTP/1.1
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (23577)
Size
6.0 kB (6007 bytes)
Hash
79b25bba7faf617a700078021baf261d
afe865347d7edd54588209e2c192160aa4fdba2b
0d532abf8b1c2cc786dda91d183f02a318c82e03e6fd920addf82d0f4ef818bd

HTTP Headers

GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:21 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
CDN-EdgeStorageId: 632, 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 2021-06-08 21:08:57
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: e6a55b08fe5091f45c9e99ce9e9f98c2
Content-Encoding: gzip
CDN-Status: 200
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 12228600
Server: cloudflare
CF-RAY: 760329a7ef3ab4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
dd283dfc036535bdeb8a8be1310ef930
d3b1c300dd75d7af630e0f3112e49d7492d66c17
578f9256faa188facb3f2d68b02b0c7fb2e30e02e2e74234d015429563cba7aa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1656
Cache-Control: max-age=159062
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:21 GMT
Etag: "6358ea97-1d7"
Expires: Fri, 28 Oct 2022 08:34:23 GMT
Last-Modified: Wed, 26 Oct 2022 08:06:47 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true

172.98.65.24

200 OK

781 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (33214)
Size
781 kB (780786 bytes)
Hash
a17026e5303d403f36fc9260a2942aa5
01faa73a10891df0fa03a81fc430acda621a731a
eb1190f073acb847895452eb8939e2a6a8d554d76a817db1792511ac1eebf5da

HTTP Headers

GET /update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:20 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.googleapis.com/maps-api-v3/api/js/32/2/stats.js

142.250.74.170

200 OK

1.6 kB

URL HTTP/2
maps.googleapis.com/maps-api-v3/api/js/32/2/stats.js
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (936)
Size
1.6 kB (1574 bytes)
Hash
a203584a43f2a974503019bb3d16697c
7ff8f27007e5406405b2b254f2da0cd29982e9cb
50027d52b012183d159d7e5a0661aa8844c3a3aa2452e186c244506f81e84091

HTTP Headers

GET /maps-api-v3/api/js/32/2/stats.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 1574
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 11:23:27 GMT
expires: Sat, 21 Oct 2023 11:23:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Feb 2018 06:05:46 GMT
content-type: text/javascript
age: 435594
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.googleapis.com/maps-api-v3/api/js/32/2/common.js

142.250.74.170

200 OK

33 kB

URL HTTP/2
maps.googleapis.com/maps-api-v3/api/js/32/2/common.js
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (974)
Size
33 kB (33005 bytes)
Hash
9ac3a79256967c814e7d160a96bbe40e
cdba4037a42361fe81a4e5182789d9a90c4f0bbd
00a8ddc090487ce9f0954b2595c0cd062ef6caf9190eef321615a1887c8c0095

HTTP Headers

GET /maps-api-v3/api/js/32/2/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 33005
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 23:23:21 GMT
expires: Sat, 21 Oct 2023 23:23:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Feb 2018 06:05:46 GMT
content-type: text/javascript
age: 392400
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maps.googleapis.com/maps-api-v3/api/js/32/2/util.js

142.250.74.170

200 OK

52 kB

URL HTTP/2
maps.googleapis.com/maps-api-v3/api/js/32/2/util.js
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2193)
Size
52 kB (51988 bytes)
Hash
cb4892d0e6cfcc58b8e23f88e6e07260
f4bdc3c54593506399ac2b3babadfe6ca52cba59
f7371ea1643d3e827558be9d67abb0788853db74d3154c59735daa45f6594bc8

HTTP Headers

GET /maps-api-v3/api/js/32/2/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 51988
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 25 Oct 2022 23:53:22 GMT
expires: Wed, 25 Oct 2023 23:53:22 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Feb 2018 06:05:46 GMT
content-type: text/javascript
age: 44999
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391

142.250.74.170

200 OK

199 B

URL HTTP/2
maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
199 B (199 bytes)
Hash
d753ddf308007bf2963889db280fca6d
b52cd7f36a769e92b893c3cfc59478ae2792bc00
97d8c57d5a2a66974ff48805365f709c2acc88b3eb5b23d7ddc91ae5efe28a85

HTTP Headers

GET /maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Wed, 26 Oct 2022 12:23:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-disposition: attachment
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: mafe
content-length: 199
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=11
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js

172.98.65.24

200 OK

20 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
C source, ASCII text, with very long lines (533)
Size
20 kB (19905 bytes)
Hash
0373b7787b60a2dfe54326de8b1f4b85
87b9015d8ac4b025c15470988a63fd54aded2996
bec11db4f9e8415d4718c34d7ff9a2968f0e64a9e9e1e91279f79c9fe8135b7b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/ATRK_52A44AA2_min.js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true
Cookie: ajs_anonymous_id=%221b64d118-4cf7-4c30-9a43-a5bd458c6f8a%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22df9e2b2d-09ae-3465-9914-f674430f5b85%22%2C%22e%22%3A1666788798245%2C%22c%22%3A1666786998245%2C%22l%22%3A1666786998245%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22f1eaa826-f090-beab-0af5-be08f1f30382%22%2C%22c%22%3A1666786998246%2C%22l%22%3A1666786998246%7D

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:21 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 19905
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
3f5f3f8ad9a0927a324eba72a47801d9
b429341634a8c325f8a28c2da20935765cd7c58f
514f1df141dbe6ce04d6d8594276987211e62e344c238092047082362b36e4b3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=124359
Date: Wed, 26 Oct 2022 12:23:21 GMT
Etag: "635852a3-1d7"
Expires: Thu, 27 Oct 2022 22:56:00 GMT
Last-Modified: Tue, 25 Oct 2022 21:18:27 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ML15EdEs4RIOEKWQlyWPfsB5z37JrngeJVVOGlZ5qt-72AnZzolFvQ==
Age: 5853

push.services.mozilla.com/

44.237.163.41

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.237.163.41:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mxFx3HY62TZSLA07shROcA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2IMaacCgiOy2XrOaQQ501mfrGNc=

cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js

143.204.48.96

200 OK

80 kB

URL HTTP/1.1
cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js
IP
143.204.48.96:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (31366)
Size
80 kB (79786 bytes)
Hash
448904f439ec74d9d4c9ea54bc70a5f8
3814eed88d909a16ea58e3ab12104a2f328d905c
f1c80e3770d0c144c1533f5f7925af5321cfe9e73a532054361272bf98eefe84

HTTP Headers

GET /analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/

HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
x-amz-replication-status: COMPLETED
Last-Modified: Thu, 16 Jun 2022 18:04:02 GMT
x-amz-version-id: YnCyzjpCjV986.xpNLpvtAI2y.y0XmP_
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 26 Oct 2022 12:23:22 GMT
Cache-Control: public, max-age=120
ETag: W/"08521cc76b5cdf06eab95b9fc031b95b"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: H6NDyoFM_G-_imRx8g-i6awa5S257RqrsQxRvtFLn64UBbE8rtRaZA==

api.segment.io/v1/p

54.201.194.161

200 OK

21 B

URL HTTP/2
api.segment.io/v1/p
IP
54.201.194.161:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text
Size
21 B (21 bytes)
Hash
90749a50019a27e1f32cebdbaa7a1bc1
8329e3339f928f8591024bb0f938dab99c0ad4b8
12f71cb993958eefc4bdb41d7dbbda490779a9c7aba448f7be52bb63912e0254

HTTP Headers

POST /v1/p HTTP/1.1
Host: api.segment.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1163
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:23:22 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: http://bangextreme.cedges.com
strict-transport-security: max-age=31536000
vary: Origin
X-Firefox-Spdy: h2

api.segment.io/v1/p

54.201.194.161

200 OK

21 B

URL HTTP/2
api.segment.io/v1/p
IP
54.201.194.161:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text
Size
21 B (21 bytes)
Hash
90749a50019a27e1f32cebdbaa7a1bc1
8329e3339f928f8591024bb0f938dab99c0ad4b8
12f71cb993958eefc4bdb41d7dbbda490779a9c7aba448f7be52bb63912e0254

HTTP Headers

POST /v1/p HTTP/1.1
Host: api.segment.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1163
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:23:22 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: http://bangextreme.cedges.com
strict-transport-security: max-age=31536000
vary: Origin
X-Firefox-Spdy: h2

bangextreme.cedges.com/update/music/christianmingle/css/js

172.98.65.24

200 OK

82 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/js
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
ASCII text, with very long lines (4027)
Size
82 kB (81829 bytes)
Hash
b34a055aea7c0e7dfeb23312a9fc0760
c3d4489c667d2fcb6e52347d951c47d50b5a902a
766af0dc386594786e3c59282bc86384db697f50a48a5c0bfd5898f20b5aa1be

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true
Cookie: ajs_anonymous_id=%221b64d118-4cf7-4c30-9a43-a5bd458c6f8a%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22df9e2b2d-09ae-3465-9914-f674430f5b85%22%2C%22e%22%3A1666788798245%2C%22c%22%3A1666786998245%2C%22l%22%3A1666786998245%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22f1eaa826-f090-beab-0af5-be08f1f30382%22%2C%22c%22%3A1666786998246%2C%22l%22%3A1666786998246%7D

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:22 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 81829
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive

bangextreme.cedges.com/update/music/christianmingle/css/0.txt

172.98.65.24

200 OK

0 B

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/0.txt
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/0.txt HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true
Cookie: ajs_anonymous_id=%221b64d118-4cf7-4c30-9a43-a5bd458c6f8a%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22df9e2b2d-09ae-3465-9914-f674430f5b85%22%2C%22e%22%3A1666788798245%2C%22c%22%3A1666786998245%2C%22l%22%3A1666786998245%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22f1eaa826-f090-beab-0af5-be08f1f30382%22%2C%22c%22%3A1666786998246%2C%22l%22%3A1666786998246%7D

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:22 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d

172.64.146.139

404 Not Found

891 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d
IP
172.64.146.139:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380), with CRLF, LF line terminators
Size
891 B (891 bytes)
Hash
da1769cbac3d94ece958b2e07f9993c9
cfe028aeeaa8d3921b03ee0ad0893f233000aed7
79088a2e63859074454b68c83886bb2479ca3f0868e7d87ae62cc22c6d459c40

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 12:23:22 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=fmFYBw8VQOhtzF3b0GM4jHqrC6lfSVfG5F12xFcIUC0-1666787002-0-AWtMfo6Bdo2otrSmF94GcbR0iUhyN4yc54RpEfYAwrZkSTsybSeTfzo++qVl36je7ivIlvTgEXmjm/KgCl+Hl6E=; path=/; expires=Wed, 26-Oct-22 12:53:22 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 760329a7ca7eb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3941
Expires: Wed, 26 Oct 2022 13:29:04 GMT
Date: Wed, 26 Oct 2022 12:23:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3941
Expires: Wed, 26 Oct 2022 13:29:04 GMT
Date: Wed, 26 Oct 2022 12:23:23 GMT
Connection: keep-alive

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba

172.64.146.139

404 Not Found

4.9 kB

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba
IP
172.64.146.139:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380), with CRLF, LF line terminators
Size
4.9 kB (4910 bytes)
Hash
aadb3831e863b6a83e85b167b2675101
f0585ca4638d19e53fba84174c2a84f13efa14d3
1db2d2427b47a58b77ae2e3b7fea9b1587c044104a4492f4b2723c080fc8488c

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 12:23:22 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=oR3lTRQiwi4s8T4nkdDCk3qwgGCwlYnGMSyujE.veHs-1666787002-0-AaT0KsbamycdyewWZZ2b+HmNbItV67qb4jpuwvf97XLzolek7ZSXn5+NzK1ySHqNrsLCAOmmFB2E6r3IJsQcWH4=; path=/; expires=Wed, 26-Oct-22 12:53:22 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 760329a7dabbb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d

172.64.146.139

404 Not Found

7.4 kB

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d
IP
172.64.146.139:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380), with CRLF, LF line terminators
Size
7.4 kB (7430 bytes)
Hash
020986f4afc58788214f3b308b5e00ea
9811520bc531f04d3bc54c06a041eab81e33d731
7e241d36142b49e13fc4efd41b32d0278c199c6a277fa2360f970adab2dabef9

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 12:23:22 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=Fme94NqaEQsQm2wnXee7paMkY1oW2RtlijeD_GKWPZU-1666787002-0-AWye4Voq75DjZNWxkx1oxQaJwiajpErPOLkxzMWo7xtdyEFfcHJsQ/4wKH+ERpcQa1X2KM06JSbPv2ArQqteGGg=; path=/; expires=Wed, 26-Oct-22 12:53:22 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 760329a7dab1b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

sdk.iad-01.braze.com/api/v3/data/

151.101.85.208

200 OK

14 kB

URL HTTP/2
sdk.iad-01.braze.com/api/v3/data/
IP
151.101.85.208:0
ASN
#54113 FASTLY

File type
data
Size
14 kB (13816 bytes)
Hash
fdf87185b581c87fef45585a9abe8e1a
5ca386b2c4795760e0d5a7b27b132dd8c6b3c08f
fc213eb4be9a5f7c150fc4813720e20b739d330b608cab16949232cd0aa9d2b1

HTTP Headers

OPTIONS /api/v3/data/ HTTP/1.1
Host: sdk.iad-01.braze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-requested-with
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers: 
access-control-max-age: 7200
access-control-allow-headers: content-type,x-requested-with
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:23:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666787002.646395,VS0,VE108
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

sdk.iad-01.braze.com/api/v3/data/

151.101.85.208

201 Created

9.4 kB

URL HTTP/2
sdk.iad-01.braze.com/api/v3/data/
IP
151.101.85.208:0
ASN
#54113 FASTLY

File type
data
Size
9.4 kB (9429 bytes)
Hash
b8bb2b61ce56dc00a3c10e7315a97913
94ba875374f2ca6784beb5fd75ba79696c315533
1fe1a0647a31d57a4cfd7a7bcca93e98f742953ffb0310a68d19bfac690b949e

HTTP Headers

POST /api/v3/data/ HTTP/1.1
Host: sdk.iad-01.braze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 532
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 201 Created
content-type: application/json
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers: 
access-control-max-age: 7200
etag: W/"4fe698c2b61ec775e360867586fecd3c"
cache-control: max-age=0, private, must-revalidate
x-request-id: 4450956a-07c0-4ae1-95b5-fe6262f18729
x-runtime: 0.090544
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:23:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666787002.767740,VS0,VE184
vary: Origin,Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7929 bytes)
Hash
c3ae78510434fd68063fc144bf614382
3bb87ca5274ce9f6d81da60ab940d23ccd12843b
f42d89328435cb37cba1111903a6bd5e900857d0942e1506ea2115b4e6301541

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7929
x-amzn-requestid: 6324abd6-8e27-4903-8bfc-a0fc6a8625be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alK9LEeoIAMF5mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585854-2900343b1ae208a903fe58fd;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:42:44 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5MR4UzoW6rVsSpEyPAWrcFb2LCRICaG-toy3JflaXRrzZwcgMs48VQ==
via: 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:09:07 GMT
etag: "3bb87ca5274ce9f6d81da60ab940d23ccd12843b"
content-type: image/jpeg
age: 51256
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46a778e-e75b-47e4-aeb6-86c999571ae0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6090 bytes)
Hash
83eeb2a673d2d0b119ba37fec52d30d1
e4d440e51b826e2cd69a00f4abf195971b2843df
4a15ba8118e9ecfe75177a4ae36fe97f14f4d9b4c6938d5863e7ae805bccb431

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46a778e-e75b-47e4-aeb6-86c999571ae0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6090
x-amzn-requestid: ab19f9fb-ebca-468d-9fb4-b70b4812a5b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alKjiEiNoAMFQ8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635857b0-63fc3f874e6015777194599c;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:40:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nM-3r-MLfIaGrc1e2d-YfIjT_Zb6JElPb73k2Qmpksg2NxaOqbUZkQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:48:48 GMT
age: 52475
etag: "e4d440e51b826e2cd69a00f4abf195971b2843df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg

172.98.65.24

200 OK

3.6 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3605), with no line terminators
Size
3.6 kB (3605 bytes)
Hash
1fc2f4c7a120346c0dbfdc72c1a925b5
e593fa0daad30c0c4fda97489d1dbc548450a667
1a310e172227e76183c8859859410900f5f78dc859854c59fba1f79a76cf04e5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true
Cookie: ajs_anonymous_id=%221b64d118-4cf7-4c30-9a43-a5bd458c6f8a%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22df9e2b2d-09ae-3465-9914-f674430f5b85%22%2C%22e%22%3A1666788798245%2C%22c%22%3A1666786998245%2C%22l%22%3A1666786998245%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22f1eaa826-f090-beab-0af5-be08f1f30382%22%2C%22c%22%3A1666786998246%2C%22l%22%3A1666786998246%7D

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:23 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 3605
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

bangextreme.cedges.com/update/music/christianmingle/css/s.js

172.98.65.24

200 OK

58 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/s.js
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
ASCII text, with very long lines (881)
Size
58 kB (57588 bytes)
Hash
9038bfff3bfe3fc0bcefa895fea7ccb7
f8e55264a1876d8b59d25b630c646d52526faabf
242770dc1a3f6e097f9b5213c8562974501b681cf155e49b64a2f75cf8abe47d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/s.js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true
Cookie: ajs_anonymous_id=%221b64d118-4cf7-4c30-9a43-a5bd458c6f8a%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22df9e2b2d-09ae-3465-9914-f674430f5b85%22%2C%22e%22%3A1666788798245%2C%22c%22%3A1666786998245%2C%22l%22%3A1666786998245%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22f1eaa826-f090-beab-0af5-be08f1f30382%22%2C%22c%22%3A1666786998246%2C%22l%22%3A1666786998246%7D

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:22 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 57588
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/javascript

js.acq.io/ATRK_52A44AA2_min.js

143.204.55.115

200 OK

6.6 kB

URL HTTP/1.1
js.acq.io/ATRK_52A44AA2_min.js
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
C source, ASCII text, with very long lines (575)
Size
6.6 kB (6595 bytes)
Hash
aceb0b1b2fd71410e61bed008025203a
1810ec18f81fd17eb93671d578ac9e142ed6ecf6
1d801dc488f6d6b58bb669a9ce6dc1e184011977db8b92faed7436307200731e

HTTP Headers

GET /ATRK_52A44AA2_min.js HTTP/1.1
Host: js.acq.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 09 Feb 2021 18:47:48 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 25 Oct 2022 18:08:13 GMT
ETag: W/"33b83171c1044dc6bdc7ae7a647443a1"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FRQyDr4kW3URSubV8CZz53kEYuxahu77iGF8sGddSKJ-STPDNIeb2A==
Age: 65711

maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0

104.18.11.207

200 OK

57 kB

URL HTTP/1.1
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Size
57 kB (56780 bytes)
Hash
97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c

HTTP Headers

GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:23 GMT
Content-Type: font/woff2
Content-Length: 56780
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "97493d3f11c0a3bd5cbd959f5d19b699"
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 08/18/2022 19:50:49
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: 6d42e0c60dd713cd65c3377e27bccf39
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 435594
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 760329b39e5d0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5515
Cache-Control: max-age=111783
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:23 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 19:26:26 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

sdk.iad-01.braze.com/api/v3/data/

151.101.85.208

201 Created

70 kB

URL HTTP/2
sdk.iad-01.braze.com/api/v3/data/
IP
151.101.85.208:0
ASN
#54113 FASTLY

File type
data
Size
70 kB (69607 bytes)
Hash
f14a7e1fa2f71dcfbb5ba491d414a75d
a035bb6378bcef45181b472afb37ecff0866da97
b1fa32245ad8bad5855d5ccbb85d0ad18b91198aeeb89f6bcb9c40e8b49a9766

HTTP Headers

POST /api/v3/data/ HTTP/1.1
Host: sdk.iad-01.braze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 240
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 201 Created
content-type: application/json
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers: 
access-control-max-age: 7200
etag: W/"8723855d370beb568de3844fa329eec4"
cache-control: max-age=0, private, must-revalidate
x-request-id: a33dfc0f-e900-41f0-b1c3-1cdf3decb641
x-runtime: 0.025646
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:23:22 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666787002.219916,VS0,VE127
vary: Origin,Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html

172.98.65.24

200 OK

1.8 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (517), with CRLF line terminators
Size
1.8 kB (1795 bytes)
Hash
9f371c2150a8decf9afafd1307790421
abcf3d1c8c901229fb3897f8b4f07e0caf33c380
747c93671bc7eaef5c90e54f2827c965a41d601640afed9666615a543d325553

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true
Cookie: ajs_anonymous_id=%221b64d118-4cf7-4c30-9a43-a5bd458c6f8a%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22f1eaa826-f090-beab-0af5-be08f1f30382%22%2C%22c%22%3A1666786998246%2C%22l%22%3A1666786998246%7D; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22df9e2b2d-09ae-3465-9914-f674430f5b85%22%2C%22e%22%3A1666788798890%2C%22c%22%3A1666786998245%2C%22l%22%3A1666786998890%7D
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:23 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 1795
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/html

bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg

172.98.65.24

200 OK

5.0 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (5038), with no line terminators
Size
5.0 kB (5038 bytes)
Hash
b1fe73573691e00e8abc9724bdf18a64
96ed1473608b28543349e05d9b8d703f8e7f3ae3
75458168a5a076536706ee20473c29a07eeeb4b3793446c3595d069dadb8345d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true
Cookie: ajs_anonymous_id=%221b64d118-4cf7-4c30-9a43-a5bd458c6f8a%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22df9e2b2d-09ae-3465-9914-f674430f5b85%22%2C%22e%22%3A1666788798245%2C%22c%22%3A1666786998245%2C%22l%22%3A1666786998245%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22f1eaa826-f090-beab-0af5-be08f1f30382%22%2C%22c%22%3A1666786998246%2C%22l%22%3A1666786998246%7D

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:23 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 5038
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bb28744457eea62f47791f01e45947bb
69659ec5971744b80d14b8c8bd2b2e814798b740
d6354e1b7cf5b2b67a86cce188ac9d8d15d2a32ec92e6cfb06bff34dc2fb250f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6548
Cache-Control: max-age=123253
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:23 GMT
Etag: "63584b9c-1d7"
Expires: Thu, 27 Oct 2022 22:37:36 GMT
Last-Modified: Tue, 25 Oct 2022 20:48:28 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.16.148.64

200 OK

7.2 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (21747)
Size
7.2 kB (7151 bytes)
Hash
7b4564ae957eef3a8302343f44c5cfb3
296c38b2ae23a31d80201b32a38c02e75de27c91
15155c8652fe9654c2d2813743ae09ff93a469d790d3424a6b090f876b3d9bb2

HTTP Headers

GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:23:23 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: e0VkrpV+7zqDAjQ/RMXPsw==
last-modified: Wed, 26 Oct 2022 02:02:31 GMT
etag: 0x8DAB6F624527072
x-ms-request-id: 1d22a46b-001e-009a-01ec-e85423000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 8436
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 760329b4dd53b4f4-OSL
X-Firefox-Spdy: h2

staticxx.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42

157.240.221.16

302 Found

0 B

URL HTTP/2
staticxx.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
IP
157.240.221.16:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42 HTTP/1.1
Host: staticxx.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: +f7Cs34vKFor+fag/FX7ZRhxhLFPRuCGyljHVeLzP8BG5/CqR1u7T39f/QstmP5d6dtTdLTxOV5YyROmL4RE2g==
content-length: 0
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 12:23:23 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json

104.16.148.64

200 OK

1.2 kB

URL HTTP/2
cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (2927), with no line terminators
Size
1.2 kB (1216 bytes)
Hash
8e4c72ec00a99fd7823125c4372c2d79
60101617ed9f7b11074366762007f3d16358a8de
71a566eced85606c6ea616ea8575233de1f8a96bfa8d603f44474fc53a140b49

HTTP Headers

GET /consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:23:23 GMT
content-type: application/x-javascript
content-length: 1216
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: jkxy7ACpn9eCMSXENywteQ==
last-modified: Tue, 30 Mar 2021 08:14:21 GMT
etag: 0x8D8F353D2921816
x-ms-request-id: c59c0bb0-a01e-0110-5b88-c9a855000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 0
expires: Wed, 26 Oct 2022 16:23:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 760329b50bcdb4ee-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5515
Cache-Control: max-age=111783
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:23 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 19:26:26 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

277 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
277 B (277 bytes)
Hash
7d639bbed10a2d4d69a3f0de9fe3708a
d8dd8c5c7b2230cc13df12af3d59f0086bafb9a6
2c92353a0def89a52c8340fc4073f84a5d12ffc69629fc6c7d96623b26816f14

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5329
Cache-Control: max-age=86793
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:23 GMT
Etag: "6357c1f3-115"
Expires: Thu, 27 Oct 2022 12:29:56 GMT
Last-Modified: Tue, 25 Oct 2022 11:01:07 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 277

www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42

157.240.221.35

404 Not Found

72 B

URL HTTP/2
www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type
HTML document, ASCII text, with no line terminators
Size
72 B (72 bytes)
Hash
2556c01148fc3cf811a190ae37345224
644567805749ab3ec4df4a00c82b0a4f8566f25d
f65e4cc023578b2bb3522d09231cd56eb84d209b18d501eeebf8a0b098f7635e

HTTP Headers

GET /connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: kYkFFCDUavvvIO/EHoWu83i3jkCturDLoko2UMTQRtU9sKoHPHP9Halo2qA6tseMGwH20siM5T04gFuokV7TPg==
content-length: 72
date: Wed, 26 Oct 2022 12:23:23 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bb28744457eea62f47791f01e45947bb
69659ec5971744b80d14b8c8bd2b2e814798b740
d6354e1b7cf5b2b67a86cce188ac9d8d15d2a32ec92e6cfb06bff34dc2fb250f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6548
Cache-Control: max-age=123253
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:23 GMT
Etag: "63584b9c-1d7"
Expires: Thu, 27 Oct 2022 22:37:36 GMT
Last-Modified: Tue, 25 Oct 2022 20:48:28 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

cdn.cookielaw.org/scripttemplates/6.14.0/otBannerSdk.js

104.16.148.64

200 OK

84 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/6.14.0/otBannerSdk.js
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65455)
Size
84 kB (83472 bytes)
Hash
6e4f9cffc2407654c4025b91d529ba77
75e1ca1aeaf219b7364eb2916b0fd92514de3afb
ee4781f268cdbb15a244efd1549ccfbbdb2f9f7548c61853ecfb688b5adbb647

HTTP Headers

GET /scripttemplates/6.14.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:23:23 GMT
content-type: application/javascript
content-length: 83472
content-encoding: gzip
content-md5: bk+c/8JAdlTEAluR1Sm6dw==
last-modified: Wed, 24 Feb 2021 17:18:15 GMT
etag: 0x8D8D8E82BC311EE
x-ms-request-id: 5feb9f59-301e-0115-7b42-ca5c2a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 8428
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 760329b64ef8b4f4-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/f54f29ef-74d5-45b2-8c69-54124e98661e/en.json

104.16.148.64

200 OK

12 kB

URL HTTP/2
cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/f54f29ef-74d5-45b2-8c69-54124e98661e/en.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (43389), with no line terminators
Size
12 kB (11882 bytes)
Hash
d5e20c953f6be67a64952958079ed00d
2ce8ed8df8d5549b8aeb4317915cba4a27dc411e
a44ea327fbe73367a66460ac2620e3f3b88465c665dcc0ee02a837663f53e618

HTTP Headers

GET /consent/0232e281-a585-4e05-8d99-2fec39bf53fe/f54f29ef-74d5-45b2-8c69-54124e98661e/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:23:24 GMT
content-type: application/x-javascript
content-length: 11882
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: 1eIMlT9r5npklSlYB57QDQ==
last-modified: Tue, 30 Mar 2021 08:14:25 GMT
etag: 0x8D8F353D4D2FEF9
x-ms-request-id: 97790e56-801e-0021-6e3f-e5b5d7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: REVALIDATED
expires: Wed, 26 Oct 2022 16:23:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 760329b70e63b4ee-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json

104.16.148.64

200 OK

2.7 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (7345)
Size
2.7 kB (2655 bytes)
Hash
064b4b17fd057f4289dff082cb288634
b84ad2cb8df7bad25d9dbdd8bb74f1fccffdcef6
2f0b307c5c84699437ea90cd220c493fa97e38b9eaead519c261117c82b8fd01

HTTP Headers

GET /scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:23:24 GMT
content-type: application/json
content-length: 2655
content-encoding: gzip
content-md5: BktLF/0Ff0KJ3/CCyyiGNA==
last-modified: Wed, 24 Feb 2021 17:18:06 GMT
etag: 0x8D8D8E82687488A
x-ms-request-id: 90dbbe6f-101e-0085-24b1-e18f33000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 760329b7df2fb4ee-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/6.14.0/assets/v2/otPcPanel.json

104.16.148.64

200 OK

11 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/6.14.0/assets/v2/otPcPanel.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (37569)
Size
11 kB (11445 bytes)
Hash
948df0a720ec743942dfa05ff9d9a208
30eeb25ed7ba0d4d6c008cff70669fbad304c251
458ac22a60d60de32868af11acc9ae4c57212de2385a7fd2f7a24454ede05002

HTTP Headers

GET /scripttemplates/6.14.0/assets/v2/otPcPanel.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:23:24 GMT
content-type: application/json
content-length: 11445
content-encoding: gzip
content-md5: lI3wpyDsdDlC36Bf+dmiCA==
last-modified: Wed, 24 Feb 2021 17:18:07 GMT
etag: 0x8D8D8E8271D14E5
x-ms-request-id: 404360e9-601e-0160-130d-e4db91000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 760329b7df33b4ee-OSL
X-Firefox-Spdy: h2

bangextreme.cedges.com/update/music/christianmingle/css/0.txt

172.98.65.24

200 OK

0 B

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/0.txt
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/0.txt HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true
Cookie: ajs_anonymous_id=%221b64d118-4cf7-4c30-9a43-a5bd458c6f8a%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22f1eaa826-f090-beab-0af5-be08f1f30382%22%2C%22c%22%3A1666786998246%2C%22l%22%3A1666786998246%7D; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22df9e2b2d-09ae-3465-9914-f674430f5b85%22%2C%22e%22%3A1666788798890%2C%22c%22%3A1666786998245%2C%22l%22%3A1666786998890%7D; ATRK_a=b63b0c45b20945ebbd59c5d68b2af023.1; ATRK_y=1; ATRK_t=1

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:23 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

bangextreme.cedges.com/update/music/christianmingle/css/tp.png

172.98.65.24

200 OK

0 B

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/tp.png
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /update/music/christianmingle/css/tp.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=e30b50dd9c3c236b097372969cbc3394&securessl=true
Cookie: ajs_anonymous_id=%221b64d118-4cf7-4c30-9a43-a5bd458c6f8a%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22df9e2b2d-09ae-3465-9914-f674430f5b85%22%2C%22e%22%3A1666788798245%2C%22c%22%3A1666786998245%2C%22l%22%3A1666786998245%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22f1eaa826-f090-beab-0af5-be08f1f30382%22%2C%22c%22%3A1666786998246%2C%22l%22%3A1666786998246%7D

HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:23:23 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

connect.facebook.net/en_US/fbevents.js

157.240.221.16

200 OK

27 kB

URL HTTP/1.1
connect.facebook.net/en_US/fbevents.js
IP
157.240.221.16:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27045 bytes)
Hash
3199a043c6e1f3cebc24fd8649209e83
52ab67a063797a77836fc3ff53d143dcbec4e1c9
10cc66b20e34c1b0cf13e97c83c67ba99037460fcd0703b75aae0cddd2c6f68a

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/

HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
Pragma: public
Cache-Control: public, max-age=1200
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
X-FB-Debug: KiMdH5HagouyKGeVc+wuX/gQ6TtusORWQCZrLh8uKfzO4QVC2zK5Tzw2odfX5rCQ30HXRjW/vxPcG6uby6uzTQ==
X-FB-TRIP-ID: 1679558926
Date: Wed, 26 Oct 2022 12:23:24 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 27045

bat.bing.com/bat.js

13.107.21.200

200 OK

11 kB

URL HTTP/1.1
bat.bing.com/bat.js
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Size
11 kB (11367 bytes)
Hash
293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/

HTTP/1.1 200 OK
Cache-Control: private,max-age=1800
Content-Length: 11367
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 28 Jul 2022 17:32:37 GMT
Accept-Ranges: bytes
ETag: "80a8697a8a2d81:0"
Vary: Accept-Encoding
Set-Cookie: MUID=1ADF3DCACF826DCE1F302F83CE776C1C; domain=.bing.com; expires=Mon, 20-Nov-2023 12:23:24 GMT; path=/; SameSite=None; Secure; Priority=High;
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 8CE452B64BC54A1CB6800DB5D855F89C Ref B: OSL30EDGE0208 Ref C: 2022-10-26T12:23:24Z
Date: Wed, 26 Oct 2022 12:23:23 GMT

bat.bing.com/bat.js

13.107.21.200

200 OK

11 kB

URL HTTP/2
bat.bing.com/bat.js
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Size
11 kB (11376 bytes)
Hash
babb0d09b27851a7c080c2843211eb91
cf41327a7f5a83c8343e85741bc34cb53050449a
adc4ea8ee48fd9337d951234bd345899ddb116cad409265ee2cf01733ac82e84

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11376
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=3AA1CBF404B56BF638A0D9BD05406AFF; domain=.bing.com; expires=Mon, 20-Nov-2023 12:23:24 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 16EA01D5D6DC448AB7E49B7EEBD84D75 Ref B: OSL30EDGE0516 Ref C: 2022-10-26T12:23:24Z
date: Wed, 26 Oct 2022 12:23:23 GMT
X-Firefox-Spdy: h2

script.hotjar.com/modules-fa7b914657f32d32df01f26b19e8f066.js

143.204.55.46

403 Forbidden

243 B

URL HTTP/2
script.hotjar.com/modules-fa7b914657f32d32df01f26b19e8f066.js
IP
143.204.55.46:0
ASN
#16509 AMAZON-02

File type
data
Size
243 B (243 bytes)
Hash
3f35338760679f920266e5b5343497cf
8baf29caddc09b80720197dd9aa816887ec8f71e
d052bcd88b613c60c9d864848f22d4ce167b00d611887b92f9b971760867f52e

HTTP Headers

GET /modules-fa7b914657f32d32df01f26b19e8f066.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
content-type: application/xml
content-length: 243
date: Wed, 26 Oct 2022 12:23:24 GMT
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X1XNPQ_A8ZoqCsdJFsoq-1VCQ6jgHSEH7ArWNfBTtzhgLo6NfhsNZg==
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bat.bing.com/p/action/5525601.js

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/5525601.js
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/5525601.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
set-cookie: MUID=326EA97C19CF622D18EABB35183A6311; domain=.bing.com; expires=Mon, 20-Nov-2023 12:23:24 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 752BAE08136746FEB570F514F4AF78A6 Ref B: OSL30EDGE0516 Ref C: 2022-10-26T12:23:24Z
date: Wed, 26 Oct 2022 12:23:23 GMT
X-Firefox-Spdy: h2

hexagon-analytics.com/images/494913.gif?bk=1f4e7326ba&tm=111&r=18168547&v=103&cs=UTF-8&h=bangextreme.cedges.com&l=en-US&S=1bc4a1e75eaff230f71774c77784634d&uu=366934b5-03d9-4683-bcc6-cc949f0b7f66&t=Christian%20Mingle%20-%20Login&u=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3De30b50dd9c3c236b097372969cbc3394%26securessl%3Dtrue&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=0&mh=d41d8cd98f00b204e9800998ecf8427e&np=0&ph=d41d8cd98f00b204e9800998ecf8427e&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=unspecified&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=16&je=false&z=z

34.102.232.42

200 OK

2.4 kB

URL HTTP/2
hexagon-analytics.com/images/494913.gif?bk=1f4e7326ba&tm=111&r=18168547&v=103&cs=UTF-8&h=bangextreme.cedges.com&l=en-US&S=1bc4a1e75eaff230f71774c77784634d&uu=366934b5-03d9-4683-bcc6-cc949f0b7f66&t=Christian%20Mingle%20-%20Login&u=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3De30b50dd9c3c236b097372969cbc3394%26securessl%3Dtrue&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=0&mh=d41d8cd98f00b204e9800998ecf8427e&np=0&ph=d41d8cd98f00b204e9800998ecf8427e&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=unspecified&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=16&je=false&z=z
IP
34.102.232.42:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
2.4 kB (2429 bytes)
Hash
1afec959d5c7891a7d7b674c94c7a109
8d2c3d9ed62b0c8d3bedb9356745466d52aaffa1
75873cddd010dd678a591fc188633bbca76805ed6b99e01cd762542b3c739e05

HTTP Headers

GET /images/494913.gif?bk=1f4e7326ba&tm=111&r=18168547&v=103&cs=UTF-8&h=bangextreme.cedges.com&l=en-US&S=1bc4a1e75eaff230f71774c77784634d&uu=366934b5-03d9-4683-bcc6-cc949f0b7f66&t=Christian%20Mingle%20-%20Login&u=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3De30b50dd9c3c236b097372969cbc3394%26securessl%3Dtrue&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=0&mh=d41d8cd98f00b204e9800998ecf8427e&np=0&ph=d41d8cd98f00b204e9800998ecf8427e&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=unspecified&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=16&je=false&z=z HTTP/1.1
Host: hexagon-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 12:23:23 GMT
content-type: image/gif
x-content-type-options: nosniff
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

csi.gstatic.com/csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3

216.239.32.3

204 No Content

0 B

URL HTTP/2
csi.gstatic.com/csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3
IP
216.239.32.3:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
access-control-allow-origin: *
date: Wed, 26 Oct 2022 12:23:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

connect.facebook.net/en_US/sdk.js?hash=20dda993e641b41d8acfb501898c2827

157.240.221.16

200 OK

88 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js?hash=20dda993e641b41d8acfb501898c2827
IP
157.240.221.16:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (18530)
Size
88 kB (88391 bytes)
Hash
269f0c5665b2a93233b81fad90582797
fbd731442f604b4a6fb6526f7c9f7f6c593b67ec
54aebbeda309a649f82847d2021fe4f17f692a1e41afe3584c30957d44960f4f

HTTP Headers

GET /en_US/sdk.js?hash=20dda993e641b41d8acfb501898c2827 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: f9f67108a48490ab390ff6e42d57b668
etag: "e3aa18eed0f7fcc31a0228f7d732fbeb"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 26 Oct 2023 10:24:06 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: Jp8MVmWyqTIzuB+tkFgnlw==
x-fb-debug: TciWIuznjD/lgkPNIQsPwrTC7a7HKw4SKXzka6uUq9voK7CfegU+Ovw0jdh/lbU20BBtXjwEE+m2V6IU4EWTdg==
priority: u=3,i
content-length: 88391
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 12:23:24 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bat.bing.com/action/0?ti=5525601&Ver=2&mid=e3e7b2aa-46f5-440f-a369-bc870f9db45d&sid=fab84fc0552811edaae4eb16c399452c&vid=fab86280552811edaa5a791424843279&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3De30b50dd9c3c236b097372969cbc3394%26securessl%3Dtrue&r=&lt=3076&evt=pageLoad&sv=1&rn=865032

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=5525601&Ver=2&mid=e3e7b2aa-46f5-440f-a369-bc870f9db45d&sid=fab84fc0552811edaae4eb16c399452c&vid=fab86280552811edaa5a791424843279&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3De30b50dd9c3c236b097372969cbc3394%26securessl%3Dtrue&r=&lt=3076&evt=pageLoad&sv=1&rn=865032
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=5525601&Ver=2&mid=e3e7b2aa-46f5-440f-a369-bc870f9db45d&sid=fab84fc0552811edaae4eb16c399452c&vid=fab86280552811edaa5a791424843279&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3De30b50dd9c3c236b097372969cbc3394%26securessl%3Dtrue&r=&lt=3076&evt=pageLoad&sv=1&rn=865032 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3403FE1BD74A6B991EB0EC52D6BF6A3D; domain=.bing.com; expires=Mon, 20-Nov-2023 12:23:24 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2B8442E5C89641C0A2D7977F5291A2AD Ref B: OSL30EDGE0516 Ref C: 2022-10-26T12:23:24Z
date: Wed, 26 Oct 2022 12:23:23 GMT
X-Firefox-Spdy: h2

bat.bing.com/action/0?ti=27017382&Ver=2&mid=11d0e06d-61ee-4bc7-b164-413feb584aa3&sid=fab84fc0552811edaae4eb16c399452c&vid=fab86280552811edaa5a791424843279&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3De30b50dd9c3c236b097372969cbc3394%26securessl%3Dtrue&r=&lt=3076&evt=pageLoad&sv=1&rn=679297

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=27017382&Ver=2&mid=11d0e06d-61ee-4bc7-b164-413feb584aa3&sid=fab84fc0552811edaae4eb16c399452c&vid=fab86280552811edaa5a791424843279&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3De30b50dd9c3c236b097372969cbc3394%26securessl%3Dtrue&r=&lt=3076&evt=pageLoad&sv=1&rn=679297
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=27017382&Ver=2&mid=11d0e06d-61ee-4bc7-b164-413feb584aa3&sid=fab84fc0552811edaae4eb16c399452c&vid=fab86280552811edaa5a791424843279&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3De30b50dd9c3c236b097372969cbc3394%26securessl%3Dtrue&r=&lt=3076&evt=pageLoad&sv=1&rn=679297 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1B4F45B1CD0D6E2D1A7D57F8CCF86F77; domain=.bing.com; expires=Mon, 20-Nov-2023 12:23:24 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8E05FEC3698346CE8CFA3547106A05B2 Ref B: OSL30EDGE0516 Ref C: 2022-10-26T12:23:24Z
date: Wed, 26 Oct 2022 12:23:24 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bat.bing.com/p/action/27017382.js

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/27017382.js
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/27017382.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=363D19310DA767A423580B780C5266EC; domain=.bing.com; expires=Mon, 20-Nov-2023 12:23:24 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9744FD1E5F8E423883C931506F624BB7 Ref B: OSL30EDGE0516 Ref C: 2022-10-26T12:23:24Z
date: Wed, 26 Oct 2022 12:23:24 GMT
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-692969.js?sv=6

143.204.55.84

200 OK

4.6 kB

URL HTTP/2
static.hotjar.com/c/hotjar-692969.js?sv=6
IP
143.204.55.84:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (8057)
Size
4.6 kB (4619 bytes)
Hash
a8ad3dd9aede763750088c60d82096fc
bcaf792c28d656505c4eea8d194bf986b04cab5b
32952db0f65759fa46d466b186289084eebc8ce5eabf2e3e90fed2d492a53a48

HTTP Headers

GET /c/hotjar-692969.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 12:23:24 GMT
cache-control: max-age=60
etag: W/382c0b585185bf50b915384d3c12d691
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KrW75nE9ZkGIZzeehLRaHYBem40w1MYa3vxtXKBXw7l-LOOe1URFmA==
X-Firefox-Spdy: h2

cdn.siftscience.com/s.js

34.96.67.224

200 OK

20 kB

URL HTTP/2
cdn.siftscience.com/s.js
IP
34.96.67.224:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (881)
Size
20 kB (20452 bytes)
Hash
07cb8203158abb26b3c18318350e7b36
e6358e099b70081c2cbc9ded90be18da28386e90
cecc3d075f40d84bbb5f93d506117d31ae9f9dbaacda83a7078e2c7bc61283fb

HTTP Headers

GET /s.js HTTP/1.1
Host: cdn.siftscience.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycdsFFIyI-2qsajCd3XsVlkg0voeG9_XYuWzF90DLhrGTOdpuDgVyXYDau1NKWsaHoj0Ng3dcHK-rklqR-cZqKODf
x-goog-generation: 1586469553682331
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 20452
content-encoding: gzip
x-goog-hash: crc32c=fIrBTA==, md5=B8uCAxWKuyazwYMYNQ57Ng==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 20452
server: UploadServer
date: Tue, 25 Oct 2022 21:31:21 GMT
expires: Wed, 26 Oct 2022 21:31:21 GMT
cache-control: public, max-age=86400
age: 53523
last-modified: Thu, 09 Apr 2020 21:59:13 GMT
etag: "07cb8203158abb26b3c18318350e7b36"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
38e4940e1398b07484c704285cd14432
4827398658747cf10a1a87d98b9a0c1415dd230b
bdae6af5c7bc63f5bfceb379b76ac3562b37291c94fbc22edff08df42da8d356

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4381
Cache-Control: max-age=111003
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:23:24 GMT
Etag: "6358243b-1d7"
Expires: Thu, 27 Oct 2022 19:13:27 GMT
Last-Modified: Tue, 25 Oct 2022 18:00:27 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

bat.bing.com/actionp/0?ti=5525601&Ver=2&mid=e3e7b2aa-46f5-440f-a369-bc870f9db45d&sid=fab84fc0552811edaae4eb16c399452c&vid=fab86280552811edaa5a791424843279&vids=1&msclkid=N&evt=dedup

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/actionp/0?ti=5525601&Ver=2&mid=e3e7b2aa-46f5-440f-a369-bc870f9db45d&sid=fab84fc0552811edaae4eb16c399452c&vid=fab86280552811edaa5a791424843279&vids=1&msclkid=N&evt=dedup
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /actionp/0?ti=5525601&Ver=2&mid=e3e7b2aa-46f5-440f-a369-bc870f9db45d&sid=fab84fc0552811edaae4eb16c399452c&vid=fab86280552811edaa5a791424843279&vids=1&msclkid=N&evt=dedup HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=374E0FC3E4036EE621951D8AE5F66F33; domain=.bing.com; expires=Mon, 20-Nov-2023 12:23:25 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AC25286759D34D9785A4893A40E0E332 Ref B: OSL30EDGE0516 Ref C: 2022-10-26T12:23:25Z
date: Wed, 26 Oct 2022 12:23:24 GMT
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-692969.js?sv=5

143.204.55.84

200 OK

4.3 kB

URL HTTP/2
static.hotjar.com/c/hotjar-692969.js?sv=5
IP
143.204.55.84:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (8057)
Size
4.3 kB (4346 bytes)
Hash
a980ee5ad4672c1d67d58ae2da96ea9e
250b5afb5a526d6978b31d3be82cc10d9ea1c8ee
92ae4f02ec061265fa4599ca49cf827c536779275e68ef703e75db12ac690de9

HTTP Headers

GET /c/hotjar-692969.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 12:23:24 GMT
cache-control: max-age=60
etag: W/382c0b585185bf50b915384d3c12d691
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Dvlh-WBWA9TSFKw8yrrsRoXqaU4u5ci09ha0_YwXcwFhbCvYyy7o1g==
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8439 bytes)
Hash
db946866312c734e0c5f91ca76255b2f
e8b8236baab9106a426a415eb01494cc4cc91ad1
a695e7bc87da2c6d9f5669c09e662fe22982e69cb139466efa5093429fe19866

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8439
x-amzn-requestid: e0eed725-0725-4f5a-9c91-fec13ad0ebe5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ajKYQGWhIAMFdhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63578a9b-2a0115120e75f5271cea992f;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 07:04:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pf98qKWMjPBID3auXFKPhj1kt67xEWF_e2CpRMQ7_HkPJGzJ3cK1qw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 07:18:26 GMT
age: 18303
etag: "e8b8236baab9106a426a415eb01494cc4cc91ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89

172.64.146.139

404 Not Found

0 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89
IP
172.64.146.139:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 12:23:22 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=skWbKf18CzgnA2smlLw8426QhnUuBJNbgnjqhVwokIc-1666787002-0-ASID4i1RkJAVKziTJT7uHVe56h2j7YUn0NkDeXljVixH190yK7mIMxVsWlkA6VEFDApLVL8g/ORz/kmiAttub7o=; path=/; expires=Wed, 26-Oct-22 12:53:22 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 760329a7daadb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js

143.204.48.96

200 OK

0 B

URL HTTP/2
cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js
IP
143.204.48.96:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 18:04:02 GMT
x-amz-version-id: YnCyzjpCjV986.xpNLpvtAI2y.y0XmP_
server: AmazonS3
content-encoding: br
date: Wed, 26 Oct 2022 12:23:20 GMT
cache-control: public, max-age=120
etag: W/"08521cc76b5cdf06eab95b9fc031b95b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zEABqoSYMKbB-uWYjbHWdZYd-zLKaBjWD05-Yo7J1x_4eaXojyoqCw==
age: 57
X-Firefox-Spdy: h2

geolocation.onetrust.com/cookieconsentpub/v1/geo/location

172.64.146.158

200 OK

0 B

URL HTTP/2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
172.64.146.158:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:23:23 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 760329b5a8e50b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3

172.64.146.139

404 Not Found

0 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3
IP
172.64.146.139:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 12:23:22 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=EFGqvm0s_.IAM2zPIL74cJT1Bi47eQj2Gzuol2Lsukw-1666787002-0-AREdwN4f9bD4vpsUE0Xo8KFdytkYuaKEMtK2RNbBHVhnrWXF/GjbmAKjBKOYj0TdHdXWut+UuLGGa8OQWHVac14=; path=/; expires=Wed, 26-Oct-22 12:53:22 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 760329a7ca70b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282

172.64.146.139

404 Not Found

0 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
IP
172.64.146.139:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 12:23:22 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=.DPOLL.fKfizCjEpIJJ_ID5S4xdbhK8B42jq7kWfk_o-1666787002-0-AWerNObbf+P3c6dlcy+J/pm47GF9FAhLwIQ+oZZs5N8Q4FqEOMlh0tnCb2nC1U7Cj49tbB6gFzoLVIH/rPRDupY=; path=/; expires=Wed, 26-Oct-22 12:53:22 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 760329a8bbc6b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d

172.64.146.139

404 Not Found

0 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d
IP
172.64.146.139:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Cookie: __cf_bm=EFGqvm0s_.IAM2zPIL74cJT1Bi47eQj2Gzuol2Lsukw-1666787002-0-AREdwN4f9bD4vpsUE0Xo8KFdytkYuaKEMtK2RNbBHVhnrWXF/GjbmAKjBKOYj0TdHdXWut+UuLGGa8OQWHVac14=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 12:23:22 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 760329ac98b0b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (39)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP