r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11715
Expires: Mon, 26 Sep 2022 11:46:15 GMT
Date: Mon, 26 Sep 2022 08:31:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 08:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Y8aTVbqJgqfXlNfpx8Zu17HEOGJjDFWi3lH3GUaWkF92IrYRONJ5CA==
Age: 942
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b3e81b5bd7bd8e12288a8159e44ceb3f
977945964ffcbf49ac78f840db9da822c50c82f0
4721814da286852318f7ebf9857bd4bf01f0beea2c9eb7ddb9f290e3fa472232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8569
Expires: Mon, 26 Sep 2022 10:53:49 GMT
Date: Mon, 26 Sep 2022 08:31:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YT7cB0Qet93DTLx16YS21IeyDTwCsA/q7NdpOpd3Sx1L0Bb4+cV+wGFHESIrngn24Do0hLYNJ98=
x-amz-request-id: XKQ1Z48G2VNT7ZTJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 26 Sep 2022 07:46:14 GMT
age: 2686
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:31:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f105d6675fa59382c12960c1cc181fa5
cae670999cec5366127f920733b951aaf53f2fdf
7f42cfa0f7d4b46a69cc569a00cb84bdaa52a33a44ef593980e0a861742bed72
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4195
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:01 GMT
Last-Modified: Mon, 26 Sep 2022 07:21:06 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f105d6675fa59382c12960c1cc181fa5
cae670999cec5366127f920733b951aaf53f2fdf
7f42cfa0f7d4b46a69cc569a00cb84bdaa52a33a44ef593980e0a861742bed72
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2613
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:01 GMT
Last-Modified: Mon, 26 Sep 2022 07:47:28 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 278
connect.facebook.net/en_US/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash aa67d1c72799779f9a1899838edda99d
1c236ced2157eeca8fa489516e47ec257a02c0e6
c454b7f1ee4c000e4433bb19d44b163785dbbd0d6fb12098ff435babdb93cbcc
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 818e7785e857258438d944c25c8ab59b
ETag: "4945b6f65cf8576e0861fbe2052e38c5"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Mon, 26 Sep 2022 08:40:55 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: qmfRxyeZd5+aGJmDjt2pnQ==
X-FB-Debug: 7cx2P+6qm8ZRH7ItYw91QwbyuU0WndlcHj8iQxAcJEakTz6DfivaNPbn1DwGSicjjaZNBjzbVKY/svXOZ6zW1A==
X-FB-TRIP-ID: 1679558926
Date: Mon, 26 Sep 2022 08:31:01 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 1684
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P
142.250.74.72200 OK 57 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P
IP 142.250.74.72:0
File type ASCII text, with very long lines (35661)
Hash 657b97e52bc5a5232b849e63d36fcbdc
af596d33ea0a804b6fa3ce350fd936777d052fb6
7692cd97a3ac2beb0219036d9ddaa95ec8396a1a0717a3f0acc7081ceddccf25
GET /gtm.js?id=GTM-T2GJ57P HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 08:31:01 GMT
expires: Mon, 26 Sep 2022 08:31:01 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 56632
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 08:10:46 GMT
Expires: Mon, 26 Sep 2022 08:18:04 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EIRAFIdmQeGGWUANWgb7Uf61tSn8Vq8cZR_cW2S85YC2demnPKvr2g==
Age: 1215
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
104.18.11.207200 OK 6.0 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
IP 104.18.11.207:0
File type ASCII text, with very long lines (23577)
Hash 79b25bba7faf617a700078021baf261d
afe865347d7edd54588209e2c192160aa4fdba2b
0d532abf8b1c2cc786dda91d183f02a318c82e03e6fd920addf82d0f4ef818bd
GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:01 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
CDN-EdgeStorageId: 632, 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 2021-06-08 21:08:57
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: e6a55b08fe5091f45c9e99ce9e9f98c2
Content-Encoding: gzip
CDN-Status: 200
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 9622660
Server: cloudflare
CF-RAY: 750aa412eb8db511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5566
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:01 GMT
Last-Modified: Mon, 26 Sep 2022 06:58:15 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
172.98.65.24200 OK 781 kB URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
IP 172.98.65.24:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (33214)
Size 781 kB (780786 bytes)
Hash a17026e5303d403f36fc9260a2942aa5
01faa73a10891df0fa03a81fc430acda621a731a
eb1190f073acb847895452eb8939e2a6a8d554d76a817db1792511ac1eebf5da
GET /update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:00 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 3ae6adb3f7de6eb23e828542a1cb1616
5d1d5c2004fcdc38d3571cfe8bd1775711679ed4
81184498ba4c2469a1bf9e5ddc6d83b8d4dd553e5b68846ad13e400ad837603c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 08:31:01 GMT
Last-Modified: Mon, 26 Sep 2022 07:31:23 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: edF41UpCtwpuFUZ-lsvekpi4pOTtUmo4rwFdtkA_kDmr_-C6j7MK0g==
Age: 3578
push.services.mozilla.com/
52.38.227.80101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.227.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4f6Uh93hzZiBHkuMlHT8zw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: z6Z762uP/BIg3mgc/7J7+C+O56Y=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps-api-v3/api/js/32/2/util.js
142.250.74.42200 OK 52 kB URL HTTP/2 maps.googleapis.com/maps-api-v3/api/js/32/2/util.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (2193)
Hash cb4892d0e6cfcc58b8e23f88e6e07260
f4bdc3c54593506399ac2b3babadfe6ca52cba59
f7371ea1643d3e827558be9d67abb0788853db74d3154c59735daa45f6594bc8
GET /maps-api-v3/api/js/32/2/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 51988
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 19:22:59 GMT
expires: Mon, 25 Sep 2023 19:22:59 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Feb 2018 06:05:46 GMT
content-type: text/javascript
age: 47283
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sdk.iad-01.braze.com/api/v3/data/
151.101.85.208201 Created 1.7 kB URL HTTP/2 sdk.iad-01.braze.com/api/v3/data/
IP 151.101.85.208:0
Hash 6cd1e9ca13271482efdf0f150a5894a8
722c37e2d89f19f459666bbd28dabec6452f6457
0125bde0a51b2e720fd3d1da6670ef1dc04ea2ee9d502024443f5b50aec0cc47
POST /api/v3/data/ HTTP/1.1
Host: sdk.iad-01.braze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 532
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
content-type: application/json
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
etag: W/"4fe698c2b61ec775e360867586fecd3c"
cache-control: max-age=0, private, must-revalidate
x-request-id: 366317e1-d348-442e-9763-65af9bcb9ff9
x-runtime: 0.155097
content-encoding: gzip
accept-ranges: bytes
date: Mon, 26 Sep 2022 08:31:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664181062.780520,VS0,VE256
vary: Origin,Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391
142.250.74.42200 OK 199 B URL HTTP/2 maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391
IP 142.250.74.42:0
File type ASCII text, with no line terminators
Hash d753ddf308007bf2963889db280fca6d
b52cd7f36a769e92b893c3cfc59478ae2792bc00
97d8c57d5a2a66974ff48805365f709c2acc88b3eb5b23d7ddc91ae5efe28a85
GET /maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Mon, 26 Sep 2022 08:31:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-disposition: attachment
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: mafe
content-length: 199
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=11
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps-api-v3/api/js/32/2/stats.js
142.250.74.42200 OK 1.6 kB URL HTTP/2 maps.googleapis.com/maps-api-v3/api/js/32/2/stats.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (936)
Hash a203584a43f2a974503019bb3d16697c
7ff8f27007e5406405b2b254f2da0cd29982e9cb
50027d52b012183d159d7e5a0661aa8844c3a3aa2452e186c244506f81e84091
GET /maps-api-v3/api/js/32/2/stats.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 1574
date: Mon, 26 Sep 2022 08:31:02 GMT
expires: Tue, 26 Sep 2023 08:31:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Feb 2018 06:05:46 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps-api-v3/api/js/32/2/common.js
142.250.74.42200 OK 33 kB URL HTTP/2 maps.googleapis.com/maps-api-v3/api/js/32/2/common.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (974)
Hash 9ac3a79256967c814e7d160a96bbe40e
cdba4037a42361fe81a4e5182789d9a90c4f0bbd
00a8ddc090487ce9f0954b2595c0cd062ef6caf9190eef321615a1887c8c0095
GET /maps-api-v3/api/js/32/2/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 33005
date: Mon, 26 Sep 2022 08:31:02 GMT
expires: Tue, 26 Sep 2023 08:31:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Feb 2018 06:05:46 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
api.segment.io/v1/p
52.13.6.174200 OK 21 B IP 52.13.6.174:0
File type JSON data\012- , ASCII text
Hash 90749a50019a27e1f32cebdbaa7a1bc1
8329e3339f928f8591024bb0f938dab99c0ad4b8
12f71cb993958eefc4bdb41d7dbbda490779a9c7aba448f7be52bb63912e0254
POST /v1/p HTTP/1.1
Host: api.segment.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1299
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 08:31:02 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: http://www.bangextreme.cedges.com
strict-transport-security: max-age=31536000
vary: Origin
X-Firefox-Spdy: h2
www.bangextreme.cedges.com/update/music/christianmingle/css/js
172.98.65.24200 OK 82 kB URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/css/js
IP 172.98.65.24:0
File type ASCII text, with very long lines (4027)
Hash b34a055aea7c0e7dfeb23312a9fc0760
c3d4489c667d2fcb6e52347d951c47d50b5a902a
766af0dc386594786e3c59282bc86384db697f50a48a5c0bfd5898f20b5aa1be
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/js HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:02 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 81829
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
www.bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js
172.98.65.24200 OK 20 kB URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js
IP 172.98.65.24:0
File type C source, ASCII text, with very long lines (533)
Hash 0373b7787b60a2dfe54326de8b1f4b85
87b9015d8ac4b025c15470988a63fd54aded2996
bec11db4f9e8415d4718c34d7ff9a2968f0e64a9e9e1e91279f79c9fe8135b7b
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/ATRK_52A44AA2_min.js HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:02 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 19905
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg
172.98.65.24200 OK 5.0 kB URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg
IP 172.98.65.24:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (5038), with no line terminators
Hash b1fe73573691e00e8abc9724bdf18a64
96ed1473608b28543349e05d9b8d703f8e7f3ae3
75458168a5a076536706ee20473c29a07eeeb4b3793446c3595d069dadb8345d
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:02 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 5038
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
www.bangextreme.cedges.com/update/music/christianmingle/css/s.js
172.98.65.24200 OK 58 kB URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/css/s.js
IP 172.98.65.24:0
File type ASCII text, with very long lines (881)
Hash 9038bfff3bfe3fc0bcefa895fea7ccb7
f8e55264a1876d8b59d25b630c646d52526faabf
242770dc1a3f6e097f9b5213c8562974501b681cf155e49b64a2f75cf8abe47d
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/s.js HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:02 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 57588
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg
172.98.65.24200 OK 3.6 kB URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg
IP 172.98.65.24:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3605), with no line terminators
Hash 1fc2f4c7a120346c0dbfdc72c1a925b5
e593fa0daad30c0c4fda97489d1dbc548450a667
1a310e172227e76183c8859859410900f5f78dc859854c59fba1f79a76cf04e5
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:02 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 3605
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
www.bangextreme.cedges.com/update/music/christianmingle/css/tp.png
172.98.65.24200 OK 0 B URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/css/tp.png
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /update/music/christianmingle/css/tp.png HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:02 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.bangextreme.cedges.com/update/music/christianmingle/css/0.txt
172.98.65.24200 OK 0 B URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/css/0.txt
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/0.txt HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:02 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15067
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 08:31:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15067
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 08:31:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15067
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 08:31:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15067
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 08:31:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbad0bb4-9ab3-47a9-80fd-6567993349dd.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbad0bb4-9ab3-47a9-80fd-6567993349dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65e3b72afc2f13978ee80cc87dc289f1
78a82653eb0e5aa4f1355c13b665da44a3412024
9f3a89f268fca25f5a6c7319b1f8412a193cd73bc9c8f4c5a9d294582df3a57b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbad0bb4-9ab3-47a9-80fd-6567993349dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9352
x-amzn-requestid: efae9f72-8dce-4899-9dc8-c6cc9b4b2540
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvwFwWoAMFmig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-744ade88393a83467fea2b97;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NOu92heW0-RynLU34xGoSq36WGjOu75Ukkd8IA3IoQ2FMHFUMlkJrA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 38467
etag: "78a82653eb0e5aa4f1355c13b665da44a3412024"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef17205adb2b478d3bff54b048208d22
12aac1bd22e675f09a220de08b4656e801c2e647
620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pt7rJi8EIQFBk0gHQZ1WnjvThPba86XZCGFs83l1ZW2dj-_6bZprAA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 38467
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:19 GMT
age: 39224
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18a9d6ea-6c08-48b5-b74a-f5bf5a018b80.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18a9d6ea-6c08-48b5-b74a-f5bf5a018b80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c1ce3e1066be88e2c4eae317c55136f5
9f4dd2376e00073510cbd4e36d10a5a3f1746e35
a7ae3c3b24666cb35db7a95bd98840e96e306d6e2fdbb05c68c98ff7deaa5459
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18a9d6ea-6c08-48b5-b74a-f5bf5a018b80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6797
x-amzn-requestid: 2caf2fb8-650f-4f19-806b-3252a0ba360a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhG0FIAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-0b5beafd57d22f245df61815;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nhtcKQJlI8biPpgjMg2s6wgZNkarsBB2Rnxj69_5Y361Pw9FR4frrg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:11:07 GMT
age: 37196
etag: "9f4dd2376e00073510cbd4e36d10a5a3f1746e35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647364db-b398-41d7-8705-de1b74b7b110.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647364db-b398-41d7-8705-de1b74b7b110.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3db75e6241f57400010012f889a43d5
3a71ab6dac65dede3b07a5a5ee926ee964904541
6fff314d72ce18cf560dec61ea1c286b00777d6ec1bd30a31752bcf994c970e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647364db-b398-41d7-8705-de1b74b7b110.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4409
x-amzn-requestid: c03f3f22-9132-455b-adc9-d38565307a9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTEnFySIAMF-5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbb6-62f8e2e817e7ab530a359eaf;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XvqnZqJNcxT9Nh9_pM3VbzSeIHIsxqzwrTofWW9M1Vv3Jce1F3fKbA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:19:14 GMT
age: 36709
etag: "3a71ab6dac65dede3b07a5a5ee926ee964904541"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27d324b1fb661c318aced98468501b3c
5c4ee294c98e8fc9312a7d481b6ec165494cf852
937296b5da48df0495ebd0cb3509b7c00059725c00c5b97f475ba2382a0e5437
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7998
x-amzn-requestid: beedf4d8-29c0-43c6-92d0-40af6b9ee9f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTibE5LoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cc75-1be97f2a525b9a5e3146d4be;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:47:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: i8BwIohBNqfEavPXBqSWshg7G-WF9UkBBScnDcyH4qEYV9TzreLXWA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:05:32 GMT
etag: "5c4ee294c98e8fc9312a7d481b6ec165494cf852"
content-type: image/jpeg
age: 37531
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
104.18.11.207200 OK 57 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 104.18.11.207:0
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:03 GMT
Content-Type: font/woff2
Content-Length: 56780
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "97493d3f11c0a3bd5cbd959f5d19b699"
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 08/18/2022 19:50:49
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: 572b8516f250b746d240a5b31a57cb07
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 785642
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750aa41e7fe0b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
104.18.41.117404 Not Found 7.0 kB URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
IP 104.18.41.117:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (379), with CRLF, LF line terminators
Hash 5d5641613d2835507c09e0c2c820d120
540b960c4aedf9f810adb8ef23109d4dd3b5c5fb
3e2adc1bfe35104e82042809659f968a7bcd1a02fd3efacf04315ee46e575a5a
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Cookie: __cf_bm=CRj5wnqOblr_CGZ3faliDFC68qfS.9UCBxExdHdYfnE-1664181062-0-Aa/HO0wgs415JcsKk9PbpsWpGJNpfVifjH5OZHoEnjQTlJMT4Z60utsZwXBh14d/RMN+CIKyi18Od4wAtQ1M5Hc=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Mon, 26 Sep 2022 08:31:03 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750aa41cc907b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.bangextreme.cedges.com/update/music/christianmingle/images/c38b46548211dc0a01b864de5360ff89.jpg
172.98.65.24200 OK 68 kB URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/images/c38b46548211dc0a01b864de5360ff89.jpg
IP 172.98.65.24:0
File type JPEG image data, baseline, precision 8, 1280x850, components 3\012- data
Hash eaa09ed9cc9ceeb8a9323c5935327a59
feff06ad6bdcc08ae3dd586ad524101e91f0eae7
9c4e27c197034aee74fa5626187f384cab30bf51ac382f258e78305cca2c1c20
GET /update/music/christianmingle/images/c38b46548211dc0a01b864de5360ff89.jpg HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:03 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 68020
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html
172.98.65.24200 OK 1.8 kB URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html
IP 172.98.65.24:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (517), with CRLF line terminators
Hash 9f371c2150a8decf9afafd1307790421
abcf3d1c8c901229fb3897f8b4f07e0caf33c380
747c93671bc7eaef5c90e54f2827c965a41d601640afed9666615a543d325553
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:03 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 1795
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/html
js.appboycdn.com/web-sdk/1.6/appboy.min.js
104.17.217.31200 OK 38 kB URL HTTP/2 js.appboycdn.com/web-sdk/1.6/appboy.min.js
IP 104.17.217.31:0
Hash 5de5c522f783bdb18c099259d45ac54e
5e71a1aba4b03025c349bbb2bbbaee8a9c80e3a9
bdb7d3453d90c1710bf01c62f93fa27fff8fcee9be426da1cdd79f62f4d51e5a
GET /web-sdk/1.6/appboy.min.js HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 08:31:01 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: rBuvKgQ/AJ4VKKVa4JPfGH0D9BYLN+9Tuba5TDUdtFCtVz03KgtpPlGQQpbbQMIOSgzGsmSJaRA=
x-amz-request-id: PFEFER0M5H56YP5K
last-modified: Fri, 06 Oct 2017 18:19:54 GMT
etag: W/"bd8c768fe5e4740920f57a1a01e14a3f"
cf-cache-status: HIT
age: 877
expires: Mon, 26 Sep 2022 12:31:01 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 750aa41089a70b45-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.bangextreme.cedges.com/update/music/christianmingle/css/tp.png
172.98.65.24200 OK 0 B URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/css/tp.png
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /update/music/christianmingle/css/tp.png HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:03 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
staticxx.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
157.240.200.14302 Found 0 B URL HTTP/2 staticxx.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
IP 157.240.200.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42 HTTP/1.1
Host: staticxx.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 6yGmOt/HG/Walglh3yKxAud5yxbVsphq0MlP6jk49f85sQGzm4tJjAznzvISZ8wcfbZ0E8LJCB3yquJz+f/2WQ==
content-length: 0
priority: u=3,i
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:31:03 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 137d72233caf3ddbf4cbceef8ea0adbb
57dbb03ac2887335418c1e16a11f73ebf21a0b2d
70681cef09d9be7efec0a5f6a9cbeb77c21aad9c46650c5003b21c63ee29999a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4205
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:03 GMT
Last-Modified: Mon, 26 Sep 2022 07:20:58 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (21747)
Hash ec12a4ed6414d59f440cc6667f54fa56
dc045fd45a736db97db94c22d5b4d3a29aa10ea6
1a4fd42ea4ea00d7762d0a273e6094ac7967db784c736280fe77328025427373
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 08:31:03 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: 7BKk7WQU1Z9EDMZmf1T6Vg==
last-modified: Fri, 23 Sep 2022 06:42:23 GMT
etag: 0x8DA9D2EC58B2EA3
x-ms-request-id: 8747b20a-301e-00bb-1e1b-cf3912000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 10104
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 750aa41ffbd3b506-OSL
X-Firefox-Spdy: h2
cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js
143.204.48.96200 OK 69 kB URL HTTP/2 cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js
IP 143.204.48.96:0
File type ASCII text, with very long lines (31366)
Hash 6925c50280a64ea6aea0370958f1730d
db6d2f29814aac31bb6eade58e411d0e6afbdfd2
a62d3d6d98d4623fcc76679567d54a68765a7c18b97b676118a5421e199eceff
GET /analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 18:04:02 GMT
x-amz-version-id: YnCyzjpCjV986.xpNLpvtAI2y.y0XmP_
server: AmazonS3
content-encoding: br
date: Mon, 26 Sep 2022 08:29:06 GMT
cache-control: public, max-age=120
etag: W/"08521cc76b5cdf06eab95b9fc031b95b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ra2Ye5XeKaElU_8Rj1n8GAOrqj6kdZtT-A5TCONALJohvMd6AVlcVw==
age: 116
X-Firefox-Spdy: h2
sdk.iad-01.braze.com/api/v3/data/
151.101.85.208200 OK 491 B URL HTTP/2 sdk.iad-01.braze.com/api/v3/data/
IP 151.101.85.208:0
Hash 5293911227ef60e3d3787b2476acc407
ccde8495a33a143515f37993e5c3ab41681512a5
21d13a50a0aef1dce3fabbf8c5f7c5450c9233e58423ae405732dd87377df6ad
OPTIONS /api/v3/data/ HTTP/1.1
Host: sdk.iad-01.braze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-requested-with
Referer: http://www.bangextreme.cedges.com/
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type,x-requested-with
content-encoding: gzip
accept-ranges: bytes
date: Mon, 26 Sep 2022 08:31:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664181062.667860,VS0,VE102
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.bangextreme.cedges.com/update/music/christianmingle/css/0.txt
172.98.65.24200 OK 0 B URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/css/0.txt
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/0.txt HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D; ATRK_a=e73151a029c64b27b94c7b4a76f48859.1; ATRK_y=1; ATRK_t=1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:03 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
157.240.200.35404 Not Found 72 B URL HTTP/2 www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
IP 157.240.200.35:0
File type HTML document, ASCII text, with no line terminators
Hash 2556c01148fc3cf811a190ae37345224
644567805749ab3ec4df4a00c82b0a4f8566f25d
f65e4cc023578b2bb3522d09231cd56eb84d209b18d501eeebf8a0b098f7635e
GET /connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.bangextreme.cedges.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: vhkNpWVsOZWwejrHIP0AN0T3pM9iGPYTzNni4K3rPklM4vij6elPZ7uucX8l1BZbJ6MNQgLWmdhIsaHwPLDpKA==
content-length: 72
date: Mon, 26 Sep 2022 08:31:03 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json
104.16.148.64200 OK 1.2 kB URL HTTP/2 cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (2927), with no line terminators
Hash 8e4c72ec00a99fd7823125c4372c2d79
60101617ed9f7b11074366762007f3d16358a8de
71a566eced85606c6ea616ea8575233de1f8a96bfa8d603f44474fc53a140b49
GET /consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 08:31:03 GMT
content-type: application/x-javascript
content-length: 1216
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: jkxy7ACpn9eCMSXENywteQ==
last-modified: Tue, 30 Mar 2021 08:14:21 GMT
etag: 0x8D8F353D2921816
x-ms-request-id: e114c6d3-a01e-0050-6f28-c8c7ee000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: REVALIDATED
expires: Mon, 26 Sep 2022 12:31:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 750aa4204d7bb4f4-OSL
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/1.1 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
Pragma: public
Cache-Control: public, max-age=1200
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
X-FB-Debug: I0ZhJZsnkCArUYHxb8WVlU/amVqeAf0/hJ9Bd04ltTuQlNcy6KiYRTafqv+2p6pF5e0RCfnbdjXUEsxqBLUI5A==
Priority: u=3,i
X-FB-TRIP-ID: 1679558926
Date: Mon, 26 Sep 2022 08:31:03 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 26840
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5c94c67562acbf05e4b1605f9ff287c2
a675b298883c8c003598460cd6cee6c746bcc14c
8f43d3285fdfc4eeddd6d997be3326059a6c415b746ea43f523509b50fd88a6e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2307
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:03 GMT
Last-Modified: Mon, 26 Sep 2022 07:52:36 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
www.bangextreme.cedges.com/update/music/christianmingle/images/73d62878f28d372f1361d5c93770683d.png
172.98.65.24200 OK 2.4 kB URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/images/73d62878f28d372f1361d5c93770683d.png
IP 172.98.65.24:0
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash 73d62878f28d372f1361d5c93770683d
91febc5c28d7d7f975d1f933727ab30b19e0842e
1e503d1de5566b7048b83491f5a7d3b9133122114009bb6c98fb07fc4ebdabb3
GET /update/music/christianmingle/images/73d62878f28d372f1361d5c93770683d.png HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D; ATRK_a=e73151a029c64b27b94c7b4a76f48859.1; ATRK_y=1; ATRK_t=1; __ssid=10c65abb-1432-430a-9771-f8b276193696
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:03 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 2386
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bangextreme.cedges.com/update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png
172.98.65.24200 OK 500 B URL HTTP/1.1 www.bangextreme.cedges.com/update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png
IP 172.98.65.24:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 0590ea9eb4e259c756ee9972af9f27d2
86eb600161114d6973de2828d4da2dbf09fbefc7
8473655351e12161506a0c64d0f5a74a6bdcd3815c2b333a9d3f20d3e74ac7dd
GET /update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png HTTP/1.1
Host: www.bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=c19bac80cf7fb149e6fbbf0afe6e03a5&securessl=true
Cookie: ajs_anonymous_id=%22ad74084f-f334-49ec-a047-c7242c9f7262%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2202673fce-1d03-2688-02a7-6045aaa6e529%22%2C%22e%22%3A1664182859842%2C%22c%22%3A1664181059842%2C%22l%22%3A1664181059842%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%228dd032da-75ab-3fa4-8487-bf2b3f0e51fe%22%2C%22c%22%3A1664181059843%2C%22l%22%3A1664181059843%7D; ATRK_a=e73151a029c64b27b94c7b4a76f48859.1; ATRK_y=1; ATRK_t=1; __ssid=10c65abb-1432-430a-9771-f8b276193696
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 08:31:03 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 457
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/png
connect.facebook.net/en_US/sdk.js?hash=a3a48decae91ce4f1d20feae3570b156
157.240.200.14200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=a3a48decae91ce4f1d20feae3570b156
IP 157.240.200.14:0
File type ASCII text, with very long lines (13260)
Hash 61b1cdd5ff65930d5d82d3a4ccc1195d
f4078b21f13b93a7817957ab4319d56858726bf7
cd68b1f3e46ab9f62af5e0ef053955efb5f502c7cf4723f1ac0a26b7cdd89637
GET /en_US/sdk.js?hash=a3a48decae91ce4f1d20feae3570b156 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 152f69702b204fd98589ec17f4583b3e
etag: "15b98d16016774ca139fda9e6612e97f"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 26 Sep 2023 08:09:49 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: YbHN1f9lkw1dgtOkzMEZXQ==
x-fb-debug: zSPoRr7SFlAHQSKiS2x4z2So/axgIHSU3AV5g63GmsRWRH5o2MCXQ9yoPuOA+7HANAkCJSxAaxJGmcEoEpoubA==
content-length: 87333
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:31:04 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3
216.239.32.3204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3
IP 216.239.32.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
date: Mon, 26 Sep 2022 08:31:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=1405FE9334FD680D1C07ECB835086983; domain=.bing.com; expires=Sat, 21-Oct-2023 08:31:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 50F59C90F3F44AAB937D931E3EA2ABA2 Ref B: OSL30EDGE0516 Ref C: 2022-09-26T08:31:03Z
date: Mon, 26 Sep 2022 08:31:03 GMT
X-Firefox-Spdy: h2
script.hotjar.com/modules-fa7b914657f32d32df01f26b19e8f066.js
143.204.55.40403 Forbidden 243 B URL HTTP/2 script.hotjar.com/modules-fa7b914657f32d32df01f26b19e8f066.js
IP 143.204.55.40:0
Hash 7322d3508605305ecc5566390b3ff639
03e61a8321ee8ebb119fba43a25c835545ebbe79
7590dd9ca01197ab03521840b8de6056d6e57c58ef1dff2877d8232fc3567945
GET /modules-fa7b914657f32d32df01f26b19e8f066.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: application/xml
content-length: 243
date: Mon, 26 Sep 2022 08:31:04 GMT
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qHsOFgqJpl7q6e00CphrDXdMU_pgyjQJqaYFlA6Q1Im12zJOEh8plw==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/action/0?ti=5525601&Ver=2&mid=224c4153-1256-44f6-be67-4deed072ec7d&sid=8e2a2fa03d7511ed9970ef5ab58a971e&vid=8e2a2f603d7511edadac2b6c9ee1205e&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fwww.bangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Dc19bac80cf7fb149e6fbbf0afe6e03a5%26securessl%3Dtrue&r=<=2872&evt=pageLoad&sv=1&rn=758956
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5525601&Ver=2&mid=224c4153-1256-44f6-be67-4deed072ec7d&sid=8e2a2fa03d7511ed9970ef5ab58a971e&vid=8e2a2f603d7511edadac2b6c9ee1205e&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fwww.bangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Dc19bac80cf7fb149e6fbbf0afe6e03a5%26securessl%3Dtrue&r=<=2872&evt=pageLoad&sv=1&rn=758956
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5525601&Ver=2&mid=224c4153-1256-44f6-be67-4deed072ec7d&sid=8e2a2fa03d7511ed9970ef5ab58a971e&vid=8e2a2f603d7511edadac2b6c9ee1205e&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fwww.bangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Dc19bac80cf7fb149e6fbbf0afe6e03a5%26securessl%3Dtrue&r=<=2872&evt=pageLoad&sv=1&rn=758956 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3F53FAECD17D62E83CF8E8C7D088631A; domain=.bing.com; expires=Sat, 21-Oct-2023 08:31:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FA3219B607D043379CC2FDECCA05DD1D Ref B: OSL30EDGE0516 Ref C: 2022-09-26T08:31:04Z
date: Mon, 26 Sep 2022 08:31:03 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=27017382&Ver=2&mid=08319c5e-ed67-44e9-82b7-968a239df8f6&sid=8e2a2fa03d7511ed9970ef5ab58a971e&vid=8e2a2f603d7511edadac2b6c9ee1205e&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fwww.bangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Dc19bac80cf7fb149e6fbbf0afe6e03a5%26securessl%3Dtrue&r=<=2872&evt=pageLoad&sv=1&rn=402958
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=27017382&Ver=2&mid=08319c5e-ed67-44e9-82b7-968a239df8f6&sid=8e2a2fa03d7511ed9970ef5ab58a971e&vid=8e2a2f603d7511edadac2b6c9ee1205e&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fwww.bangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Dc19bac80cf7fb149e6fbbf0afe6e03a5%26securessl%3Dtrue&r=<=2872&evt=pageLoad&sv=1&rn=402958
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=27017382&Ver=2&mid=08319c5e-ed67-44e9-82b7-968a239df8f6&sid=8e2a2fa03d7511ed9970ef5ab58a971e&vid=8e2a2f603d7511edadac2b6c9ee1205e&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fwww.bangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3Dc19bac80cf7fb149e6fbbf0afe6e03a5%26securessl%3Dtrue&r=<=2872&evt=pageLoad&sv=1&rn=402958 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2ACB8B858611679220AC99AE87E466A8; domain=.bing.com; expires=Sat, 21-Oct-2023 08:31:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E4A453C101194A73A42B2589B87E4E51 Ref B: OSL30EDGE0516 Ref C: 2022-09-26T08:31:04Z
date: Mon, 26 Sep 2022 08:31:03 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/27017382.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/27017382.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/27017382.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=073B96B24F87679427E684994E726618; domain=.bing.com; expires=Sat, 21-Oct-2023 08:31:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1523F2E493F54A9EA841463F81BD4969 Ref B: OSL30EDGE0516 Ref C: 2022-09-26T08:31:04Z
date: Mon, 26 Sep 2022 08:31:03 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ee6a29e13a711f2f08bb557d924ede2a
2988f32e4bff9ce08897643fdaaac1425d6201dc
ea664a321e7b64d757190f2892514ac72027e64b2e16d0257d807b362be7d080
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3461
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:04 GMT
Last-Modified: Mon, 26 Sep 2022 07:33:23 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
bat.bing.com/p/action/5525601.js
13.107.21.200200 OK 666 B URL HTTP/2 bat.bing.com/p/action/5525601.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 6035d901b1e248c3f3ffca691342d795
eec8681b6b015af22ee45ad909775ddf8c734d51
785e8939d96003b3775eac0e3d1cba195a96097027d5cdb69dffa3324f597881
GET /p/action/5525601.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 666
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=19DB2CE02F8860053D653ECB2E7D6137; domain=.bing.com; expires=Sat, 21-Oct-2023 08:31:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 16D25A9F69D64AA49C62A2FA2D355BD2 Ref B: OSL30EDGE0516 Ref C: 2022-09-26T08:31:04Z
date: Mon, 26 Sep 2022 08:31:03 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.14.0/otBannerSdk.js
104.16.148.64200 OK 84 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.14.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65455)
Hash 6e4f9cffc2407654c4025b91d529ba77
75e1ca1aeaf219b7364eb2916b0fd92514de3afb
ee4781f268cdbb15a244efd1549ccfbbdb2f9f7548c61853ecfb688b5adbb647
GET /scripttemplates/6.14.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 08:31:04 GMT
content-type: application/javascript
content-length: 83472
content-encoding: gzip
content-md5: bk+c/8JAdlTEAluR1Sm6dw==
last-modified: Wed, 24 Feb 2021 17:18:15 GMT
etag: 0x8D8D8E82BC311EE
x-ms-request-id: 5feb9f59-301e-0115-7b42-ca5c2a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 10002
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 750aa4247962b506-OSL
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.41.98200 OK 1.8 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.41.98:0
Hash 06767acdc8385859f3ffb6747e1c31b3
0f52af067d22b4c06c58316a47d3ea55ee651a58
3f7d770b0de73743c1ab2724e3511de1eacf49f76aaffef5e2d23a9d0a9fa878
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 08:31:04 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 750aa423de95b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/f54f29ef-74d5-45b2-8c69-54124e98661e/en.json
104.16.148.64200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/f54f29ef-74d5-45b2-8c69-54124e98661e/en.json
IP 104.16.148.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (43389), with no line terminators
Hash d5e20c953f6be67a64952958079ed00d
2ce8ed8df8d5549b8aeb4317915cba4a27dc411e
a44ea327fbe73367a66460ac2620e3f3b88465c665dcc0ee02a837663f53e618
GET /consent/0232e281-a585-4e05-8d99-2fec39bf53fe/f54f29ef-74d5-45b2-8c69-54124e98661e/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.bangextreme.cedges.com/
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 08:31:04 GMT
content-type: application/x-javascript
content-length: 11882
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: 1eIMlT9r5npklSlYB57QDQ==
last-modified: Tue, 30 Mar 2021 08:14:25 GMT
etag: 0x8D8F353D4D2FEF9
x-ms-request-id: f642979c-a01e-003d-6678-c86dc0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: REVALIDATED
expires: Mon, 26 Sep 2022 12:31:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 750aa424eb8fb4f4-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.14.0/assets/v2/otPcPanel.json
104.16.148.64200 OK 11 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.14.0/assets/v2/otPcPanel.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (37569)
Hash 948df0a720ec743942dfa05ff9d9a208
30eeb25ed7ba0d4d6c008cff70669fbad304c251
458ac22a60d60de32868af11acc9ae4c57212de2385a7fd2f7a24454ede05002
GET /scripttemplates/6.14.0/assets/v2/otPcPanel.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.bangextreme.cedges.com/
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 08:31:04 GMT
content-type: application/json
content-length: 11445
content-encoding: gzip
content-md5: lI3wpyDsdDlC36Bf+dmiCA==
last-modified: Wed, 24 Feb 2021 17:18:07 GMT
etag: 0x8D8D8E8271D14E5
x-ms-request-id: 4625129f-101e-0049-4628-c8eb86000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 750aa4256c18b4f4-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json
104.16.148.64200 OK 2.7 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (7345)
Hash 064b4b17fd057f4289dff082cb288634
b84ad2cb8df7bad25d9dbdd8bb74f1fccffdcef6
2f0b307c5c84699437ea90cd220c493fa97e38b9eaead519c261117c82b8fd01
GET /scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.bangextreme.cedges.com/
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 08:31:04 GMT
content-type: application/json
content-length: 2655
content-encoding: gzip
content-md5: BktLF/0Ff0KJ3/CCyyiGNA==
last-modified: Wed, 24 Feb 2021 17:18:06 GMT
etag: 0x8D8D8E82687488A
x-ms-request-id: 680f67f6-101e-00c1-2328-c8535f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 750aa4256c14b4f4-OSL
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-692969.js?sv=6
143.204.55.54200 OK 4.6 kB URL HTTP/2 static.hotjar.com/c/hotjar-692969.js?sv=6
IP 143.204.55.54:0
File type Unicode text, UTF-8 text, with very long lines (8043)
Hash d7555cbbf787cd5ceeac4225cfdf18e1
f6438d2ca2158fe73f6832db276ebb09c31056e0
7425fcc7d9005d8bba3f02f2d7a56f8a37d6262343cd93911c68bae6aa41e972
GET /c/hotjar-692969.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 26 Sep 2022 08:30:06 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/b32c227801cc8fc212915f8af3451bc0
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LtO5XbJlV_is1DBLqdKReQGC2DAA3Qq7RvkrzNzQOPTiMvB-Ou-4aQ==
age: 57
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.41/clarity.js
13.107.219.53200 OK 44 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.41/clarity.js
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (54809)
Hash e4d59774bd9952f0dbb2097823b6b36e
bab40d332ff0ef02c696777c8548bb0855845fff
cd0c091c3a181f33c3cd807c962a80b7b0c8f06d793a3b5c5a9f4c61a4eaedc1
GET /eus2/s/0.6.41/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8ccdebe9ad570"
vary: Accept-Encoding
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0SGMxYwAAAAD7zIu/jsegSo3XPkiZcmATT1NMMjMxMDUwMjA0MDE5ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Mon, 26 Sep 2022 08:31:04 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9bc50a4e217a352f48044542f8094cca
45820efe22b26f46b9a2ce54d94255961a4d71b8
cb6ae77d31b4a374d049472c627e5436b82f82936ddc7b45bb68be9d9d532604
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4509
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:31:05 GMT
Last-Modified: Mon, 26 Sep 2022 07:15:56 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
c.clarity.ms/c.gif
20.234.93.27302 Found 2.2 kB IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type gzip compressed data, from Unix\012- data
Hash 1edf35de8a781fe5ded2cfc059e3e7c0
31eb772369c0d077a74984f4365929622ae4e170
899d3c47bfb71142da556cf5f892444a2b3a14d464313d11a7d4d0dcd3cbad7b
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=FC8A73B906744CC6AEF2EA963DC9904B&RedC=c.clarity.ms&MXFR=3128D6260D206FF21619C40D09206178
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=3128D6260D206FF21619C40D09206178; domain=.clarity.ms; expires=Sat, 21-Oct-2023 08:31:05 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Mon, 26 Sep 2022 08:31:05 GMT
content-length: 0
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=FC8A73B906744CC6AEF2EA963DC9904B&RedC=c.clarity.ms&MXFR=3128D6260D206FF21619C40D09206178
13.107.21.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=FC8A73B906744CC6AEF2EA963DC9904B&RedC=c.clarity.ms&MXFR=3128D6260D206FF21619C40D09206178
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=FC8A73B906744CC6AEF2EA963DC9904B&RedC=c.clarity.ms&MXFR=3128D6260D206FF21619C40D09206178 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.bangextreme.cedges.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=FC8A73B906744CC6AEF2EA963DC9904B&MUID=18D835D9CCCC6C49207327F2CD396D2B
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=18D835D9CCCC6C49207327F2CD396D2B; domain=c.bing.com; expires=Sat, 21-Oct-2023 08:31:05 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 35BF154015344CC0BAC4F9AACBF05F49 Ref B: OSL30EDGE0516 Ref C: 2022-09-26T08:31:05Z
date: Mon, 26 Sep 2022 08:31:05 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=FC8A73B906744CC6AEF2EA963DC9904B&MUID=18D835D9CCCC6C49207327F2CD396D2B
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=FC8A73B906744CC6AEF2EA963DC9904B&MUID=18D835D9CCCC6C49207327F2CD396D2B
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=FC8A73B906744CC6AEF2EA963DC9904B&MUID=18D835D9CCCC6C49207327F2CD396D2B HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.bangextreme.cedges.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Mon, 26-Sep-2022 08:41:05 GMT; path=/; SameSite=None; Secure;
date: Mon, 26 Sep 2022 08:31:05 GMT
content-length: 42
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 86 kB IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type gzip compressed data, from Unix\012- data
Hash 43f0e1af5c06dd8a9d6d25464ab18238
3a535e2d1c07bd08feb556359041c6d9a23d6ae2
2c8f5e6f71aa59a5c90b1d3f10c6fb7a81f75af8f874d7b615220e6ed7167d39
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 790782
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://www.bangextreme.cedges.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Mon, 26 Sep 2022 08:31:05 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12266
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://www.bangextreme.cedges.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Mon, 26 Sep 2022 08:31:05 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 323
Origin: http://www.bangextreme.cedges.com
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://www.bangextreme.cedges.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Mon, 26 Sep 2022 08:31:07 GMT
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba
104.18.41.117404 Not Found 0 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba
IP 104.18.41.117:0
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Cookie: __cf_bm=CRj5wnqOblr_CGZ3faliDFC68qfS.9UCBxExdHdYfnE-1664181062-0-Aa/HO0wgs415JcsKk9PbpsWpGJNpfVifjH5OZHoEnjQTlJMT4Z60utsZwXBh14d/RMN+CIKyi18Od4wAtQ1M5Hc=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Mon, 26 Sep 2022 08:31:03 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750aa41b3e78b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d
104.18.41.117404 Not Found 0 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d
IP 104.18.41.117:0
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Mon, 26 Sep 2022 08:31:02 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=rKnqYXCFsGped2odKLSmEo9jyvKcaRZ_teX2.0f9xgQ-1664181062-0-AR8udOyz8vWEzXLMOsipy7wUExAIyTKE79RJhJy7ErTKc0vlzTJmOE2sqMQD6rvKK0R8HTVxmDa0qp3BK9H9Nlc=; path=/; expires=Mon, 26-Sep-22 09:01:02 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 750aa412e871b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
104.18.41.117404 Not Found 0 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
IP 104.18.41.117:0
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Mon, 26 Sep 2022 08:31:02 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=CRj5wnqOblr_CGZ3faliDFC68qfS.9UCBxExdHdYfnE-1664181062-0-Aa/HO0wgs415JcsKk9PbpsWpGJNpfVifjH5OZHoEnjQTlJMT4Z60utsZwXBh14d/RMN+CIKyi18Od4wAtQ1M5Hc=; path=/; expires=Mon, 26-Sep-22 09:01:02 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 750aa4158d16b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-692969.js?sv=5
143.204.55.54200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-692969.js?sv=5
IP 143.204.55.54:0
GET /c/hotjar-692969.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 26 Sep 2022 08:30:06 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/b32c227801cc8fc212915f8af3451bc0
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: orKDjIhUdBXjHZrzaOvXFHhqM-6dvb0eRYUKr0SPA53ZkXGjHzKMQg==
age: 57
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba
104.18.41.117404 Not Found 0 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba
IP 104.18.41.117:0
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Mon, 26 Sep 2022 08:31:02 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=q_a6ad1ofEGakRVgTaJtJNkp5CpDku1XCy.HzrZ_SUY-1664181062-0-AdQKzsiTPdoBLk1YW5A3DwpdD8C4EPtwTOM7u6UtlT2VODRDG+8RPO95+JaDA6XdqFfMvPa4cRTGp6VBlr2xwmA=; path=/; expires=Mon, 26-Sep-22 09:01:02 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 750aa412f885b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3
104.18.41.117404 Not Found 0 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3
IP 104.18.41.117:0
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Mon, 26 Sep 2022 08:31:02 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=ruuAMnQEdMgjo0yOQ37HgoQ94NblWdXVCyvNMlyat90-1664181062-0-AUyl7FnAUnS1hDyLU0PI1tI1syQEi9pZxhwUCwrV+3/d/QT6PpM/h8aXNrA/jyh9lIN7a9BsvTlLM4nBCBeBOBA=; path=/; expires=Mon, 26-Sep-22 09:01:02 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 750aa412e873b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d
104.18.41.117404 Not Found 0 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d
IP 104.18.41.117:0
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Cookie: __cf_bm=oqnis0MNjSZ4f9BhDsICfhtzm33bhltYgwcWkq2a9mY-1664181062-0-ARx/v+IH7YqJOIySdBvKmWglWpM+mG8z0pJwSYEjoE2TqZQi8e7btQbMHpzYshBMnV1hRZSHo+AfTok73Kra4d0=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Mon, 26 Sep 2022 08:31:02 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750aa4182957b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.appboycdn.com/web-sdk/1.6/appboy.min.css
104.17.217.31200 OK 0 B URL HTTP/2 js.appboycdn.com/web-sdk/1.6/appboy.min.css
IP 104.17.217.31:0
GET /web-sdk/1.6/appboy.min.css HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bangextreme.cedges.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 08:31:01 GMT
content-type: text/css; charset=utf-8
x-amz-id-2: huDB3PumhyF6WrF6APQUv+8CD8wIbVcPv5aL7uohp3adWf2h9c1YeKxEl7ZrrKdJivchdPfudxs=
x-amz-request-id: KAMFRPEM2QQ08FFS
last-modified: Fri, 06 Oct 2017 18:19:54 GMT
etag: W/"3f4d7e756ec9b4609665da772b9cef98"
cf-cache-status: HIT
age: 4669
expires: Mon, 26 Sep 2022 12:31:01 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 750aa410799b0b45-OSL
content-encoding: gzip
X-Firefox-Spdy: h2