Report - bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true

Report Overview

Submitted URL
bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
IP
172.98.65.24
ASN
#46562 PERFORMIVE
Submitted
2022-10-01 18:53:39
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
b.clarity.ms	3462	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	911 B	598 B	20.75.32.255
hexagon-analytics.com	5444	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	350 B	34.102.232.42
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	58 kB	142.250.74.168
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	64 kB	104.18.11.207
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76
js.appboycdn.com	5270	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	757 B	40 kB	104.17.218.31
bangextreme.cedges.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	1.0 MB	172.98.65.24
bat.bing.com	387	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	990 B	26 kB	204.79.197.200
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	505 B	2.9 kB	157.240.221.35
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
cdn.segment.com	1618	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	410 B	69 kB	108.138.214.162
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.3
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.237.163.41
www.christianmingle.com	546516	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.0 kB	11 kB	104.18.41.117
sdk.iad-01.braze.com	648	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	7.6 kB	151.101.85.208
js.acq.io	95874	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	278 B	7.1 kB	18.165.201.93
csi.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	452 B	545 B	142.251.35.163
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.77.32
script.hotjar.com	887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	808 B	18.164.68.101
www.clarity.ms	1404	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	741 B	26 kB	13.107.219.53
static.hotjar.com	641	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	740 B	1.3 kB	143.204.68.87
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
api.segment.io	1076	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	432 B	264 B	52.36.48.34
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	286 B	28 kB	157.240.221.16
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	18.165.201.103
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.0 kB	93.184.220.29
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	944 B	108.138.212.162
c.clarity.ms	803	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	831 B	1.2 kB	20.234.93.27
c.bing.com	247	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	479 B	795 B	204.79.197.200

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-01	medium	bangextreme.cedges.com/update/music/christianmingle/css/js	Phishing
2022-10-01	medium	bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js	Phishing
2022-10-01	medium	bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg	Phishing
2022-10-01	medium	bangextreme.cedges.com/update/music/christianmingle/css/s.js	Phishing
2022-10-01	medium	bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg	Phishing
2022-10-01	medium	bangextreme.cedges.com/update/music/christianmingle/css/0.txt	Phishing
2022-10-01	medium	bangextreme.cedges.com/update/music/christianmingle/css/0.txt	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (32)

	URL	Size	First Seen	Last Seen
	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true	2.7 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 41f0b9631cd41555323371b59416f2fd 3afcfe6c5ae3f83729a76bf716fe420d4544de8c a61b33346c8c750908236e51b654380f746ec0baeb4862d040e44f488c36c872 Loading...

	connect.facebook.net/en_US/sdk.js?hash=88b9b3d56a282bbdb7356c6cb8f352e0	313 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/sdk.js?hash=88b9b3d56a282bbdb7356c6cb8f352e0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:18:06 Last Seen2023-03-08 04:18:06 Times Seen1 Hash 3e7a353fa15181901aca6b833c8bd001 5501db60d309f3a94d44a8589a79e4726074a62f 992000c38e3737233410972ff78ff73a65b4bbe092c1ce8200621f96467d81c4 Loading...

	connect.facebook.net/signals/config/594461023970302?v=2.8.12&r=stable	182 kB	2023-03-08	2023-03-10
Pretty URL connect.facebook.net/signals/config/594461023970302?v=2.8.12&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:58:11 Last Seen2023-03-10 16:06:21 Times Seen1 Hash 4ff6def5496a9b23b792557b9a0c99ad be80273eb8c43e4d1658afbfd785913ad409f9af 77025c424f9afd1f7f1b327a6ea1202bd50b9e61b8d75a861e2a689c33fddb5a Loading...

	maps.googleapis.com/maps-api-v3/api/js/32/2/common.js	97 kB	2023-03-07	2023-11-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/32/2/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-11-08 07:16:54 Times Seen3 Hash d188db2b2cb16ec233af31f34c6c8b94 8a88b9ad6dff1bb288be777a189b26175c7b5925 76f9a4e05b607e8f7622fc8a3fbf79752c80f5c7b5bbe5f836ea7bb41792acfc Loading...

	js.acq.io/ATRK_52A44AA2_min.js	24 kB	2023-03-07	2023-03-17
Pretty URL js.acq.io/ATRK_52A44AA2_min.js IP 18.165.201.93 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 33b83171c1044dc6bdc7ae7a647443a1 579b2d02a34746fb1fef7f07a7cdcc5925632fb2 b6ba561e0d0da4d376021107cb318192ea2177aa162b4130b4f113f84fc7749d Loading...

	connect.facebook.net/signals/config/594461023970302?v=2.9.84&r=stable	300 kB	2023-03-08	2023-03-10
Pretty URL connect.facebook.net/signals/config/594461023970302?v=2.9.84&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:58:11 Last Seen2023-03-10 09:28:50 Times Seen1 Hash 1581e9e390ea616150bb754405d8eb54 bca9c1a647be6b1c6e230ec4ce4af1ea8e5dffb3 23c18c6ba251b350617c847ad98f708596650ae43495f29ea4a339613c96d052 Loading...

	maps.googleapis.com/maps-api-v3/api/js/32/2/util.js	138 kB	2023-03-07	2023-11-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/32/2/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-11-08 07:16:54 Times Seen3 Hash 1ed023ae1b2b2d50bf3f3cd5d643e8f4 af0756e44de86ed293762f71f38eb0a98c151ff7 de347da780ca612e0e219921aa47b7bd21ddecfe900c1698a3b1dea2671481f5 Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true	250 B	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash d81bccfce0a2bb62bd8dd63e859f21e3 74168820acf915e6f0cf1c66f031f979b9136593 f8c2f637802b14486199e6f583718ed0762de76b46619731fcc160a3b03ae2d3 Loading...

	connect.facebook.net/en_US/fbevents.js	103 kB	2023-03-08	2023-11-10
Pretty URL connect.facebook.net/en_US/fbevents.js IP 157.240.221.16 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:45:46 Last Seen2023-11-10 23:06:10 Times Seen10 Hash d78a7caef2779bec7d3e91de3eb77eeb 5af31c112f3bcd8f2866d4bf89e8455438b1e382 00a92494627ed8f758972b7dc47b3af186497c0637ea867a33fdb604c1548674 Loading...

	www.clarity.ms/eus2/s/0.6.42/clarity.js	54 kB	2023-03-08	2023-03-10
Pretty URL www.clarity.ms/eus2/s/0.6.42/clarity.js IP 13.107.219.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:56:06 Last Seen2023-03-10 11:41:10 Times Seen1 Hash 4b1d1bdee2fb3a8356e441d82d8657bc ca9ce11793c167a765b754c5f7ecd49634c621ab d97ca913935c9897ac4e255d17e14c8a3f0d8513681fe5b6736c4921fc5dd078 Loading...

	connect.facebook.net/en_US/sdk.js	3.1 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/sdk.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:18:06 Last Seen2023-03-08 04:18:06 Times Seen1 Hash b2f3d21d95d7e1c37d7c85704830f0e8 0c1b768ada3662422c33f258635653a9cb503c6a 8d14731e6a273f8d9bedc0a855214d7fafd4d9a7bb6d45e6f2f427d6766e78d7 Loading...

	bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html	1.6 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 7edc670cb3e363da9a5b80bc2a958ddd e2b24ff91268f238649fbe9aecc86eb7782fb188 26abde77f596faf0906e9cca91c8facc297bba5bd7d84d5f51441cae0f91cbc9 Loading...

	bat.bing.com/bat.js	39 kB	2023-03-07	2023-08-25
Pretty URL bat.bing.com/bat.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2023-08-25 07:33:07 Times Seen42 Hash 16911c194f6e9313655f07c4eb9d8737 d39ccfa8c6d785af331afafe9e36336031f41b64 30153b15b4cb898c421e657f6de21dc27435cb990e7888367bdee12e06398da7 Loading...

	unknown	0 B	2023-03-07	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 04:59:49 Times Seen37353724 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	connect.facebook.net/signals/plugins/identity.js?v=2.9.84	65 kB	2023-03-08	2023-10-31
Pretty URL connect.facebook.net/signals/plugins/identity.js?v=2.9.84 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:47:10 Last Seen2023-10-31 18:18:05 Times Seen6 Hash 3db1d62e0f7e350997486f47458484bf 1fec0c1504d1b5afd937c7d8829c7ca76907c5d9 e3b9d52f002201be697fbc0ebf4bdcc61d6c01d0bb1359213e62c67e21850047 Loading...

	js.appboycdn.com/web-sdk/1.6/appboy.min.js	143 kB	2023-03-07	2024-05-03
Pretty URL js.appboycdn.com/web-sdk/1.6/appboy.min.js IP 104.17.218.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-05-03 11:10:35 Times Seen19 Hash bd8c768fe5e4740920f57a1a01e14a3f e9676f6d6599a3a2053d0759bf2d73ca7bab3849 b8a01b01a8545511558be10066e3eb5af36f93ba7135552b235e30d612f58997 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P	174 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:18:06 Last Seen2023-03-08 04:18:06 Times Seen1 Hash 3ee30c6ecd4c2631523b9523bdb9d0ca aeae88c6feeb12511429d7edce3e89b0a4af2187 274e783cf0286b8428410686b9dca904097aff057b40237ac19d41f3a26f1e56 Loading...

	cdn.siftscience.com/s.js	63 kB	2023-03-07	2024-02-01
Pretty URL cdn.siftscience.com/s.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-02-01 18:22:43 Times Seen47 Hash e070b4e00be46786aecb7d768fc81b82 94f1dd9f21f233293161dd8b2f13881288764126 7921df86278b7fa9be0cbd78d9990071763ec4e9e88aaff2c3d466723090b8ae Loading...

	bangextreme.cedges.com/update/music/christianmingle/css/js	82 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/css/js IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash b34a055aea7c0e7dfeb23312a9fc0760 c3d4489c667d2fcb6e52347d951c47d50b5a902a 766af0dc386594786e3c59282bc86384db697f50a48a5c0bfd5898f20b5aa1be Loading...

	bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js	20 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 0373b7787b60a2dfe54326de8b1f4b85 87b9015d8ac4b025c15470988a63fd54aded2996 bec11db4f9e8415d4718c34d7ff9a2968f0e64a9e9e1e91279f79c9fe8135b7b Loading...

	bangextreme.cedges.com/update/music/christianmingle/css/s.js	58 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/css/s.js IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 9038bfff3bfe3fc0bcefa895fea7ccb7 f8e55264a1876d8b59d25b630c646d52526faabf 242770dc1a3f6e097f9b5213c8562974501b681cf155e49b64a2f75cf8abe47d Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true	373 B	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 476ccb1600c51eb47c7821b30c4d4457 5a892f0173d0efc30c390f76438d9a55599c65de 5bfde0e4e30fa338e39ac9075c537c912319ac5652b282a3e7026a52fced5c42 Loading...

	static.hotjar.com/c/hotjar-692969.js?sv=6	12 kB	2023-03-08	2023-03-08
Pretty URL static.hotjar.com/c/hotjar-692969.js?sv=6 IP 143.204.68.87 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:18:06 Last Seen2023-03-08 04:18:06 Times Seen1 Hash 42664f47b158a3a46c818dd277e8d1a2 53d02cd7a7b391bce585644d1055749c06009990 e1c88463d4c2904cd858844c81f3ac239c4f78f6387acd84f179ac90e2e1cb8d Loading...

	cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js	416 kB	2023-03-07	2023-03-17
Pretty URL cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js IP 108.138.214.162 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 08521cc76b5cdf06eab95b9fc031b95b f02cb321b16d6f3c41a3fc6d32b13481c8e3dc6a 440db39f7904f66ab63d7594ac9f14f8864143f1eec32d806c342a6199e7b04f Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true	1.2 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:53:00 Times Seen1 Hash b13ab42d63a6650cd5462d2d3dd96aa9 0b811490c8ec9ee2f37fb5994608d5dcc9a9ec66 c3ffb7f8ce9a931b5b96c0726543aff9fd6c6a21cccd9746366e5c0bb8d309bd Loading...

	maps.googleapis.com/maps-api-v3/api/js/32/2/stats.js	3.6 kB	2023-03-07	2023-11-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/32/2/stats.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-11-08 07:16:54 Times Seen5 Hash e95163e44e2ab0f37f5ceff2ff85f273 6e34cd047f35f9e52e6fccd5c647521080fa7843 3bf3d38af8c3f4e4a41ec0f4eacad1abe37df97c4b00e93f52c056f7fd0458f6 Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttp%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3D3f8e4d353e8f8d0c14eecdfd19dc5d21%26securessl%3Dtrue&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._vctvmy&token=86381	248 B	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttp%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3D3f8e4d353e8f8d0c14eecdfd19dc5d21%26securessl%3Dtrue&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._vctvmy&token=86381 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:18:06 Last Seen2023-03-08 04:28:29 Times Seen1 Hash 0aec68f87a34734cc44bb2664afaa125 335d2d7db3dce88dc9dc14106b488c8851b156b2 c6601f76cd03c71ccf7dba2587d81730b676df8ff2d7725c16fe13d2d1d4d73d Loading...

	bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true	107 kB	2023-03-07	2023-03-17
Pretty URL bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true IP 172.98.65.24 ASN #46562 PERFORMIVE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 4cc7bbedd3b3118584be5c7d3043c31f d8b3dfa18b62e9b1c5ebcf6d46f0c8b6071b0077 db8826d8a632a68a3df915e38e41b34500f94aa56d637f95c938daeccb746a42 Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391	248 B	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 1bcb4fb53e134b086ae4df2ffdade78d e0390a4944dff37109eca62b12711abb5e8589c1 db814af25b67dbf0ac33e0f81467e4ef7f98a3ec394876bc1ba340814744aa41 Loading...

	bat.bing.com/p/action/5525601.js	1.1 kB	2023-03-07	2023-03-17
Pretty URL bat.bing.com/p/action/5525601.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash 25258e0096b622598edec4f3f2ba7cc8 5d844667b88909fc9a25d1f6c5d24477aa96313a e7c107b9d851bf3fcfd421b9e7c848152153c0ee42f5aaf519b2195b28f51867 Loading...

	www.clarity.ms/tag/uet/5525601	1.6 kB	2023-03-08	2023-03-10
Pretty URL www.clarity.ms/tag/uet/5525601 IP 13.107.219.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:56:06 Last Seen2023-03-10 10:05:53 Times Seen1 Hash a35806eccf6e6ca7c5de5b3297078612 edbe076d7e5637d0273c0a5d3f2399f67a526d87 34eac55051f2869bf765a83dcc8fcde526b322cfdbf4d428268daf3203152393 Loading...

		Size	First Seen	Last Seen
	#1 Write - d4bf1003aeb402abe1751838593af234	85 B	2023-03-07	2023-03-17
Pretty Observations First Seen2023-03-07 01:02:48 Last Seen2023-03-17 12:53:00 Times Seen1 Hash d4bf1003aeb402abe1751838593af234 ed9d06e72f12e7415ba63fa2c84766662a8fca10 cb48acc85e0d9b09186e84dc1759fc9586be3d09d8cbc8e23100660a3a10e205 Loading...

HTTP Transactions (76)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

18.165.201.103

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
18.165.201.103:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 01 Oct 2022 18:02:44 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 25bae94046433e736c44a6c37f27c7c4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: 3ZUVMxqDYYFGfM328YYoLMSUpGeHS8P2GXV6zjPxdoA8e8oJMpvonw==
Age: 3044

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
24cdc937930ac2ef9c8f46ba1deabcc5
397417929951bf20f235d5f91510163ac213dc71
eb128aec099dbf1919ee5d965221e904ad3a2162583683cec44518640b505447

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB128AEC099DBF1919EE5D965221E904AD3A2162583683CEC44518640B505447"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14983
Expires: Sat, 01 Oct 2022 23:03:11 GMT
Date: Sat, 01 Oct 2022 18:53:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22b8769801e8712cb7b401b5752da2c2
30d14bf20b20507a4fda3d7dbee9fbba7327139a
69d097718cac37cc6b77d417711c4356557f2b47c78026303bfe5f985b94a5a5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69D097718CAC37CC6B77D417711C4356557F2B47C78026303BFE5F985B94A5A5"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2518
Expires: Sat, 01 Oct 2022 19:35:26 GMT
Date: Sat, 01 Oct 2022 18:53:28 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: OQGTYx0H7sNCrrOIxqA9p3BjAu86TrjAe8ePdiGQm5PY0Mfq6vMrIgCNAxQkedQFIS3T+/PbmGw=
x-amz-request-id: S5MA9480E9DQVNJC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Oct 2022 18:52:08 GMT
age: 80
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 01 Oct 2022 18:53:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
4b3e32be9dddd1077c1d69ff6dc38676
019d1864ed8dba11848bc4685c1534be81ec7ecc
db6363e1889dbc71de87cfc92099d63967daa0f37a2ad22c6fe5d6c3fdd30a98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2949
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 18:53:28 GMT
Last-Modified: Sat, 01 Oct 2022 18:04:19 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
4b3e32be9dddd1077c1d69ff6dc38676
019d1864ed8dba11848bc4685c1534be81ec7ecc
db6363e1889dbc71de87cfc92099d63967daa0f37a2ad22c6fe5d6c3fdd30a98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1147
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 18:53:28 GMT
Last-Modified: Sat, 01 Oct 2022 18:34:22 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280

js.appboycdn.com/web-sdk/1.6/appboy.min.js

104.17.218.31

200 OK

39 kB

URL HTTP/2
js.appboycdn.com/web-sdk/1.6/appboy.min.js
IP
104.17.218.31:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (43293)
Size
39 kB (38747 bytes)
Hash
c4bbc91726933ab66c6d3492681ff501
d5771719078e4f58f04765c04c87c3f0e8d77fbd
e4cfcb0ca6f430af3faad33ecd478a69d82b04d2ef6af30ef7cc34e8c3947fed

HTTP Headers

GET /web-sdk/1.6/appboy.min.js HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 01 Oct 2022 18:53:28 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: rBuvKgQ/AJ4VKKVa4JPfGH0D9BYLN+9Tuba5TDUdtFCtVz03KgtpPlGQQpbbQMIOSgzGsmSJaRA=
x-amz-request-id: PFEFER0M5H56YP5K
last-modified: Fri, 06 Oct 2017 18:19:54 GMT
etag: W/"bd8c768fe5e4740920f57a1a01e14a3f"
cf-cache-status: HIT
age: 4000
expires: Sat, 01 Oct 2022 22:53:28 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 753766bd2d720b06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js

108.138.214.162

200 OK

68 kB

URL HTTP/2
cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js
IP
108.138.214.162:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (31366)
Size
68 kB (68324 bytes)
Hash
ffc83f36766785fe8e0d4701ad9f39cc
d31f72544f9454d9335e9d5ee642bbae7e1f4a1b
7c0802dd93a5933bfa9ff9396d7a41d913d70529e9872cd9da8d018b149d85c1

HTTP Headers

GET /analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 18:04:02 GMT
x-amz-version-id: YnCyzjpCjV986.xpNLpvtAI2y.y0XmP_
server: AmazonS3
content-encoding: br
date: Sat, 01 Oct 2022 18:53:28 GMT
cache-control: public, max-age=120
etag: W/"08521cc76b5cdf06eab95b9fc031b95b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 849d578ca949358328a9c41e066f78ac.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P3
x-amz-cf-id: nSxF7roldcWmaXhTbdgS5kCkuPDtMPFAjhHSm2Vy9CTImW3HuNc5ng==
age: 52
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P

142.250.74.168

200 OK

57 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (35661)
Size
57 kB (56885 bytes)
Hash
346fe424f8515a986b95ebce434b3ae2
b32e6b73d4b9a8953c66a680cc373d8578dbd2a7
ae66b94a3630b4be6f8eaa18971e84ad986d9d696c98791ff16d74b1a9978268

HTTP Headers

GET /gtm.js?id=GTM-T2GJ57P HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 01 Oct 2022 18:53:28 GMT
expires: Sat, 01 Oct 2022 18:53:28 GMT
cache-control: private, max-age=900
last-modified: Sat, 01 Oct 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 56885
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2601db85aa6894ea41f37fc0c1f2594a
afc9de950cf648d720a78467582b26346b8d53bc
3211c5c61098100152ea682c86ec84f3a80229b8d709e5cbe0022caba7dc9e24

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 18:53:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

18.165.201.103

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
18.165.201.103:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sat, 01 Oct 2022 18:32:55 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sat, 01 Oct 2022 19:20:07 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f25262ad6146af3450ccd86dcbcc3780.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: SWYysmnzte0fcudbhBbozFC4QxJONhpaUI-kkyJtyH2ZpBx2nTJpqQ==
Age: 1235

maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css

104.18.11.207

200 OK

6.0 kB

URL HTTP/1.1
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (23577)
Size
6.0 kB (6007 bytes)
Hash
79b25bba7faf617a700078021baf261d
afe865347d7edd54588209e2c192160aa4fdba2b
0d532abf8b1c2cc786dda91d183f02a318c82e03e6fd920addf82d0f4ef818bd

HTTP Headers

GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:28 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
CDN-EdgeStorageId: 632, 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 2021-06-08 21:08:57
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: e6a55b08fe5091f45c9e99ce9e9f98c2
Content-Encoding: gzip
CDN-Status: 200
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 10092007
Server: cloudflare
CF-RAY: 753766bf4e090b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
829e839c217bf861b8cf90c8d636f510
459714fcf0d374bdc078ef59d122d59bf9312c5f
36282e09bb25caf3d7350c4bee485cb87947aabc7d7409169caf15c2e75d8b7d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4328
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 18:53:28 GMT
Last-Modified: Sat, 01 Oct 2022 17:41:20 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true

172.98.65.24

200 OK

781 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (33214)
Size
781 kB (780786 bytes)
Hash
a17026e5303d403f36fc9260a2942aa5
01faa73a10891df0fa03a81fc430acda621a731a
eb1190f073acb847895452eb8939e2a6a8d554d76a817db1792511ac1eebf5da

HTTP Headers

GET /update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%22214aaabe-8818-18ef-07b0-e5631a7b8fa6%22%2C%22e%22%3A1664649796665%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.1; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:28 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
1384e669a9e259cccf32489be673e7c4
7f982ae66621ff7e5855f2b025e3ae034706ec33
eb462a28dbd7e93cd13a170acfcbf35babb3b7ef7e7d1ddeb30d377630ea30f8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 18:53:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

44.237.163.41

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.237.163.41:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +KU304s/n5jBq9P/oPt1xg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4ryWuJDKzrKwmgW6H+7CI42oFxg=

ocsp.sca1b.amazontrust.com/

108.138.212.162

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
108.138.212.162:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
394f526c7a88728ecade96c669bdc64c
7ff697e4466cd83c8a85583bf758167aaa37543a
34b60293493c6c63fe384bb652501b2341ddda9da77c051e6d0a4b793723a195

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 01 Oct 2022 18:53:29 GMT
Last-Modified: Sat, 01 Oct 2022 18:05:28 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 77c679d2765b514e835e71841df67db2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR61-P3
X-Amz-Cf-Id: JTmEgr0xTpLyOdsG_j_kbXWKCPfzDReysrLXEf5DKe_1zK084DwhbA==
Age: 2881

api.segment.io/v1/p

52.36.48.34

200 OK

21 B

URL HTTP/2
api.segment.io/v1/p
IP
52.36.48.34:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text
Size
21 B (21 bytes)
Hash
90749a50019a27e1f32cebdbaa7a1bc1
8329e3339f928f8591024bb0f938dab99c0ad4b8
12f71cb993958eefc4bdb41d7dbbda490779a9c7aba448f7be52bb63912e0254

HTTP Headers

POST /v1/p HTTP/1.1
Host: api.segment.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1291
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 01 Oct 2022 18:53:29 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: http://bangextreme.cedges.com
strict-transport-security: max-age=31536000
vary: Origin
X-Firefox-Spdy: h2

bangextreme.cedges.com/update/music/christianmingle/css/js

172.98.65.24

200 OK

82 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/js
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
ASCII text, with very long lines (4027)
Size
82 kB (81829 bytes)
Hash
b34a055aea7c0e7dfeb23312a9fc0760
c3d4489c667d2fcb6e52347d951c47d50b5a902a
766af0dc386594786e3c59282bc86384db697f50a48a5c0bfd5898f20b5aa1be

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.1; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2205cccac0-badb-8c8e-daae-b6d3e5470e23%22%2C%22e%22%3A1664652205208%2C%22c%22%3A1664650405208%2C%22l%22%3A1664650405208%7D

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:29 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 81829
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive

bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js

172.98.65.24

200 OK

20 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
C source, ASCII text, with very long lines (533)
Size
20 kB (19905 bytes)
Hash
0373b7787b60a2dfe54326de8b1f4b85
87b9015d8ac4b025c15470988a63fd54aded2996
bec11db4f9e8415d4718c34d7ff9a2968f0e64a9e9e1e91279f79c9fe8135b7b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/ATRK_52A44AA2_min.js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.1; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2205cccac0-badb-8c8e-daae-b6d3e5470e23%22%2C%22e%22%3A1664652205208%2C%22c%22%3A1664650405208%2C%22l%22%3A1664650405208%7D

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:29 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 19905
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/javascript

bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg

172.98.65.24

200 OK

3.6 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3605), with no line terminators
Size
3.6 kB (3605 bytes)
Hash
1fc2f4c7a120346c0dbfdc72c1a925b5
e593fa0daad30c0c4fda97489d1dbc548450a667
1a310e172227e76183c8859859410900f5f78dc859854c59fba1f79a76cf04e5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.1; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2205cccac0-badb-8c8e-daae-b6d3e5470e23%22%2C%22e%22%3A1664652205208%2C%22c%22%3A1664650405208%2C%22l%22%3A1664650405208%7D

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:29 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 3605
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

bangextreme.cedges.com/update/music/christianmingle/css/tp.png

172.98.65.24

200 OK

0 B

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/tp.png
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /update/music/christianmingle/css/tp.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.1; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2205cccac0-badb-8c8e-daae-b6d3e5470e23%22%2C%22e%22%3A1664652205208%2C%22c%22%3A1664650405208%2C%22l%22%3A1664650405208%7D

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:29 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

bangextreme.cedges.com/update/music/christianmingle/css/s.js

172.98.65.24

200 OK

58 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/s.js
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
ASCII text, with very long lines (881)
Size
58 kB (57588 bytes)
Hash
9038bfff3bfe3fc0bcefa895fea7ccb7
f8e55264a1876d8b59d25b630c646d52526faabf
242770dc1a3f6e097f9b5213c8562974501b681cf155e49b64a2f75cf8abe47d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/s.js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.1; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2205cccac0-badb-8c8e-daae-b6d3e5470e23%22%2C%22e%22%3A1664652205208%2C%22c%22%3A1664650405208%2C%22l%22%3A1664650405208%7D

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:29 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 57588
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/javascript

bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg

172.98.65.24

200 OK

5.0 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (5038), with no line terminators
Size
5.0 kB (5038 bytes)
Hash
b1fe73573691e00e8abc9724bdf18a64
96ed1473608b28543349e05d9b8d703f8e7f3ae3
75458168a5a076536706ee20473c29a07eeeb4b3793446c3595d069dadb8345d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.1; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2205cccac0-badb-8c8e-daae-b6d3e5470e23%22%2C%22e%22%3A1664652205208%2C%22c%22%3A1664650405208%2C%22l%22%3A1664650405208%7D

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:29 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 5038
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml

bangextreme.cedges.com/update/music/christianmingle/css/0.txt

172.98.65.24

200 OK

0 B

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/0.txt
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/0.txt HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.1; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2205cccac0-badb-8c8e-daae-b6d3e5470e23%22%2C%22e%22%3A1664652205208%2C%22c%22%3A1664650405208%2C%22l%22%3A1664650405208%7D

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:29 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba

104.18.41.117

404 Not Found

892 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba
IP
104.18.41.117:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (379), with CRLF, LF line terminators
Size
892 B (892 bytes)
Hash
03e1865164d51cfdfc1306d55b60746e
45dd36e42c8df1405cc8da6501d592d8b2e31c8d
e4c827687eca8e996fa89582df7760e324b3a06c555c1e23b8b5f8f4810f9e37

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Cookie: __cf_bm=AtxCywV6FYPOi5AWceg0piXYl9lbKkOeTuYRWT965ZQ-1664650409-0-AaOnKlmHA8jNABApVqiiP0yHs05QLejTLSdwVuLR9Sm8q4ciPo6NS3hd0IiT8ON81BzSQfUg85I310t0jDGwuEU=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
date: Sat, 01 Oct 2022 18:53:30 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 753766c70907b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3305
Expires: Sat, 01 Oct 2022 19:48:35 GMT
Date: Sat, 01 Oct 2022 18:53:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3305
Expires: Sat, 01 Oct 2022 19:48:35 GMT
Date: Sat, 01 Oct 2022 18:53:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3305
Expires: Sat, 01 Oct 2022 19:48:35 GMT
Date: Sat, 01 Oct 2022 18:53:30 GMT
Connection: keep-alive

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282

104.18.41.117

404 Not Found

892 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
IP
104.18.41.117:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (379), with CRLF, LF line terminators
Size
892 B (892 bytes)
Hash
4c58c72b5c23f94914797b3e52610a83
ad4798036b7859de16f1edfe241538b37a10d773
268db46a27bfd441fead49081dda73fbb4efdc8d88b7399bfb46e22b10b7d4b8

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
date: Sat, 01 Oct 2022 18:53:29 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=AtxCywV6FYPOi5AWceg0piXYl9lbKkOeTuYRWT965ZQ-1664650409-0-AaOnKlmHA8jNABApVqiiP0yHs05QLejTLSdwVuLR9Sm8q4ciPo6NS3hd0IiT8ON81BzSQfUg85I310t0jDGwuEU=; path=/; expires=Sat, 01-Oct-22 19:23:29 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 753766c189c2b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d8201d9-93ae-492b-8ea9-d245fa2e4073.jpeg

34.120.237.76

200 OK

3.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d8201d9-93ae-492b-8ea9-d245fa2e4073.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.6 kB (3640 bytes)
Hash
a9e7ba045a723120501994dea21709db
303c6bb672425443a15bbe22394bd1149f887904
b1bea7212e55ec8eaf62434214a86fed7d6a990d105984d79a7fa0e793395d59

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d8201d9-93ae-492b-8ea9-d245fa2e4073.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3640
x-amzn-requestid: b5f5c567-8aa9-414b-8310-cf3006711ee9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZJo1vFIwoAMF2mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333bb57-0f1cbcbb29287f5367a14b67;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 03:11:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GDkc-K5EE8VRClm1ymTQLg6vGaPliNgCox3kOk9E4d2YkCqRzEjdfg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 07:19:24 GMT
age: 41646
etag: "303c6bb672425443a15bbe22394bd1149f887904"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ae73d97-d8e4-4f93-bf30-c175fc72b008.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10201 bytes)
Hash
4be456dbe857580c7b4c7fca3936e04e
49798c4a15545a49f3870b2a16af78dbf8e168cc
23e42987d5e9939424d5f4e4fe0c38faf20a221732097927dd4a656199d9d315

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ae73d97-d8e4-4f93-bf30-c175fc72b008.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10201
x-amzn-requestid: 62562627-78a8-4c17-bf6c-b2c986b9ee8f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSxLCFH3IAMFoFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376246-69637d745165485171ca73b9;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:40:22 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9wh9cCXRRlyQy8kXzSCNzMQSmac9iwgkRBrgyTtaMr6m2vXPRxVogg==
via: 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 21:55:26 GMT
etag: "49798c4a15545a49f3870b2a16af78dbf8e168cc"
content-type: image/jpeg
age: 75484
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb90508fe-e6b6-4ad0-9afc-67b46e4d0aa4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8734 bytes)
Hash
1c475b8cc11fdaabbda170c6605d1391
7eea9aa04c5a72c417a580ca45341a0b5adc72cf
888de88ddad429a0bdb565b1f069dab4bea55a3b8a662c4efd9b75fd261dee3b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb90508fe-e6b6-4ad0-9afc-67b46e4d0aa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8734
x-amzn-requestid: 7a2713f7-e16b-4952-8e2f-76022bbbd7a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSzHfH3toAMFijw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376562-27b598460ce2f319598fdd72;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:53:38 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -aqIjL70ocOyhaZ8nQJUmCfDLBN0kkmTm2vY_xtwEsWZKi3DxHR8HQ==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:19:07 GMT
age: 74063
etag: "7eea9aa04c5a72c417a580ca45341a0b5adc72cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

sdk.iad-01.braze.com/api/v3/data/

151.101.85.208

201 Created

6.4 kB

URL HTTP/2
sdk.iad-01.braze.com/api/v3/data/
IP
151.101.85.208:0
ASN
#54113 FASTLY

File type
data
Size
6.4 kB (6356 bytes)
Hash
93b609d23fb9f117e32c09f4ee11c30a
7fa5b2c8d8908cac0ab01b2a90fe2580e115c08c
5d769a191e9b996216dbdb7eac2fe8dcbf2acf9eafcc6a8b0d06f261832e18ba

HTTP Headers

POST /api/v3/data/ HTTP/1.1
Host: sdk.iad-01.braze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 452
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 201 Created
content-type: application/json
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers: 
access-control-max-age: 7200
etag: W/"8723855d370beb568de3844fa329eec4"
cache-control: max-age=0, private, must-revalidate
x-request-id: c9a79613-86a2-4cdb-9f4a-8eb1c9986685
x-runtime: 0.022757
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Oct 2022 18:53:29 GMT
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664650409.039623,VS0,VE429
vary: Origin,Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03e4f558-3c34-42eb-aa43-9896f0e6ce87.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8269 bytes)
Hash
574cd0b975349cc445e798136863c8a0
74c20bb0c312988822deb9d46b20e4642357fbd7
62d6448a8da1ed783761e1e966c3f03f2d9b4351e04e13e71e330e4cce465fc4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03e4f558-3c34-42eb-aa43-9896f0e6ce87.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8269
x-amzn-requestid: f2ac41dd-fd33-4803-ad29-63a9b7877af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZJTcGFA_IAMFfRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333991a-36d628d17d8576972fcf6822;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 00:45:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8FdaRbtsOeuH-qLdBpgPJjdPzx_vcUeaRoAhVT3IkV0jrE1XAwRFAw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:16:14 GMT
age: 74236
etag: "74c20bb0c312988822deb9d46b20e4642357fbd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fc3f7b5-4c80-4662-ba8b-7997bdbdb6a3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8299 bytes)
Hash
0d31a422078d02bda318c693c05a58dc
2df7db53629c7adda2c0a4dfe9c17791b73a75e1
a07fe4e135b52da6dfa9d8a55684f0a3bf5f5ce52c4064c8ab37836a939902a9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fc3f7b5-4c80-4662-ba8b-7997bdbdb6a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8299
x-amzn-requestid: 91eed6b6-632f-472b-93d7-4192425fcdfd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSxLDF0SoAMFWgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376246-17bb04894cc786555d693ec3;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:40:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pt23XcORl063B99HGVhjQwBrS36T7GBIAQO7StLrEH8PKIc4edxQwQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 21:52:55 GMT
age: 75635
etag: "2df7db53629c7adda2c0a4dfe9c17791b73a75e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0

104.18.11.207

200 OK

57 kB

URL HTTP/1.1
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Size
57 kB (56780 bytes)
Hash
97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c

HTTP Headers

GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:30 GMT
Content-Type: font/woff2
Content-Length: 56780
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "97493d3f11c0a3bd5cbd959f5d19b699"
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 08/18/2022 19:50:49
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: f6d9533382d31b3c2c696d5a8f6cceb1
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 460518
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753766ca9c6e0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

js.acq.io/ATRK_52A44AA2_min.js

18.165.201.93

200 OK

6.6 kB

URL HTTP/1.1
js.acq.io/ATRK_52A44AA2_min.js
IP
18.165.201.93:0
ASN
#0

File type
C source, ASCII text, with very long lines (575)
Size
6.6 kB (6620 bytes)
Hash
2e343b63ff47763de40f560e8d311ac6
19b98da9ed2d51dc62e5922b068939b28de83a47
7504c18c2cf64c5741ef55c44fd6006c703986946d4f515e962c5018f12cdf22

HTTP Headers

GET /ATRK_52A44AA2_min.js HTTP/1.1
Host: js.acq.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 09 Feb 2021 18:47:48 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 01 Oct 2022 00:53:26 GMT
ETag: W/"33b83171c1044dc6bdc7ae7a647443a1"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 3ffc494014d1d1ba7644f6707a2cf696.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: jhaoTWnCdQsGvzbUQ1dG15i--nd2F9BGBssNj3DDPXLpRj8qWTH6zQ==
Age: 64805

bangextreme.cedges.com/update/music/christianmingle/images/c38b46548211dc0a01b864de5360ff89.jpg

172.98.65.24

200 OK

68 kB

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/images/c38b46548211dc0a01b864de5360ff89.jpg
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
JPEG image data, baseline, precision 8, 1280x850, components 3\012- data
Size
68 kB (68020 bytes)
Hash
eaa09ed9cc9ceeb8a9323c5935327a59
feff06ad6bdcc08ae3dd586ad524101e91f0eae7
9c4e27c197034aee74fa5626187f384cab30bf51ac382f258e78305cca2c1c20

HTTP Headers

GET /update/music/christianmingle/images/c38b46548211dc0a01b864de5360ff89.jpg HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.1; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2205cccac0-badb-8c8e-daae-b6d3e5470e23%22%2C%22e%22%3A1664652205208%2C%22c%22%3A1664650405208%2C%22l%22%3A1664650405208%7D

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:30 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 68020
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282

104.18.41.117

404 Not Found

2.2 kB

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
IP
104.18.41.117:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (379), with CRLF, LF line terminators
Size
2.2 kB (2184 bytes)
Hash
0b62bb6fb922a7e0434bfe86cc03c9d5
4dc946fd6fd7b16bf9f452c8698979f9fa5c4043
6e0aaf6299d0bc993fbcffd289c4c9353c3edfa98d35c41ce520eeb2917e0f2f

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Cookie: __cf_bm=AtxCywV6FYPOi5AWceg0piXYl9lbKkOeTuYRWT965ZQ-1664650409-0-AaOnKlmHA8jNABApVqiiP0yHs05QLejTLSdwVuLR9Sm8q4ciPo6NS3hd0IiT8ON81BzSQfUg85I310t0jDGwuEU=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
date: Sat, 01 Oct 2022 18:53:30 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 753766c90c0eb50b-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
76fda9bb7d23b03c4b8203e61267bdfb
37b1fcf2c92e99799ebca1623a646b255691cdc3
9782e91ebd1487e505b2009b9b9854d0d3f958a66d47fcceb368ad2eb2955d16

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 561
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 18:53:30 GMT
Last-Modified: Sat, 01 Oct 2022 18:44:09 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

bangextreme.cedges.com/update/music/christianmingle/css/tp.png

172.98.65.24

200 OK

0 B

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/tp.png
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /update/music/christianmingle/css/tp.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.1; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2205cccac0-badb-8c8e-daae-b6d3e5470e23%22%2C%22e%22%3A1664652205208%2C%22c%22%3A1664650405208%2C%22l%22%3A1664650405208%7D

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:30 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89

104.18.41.117

404 Not Found

860 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89
IP
104.18.41.117:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (379), with CRLF, LF line terminators
Size
860 B (860 bytes)
Hash
20cf48b59ec2db1cec0e8c19888270e5
c6a355da887451212955116c6ebce394d09fe88e
6becdcab1f1d607a15d23f73eaff6be3dadc5597d233fd7ca3521fe5d10511e1

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Sat, 01 Oct 2022 18:53:29 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=s8opH8DlBF4ckeHWVu0od_hFAWcMtnsvJwYKno0Ydw0-1664650409-0-AYiaQaYjFd+0N6uflDNMauLG/yqdpkYntaYlozmr87uVFfm8yXetlrrsGUqUb8PKcI6kEiYvXCvi7iYCmk7CwWo=; path=/; expires=Sat, 01-Oct-22 19:23:29 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 753766bf2ed1b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2

bangextreme.cedges.com/update/music/christianmingle/css/0.txt

172.98.65.24

200 OK

0 B

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/css/0.txt
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /update/music/christianmingle/css/0.txt HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.2; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2205cccac0-badb-8c8e-daae-b6d3e5470e23%22%2C%22e%22%3A1664652205208%2C%22c%22%3A1664650405208%2C%22l%22%3A1664650405208%7D; ATRK_y=0; ATRK_t=1

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:30 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3

104.18.41.117

404 Not Found

860 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3
IP
104.18.41.117:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (379), with CRLF, LF line terminators
Size
860 B (860 bytes)
Hash
8cb1ff341f02369c0703bb78fae2d002
fb0b9d8d2ac79da4c12e457dfedf984a84d83e31
f2d8bb814def9fe96a1f7a8ebb65501f4961dc493549a3fee85a98fb29531631

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Sat, 01 Oct 2022 18:53:29 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=skVnpc6HbX6l3A4SmN3PDe0LrNI24y9tZDsJHnyn8Fw-1664650409-0-AUdveLMwAZ7jcOMDkcMuwHhZlEbCGi21Mi5DF56SCShsmyzj57e29xdZg/CiVnZq7zeecHAqqANfmCSeLbiOdgk=; path=/; expires=Sat, 01-Oct-22 19:23:29 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 753766bf3edab50b-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42

157.240.221.35

404 Not Found

72 B

URL HTTP/2
www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type
HTML document, ASCII text, with no line terminators
Size
72 B (72 bytes)
Hash
2556c01148fc3cf811a190ae37345224
644567805749ab3ec4df4a00c82b0a4f8566f25d
f65e4cc023578b2bb3522d09231cd56eb84d209b18d501eeebf8a0b098f7635e

HTTP Headers

GET /connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: D+bl6Qf8JVJc8haPmQWovywLCVaqQGicB13+tIvwLCYmH6k6XqJNl4R7pENiITCfr4DeVMy1C/seBQ4cqymD5g==
content-length: 72
date: Sat, 01 Oct 2022 18:53:30 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

157.240.221.16

200 OK

27 kB

URL HTTP/1.1
connect.facebook.net/en_US/fbevents.js
IP
157.240.221.16:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (26840 bytes)
Hash
e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/

HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
Pragma: public
Cache-Control: public, max-age=1200
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
X-FB-Debug: eEqyPbQdNjxaABmO3uukXDusOf+31ydjZw2ZCqHQqBMPt3dkNIRAYLLMsUr9cobh75Jer221KPw3YdWGYDmmjQ==
Priority: u=3,i
X-FB-TRIP-ID: 1679558926
Date: Sat, 01 Oct 2022 18:53:31 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 26840

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b6d48f0ea4e672f089b7858dbd7c739f
7aeea7e67f616d909e8c2d9c751748741d897458
edfa49ce2471751982acc877c377f094cfa8be6f6aba70e8e8a5ff303562ce24

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1626
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 18:53:31 GMT
Last-Modified: Sat, 01 Oct 2022 18:26:25 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

bat.bing.com/bat.js

204.79.197.200

200 OK

11 kB

URL HTTP/1.1
bat.bing.com/bat.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Size
11 kB (11367 bytes)
Hash
293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/

HTTP/1.1 200 OK
Cache-Control: private,max-age=1800
Content-Length: 11367
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 28 Jul 2022 17:32:37 GMT
Accept-Ranges: bytes
ETag: "80a8697a8a2d81:0"
Vary: Accept-Encoding
Set-Cookie: MUID=37AEA70C6230645B3A05B53C63C56581; domain=.bing.com; expires=Thu, 26-Oct-2023 18:53:31 GMT; path=/; SameSite=None; Secure; Priority=High;
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 2D455D75CCCE423D9C3DA018BEA46181 Ref B: OSL30EDGE0515 Ref C: 2022-10-01T18:53:31Z
Date: Sat, 01 Oct 2022 18:53:30 GMT

bat.bing.com/bat.js

204.79.197.200

200 OK

11 kB

URL HTTP/2
bat.bing.com/bat.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Size
11 kB (11367 bytes)
Hash
293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=39A2B13F41296EDE22A8A30F40DC6F01; domain=.bing.com; expires=Thu, 26-Oct-2023 18:53:31 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 5139AEB2C88141D5AA89F8EE9AC6F8D1 Ref B: OSL30EDGE0111 Ref C: 2022-10-01T18:53:31Z
date: Sat, 01 Oct 2022 18:53:30 GMT
X-Firefox-Spdy: h2

bangextreme.cedges.com/update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png

172.98.65.24

200 OK

457 B

URL HTTP/1.1
bangextreme.cedges.com/update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png
IP
172.98.65.24:0
ASN
#46562 PERFORMIVE

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size
457 B (457 bytes)
Hash
c2ab4218f7d4cf593f4d6620f780f7f8
8050352dea4a1bc1021cc839fdfde2a80a1bd93b
a31af8633a6dc1857d3a5e9c231c03a49f80306580c3773ac4cddfe441c9bd8d

HTTP Headers

GET /update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=3f8e4d353e8f8d0c14eecdfd19dc5d21&securessl=true
Cookie: ajs_anonymous_id=%22c41157be-a676-49c5-8e11-4e8d4ec36dc1%22; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224be2f6cb-e7f9-4abd-8a0c-267244c1a493%22%2C%22c%22%3A1664647996665%2C%22l%22%3A1664647996665%7D; ATRK_a=c4c47b87b54a416482c919b153b4e742.2; __ssid=220a034f-c0aa-4da7-b868-f167cb91a97f; _uetsid=ba3193f041b411eda0de9d5e68a4f136; _uetvid=ba31873041b411ed87ceefff6db70556; _clck=3piyo9|1|f5c|0; _clsk=he517o|1664648000866|1|1|b.clarity.ms/collect; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2205cccac0-badb-8c8e-daae-b6d3e5470e23%22%2C%22e%22%3A1664652205208%2C%22c%22%3A1664650405208%2C%22l%22%3A1664650405208%7D; ATRK_y=0; ATRK_t=1

HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 18:53:31 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 457
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/png

script.hotjar.com/modules-fa7b914657f32d32df01f26b19e8f066.js

18.164.68.101

403 Forbidden

243 B

URL HTTP/2
script.hotjar.com/modules-fa7b914657f32d32df01f26b19e8f066.js
IP
18.164.68.101:0
ASN
#0

File type
data
Size
243 B (243 bytes)
Hash
cf40e662bff13197ed492181c105b912
9121f38daf1a0507abb365bf28fc183b5779913a
7eea6ba2b581bdc8cac69b1536ec640a0df954f327c376839532b79118f9730e

HTTP Headers

GET /modules-fa7b914657f32d32df01f26b19e8f066.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
content-type: application/xml
content-length: 243
date: Sat, 01 Oct 2022 18:53:31 GMT
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 6e05560e2a116f10e93777df92ea6478.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P4
x-amz-cf-id: 2tOeTf3sjG8oxPLkcCOgeuQ64GDbXWiUSvw1nbxhhD13MaCTopTWgA==
X-Firefox-Spdy: h2

bat.bing.com/p/action/5525601.js

204.79.197.200

200 OK

666 B

URL HTTP/2
bat.bing.com/p/action/5525601.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with CRLF line terminators
Size
666 B (666 bytes)
Hash
6035d901b1e248c3f3ffca691342d795
eec8681b6b015af22ee45ad909775ddf8c734d51
785e8939d96003b3775eac0e3d1cba195a96097027d5cdb69dffa3324f597881

HTTP Headers

GET /p/action/5525601.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 666
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=22B526768AA1687436A234468B5469AA; domain=.bing.com; expires=Thu, 26-Oct-2023 18:53:31 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A41D66CB61534BF090035216DC36DE75 Ref B: OSL30EDGE0111 Ref C: 2022-10-01T18:53:31Z
date: Sat, 01 Oct 2022 18:53:31 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
51e8be01fe1e4cf7fbec97f2268fe684
25edd63df37f972dbdd8d149b26c4be60179d32b
d364b01cf59a8eafc6ed2e79eab3c22b7daa341240a5dcbd272b8b48d530aeee

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 18:53:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

csi.gstatic.com/csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.4

142.251.35.163

204 No Content

0 B

URL HTTP/2
csi.gstatic.com/csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.4
IP
142.251.35.163:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.4 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
access-control-allow-origin: *
date: Sat, 01 Oct 2022 18:53:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.clarity.ms/tag/uet/5525601

13.107.219.53

200 OK

1.6 kB

URL HTTP/2
www.clarity.ms/tag/uet/5525601
IP
13.107.219.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (1590), with no line terminators
Size
1.6 kB (1590 bytes)
Hash
a35806eccf6e6ca7c5de5b3297078612
edbe076d7e5637d0273c0a5d3f2399f67a526d87
34eac55051f2869bf765a83dcc8fcde526b322cfdbf4d428268daf3203152393

HTTP Headers

GET /tag/uet/5525601 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache, no-store
content-length: 1590
content-type: application/x-javascript
expires: -1
set-cookie: CLID=dbd89f06882b40c59bd3228d1c11c2dd.20221001.20231001; expires=Sun, 01 Oct 2023 18:53:31 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:593e4080-f032-4d00-a652-e17f01252a9d
x-cache: CONFIG_NOCACHE
x-azure-ref: 0q4w4YwAAAAB3XsigTah7R4wtqfLcPiQHT1NMMjMxMDUwMjA0MDIzADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Sat, 01 Oct 2022 18:53:30 GMT
X-Firefox-Spdy: h2

www.clarity.ms/eus2/s/0.6.42/clarity.js

13.107.219.53

200 OK

23 kB

URL HTTP/2
www.clarity.ms/eus2/s/0.6.42/clarity.js
IP
13.107.219.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (54141)
Size
23 kB (23382 bytes)
Hash
f016daac053b80575e11e20b6644142b
bc23277b8eae567b77c3dfc3f03b91fb054feda7
ee91529c076bf5e87a26b3c045e0b6e63326e6aa871dafea1c1509f73454123d

HTTP Headers

GET /eus2/s/0.6.42/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=86400
content-length: 23382
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8d4495324d7d4"
vary: Accept-Encoding
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0q4w4YwAAAABBn8VQNKkKToIu7evxyTBcT1NMMjMxMDUwMjA0MDIzADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Sat, 01 Oct 2022 18:53:30 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
eb2de1a6c4c76b62bd9b5844ac8f0711
205f8666f86cf5f699ed5c8252c46004492fa88e
d0f5a54640474e3d0383d5302a9899e8060456287379906d2359925c6d36c46b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 18:53:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
227ac8b15c5b04066419db0d42372be9
2d1e1b1ad1edeac1eb3d0b8bafa307f483654e46
f21202cf224342e97c34c6c1c1781474cea0d307bad0e7bfb921134743b3d2f5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4086
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 18:53:31 GMT
Last-Modified: Sat, 01 Oct 2022 17:45:25 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

c.clarity.ms/c.gif

20.234.93.27

302 Found

0 B

URL HTTP/2
c.clarity.ms/c.gif
IP
20.234.93.27:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=EE741539A6E940BBA8BD9D81282FBE0B&RedC=c.clarity.ms&MXFR=1695FC288BB7602514F7EE188FB76E6B
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=1695FC288BB7602514F7EE188FB76E6B; domain=.clarity.ms; expires=Thu, 26-Oct-2023 18:53:31 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Sat, 01 Oct 2022 18:53:31 GMT
content-length: 0
X-Firefox-Spdy: h2

c.bing.com/c.gif?CtsSyncId=EE741539A6E940BBA8BD9D81282FBE0B&RedC=c.clarity.ms&MXFR=1695FC288BB7602514F7EE188FB76E6B

204.79.197.200

302 Found

0 B

URL HTTP/2
c.bing.com/c.gif?CtsSyncId=EE741539A6E940BBA8BD9D81282FBE0B&RedC=c.clarity.ms&MXFR=1695FC288BB7602514F7EE188FB76E6B
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c.gif?CtsSyncId=EE741539A6E940BBA8BD9D81282FBE0B&RedC=c.clarity.ms&MXFR=1695FC288BB7602514F7EE188FB76E6B HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=EE741539A6E940BBA8BD9D81282FBE0B&MUID=0C563979082867EB365C2B4909DD66F8
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=0C563979082867EB365C2B4909DD66F8; domain=c.bing.com; expires=Thu, 26-Oct-2023 18:53:32 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F5231735851242D59A2F7BD8EA9F53BB Ref B: OSL30EDGE0111 Ref C: 2022-10-01T18:53:32Z
date: Sat, 01 Oct 2022 18:53:31 GMT
content-length: 0
X-Firefox-Spdy: h2

c.clarity.ms/c.gif?CtsSyncId=EE741539A6E940BBA8BD9D81282FBE0B&MUID=0C563979082867EB365C2B4909DD66F8

20.234.93.27

200 OK

42 B

URL HTTP/2
c.clarity.ms/c.gif?CtsSyncId=EE741539A6E940BBA8BD9D81282FBE0B&MUID=0C563979082867EB365C2B4909DD66F8
IP
20.234.93.27:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12

HTTP Headers

GET /c.gif?CtsSyncId=EE741539A6E940BBA8BD9D81282FBE0B&MUID=0C563979082867EB365C2B4909DD66F8 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Sat, 01-Oct-2022 19:03:32 GMT; path=/; SameSite=None; Secure;
date: Sat, 01 Oct 2022 18:53:31 GMT
content-length: 42
X-Firefox-Spdy: h2

b.clarity.ms/collect

20.75.32.255

204 No Content

0 B

URL HTTP/2
b.clarity.ms/collect
IP
20.75.32.255:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 680525
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://bangextreme.cedges.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Sat, 01 Oct 2022 18:53:32 GMT
X-Firefox-Spdy: h2

b.clarity.ms/collect

20.75.32.255

204 No Content

0 B

URL HTTP/2
b.clarity.ms/collect
IP
20.75.32.255:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12215
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://bangextreme.cedges.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Sat, 01 Oct 2022 18:53:32 GMT
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10380 bytes)
Hash
139a144f8cb04ac8aae65f4bad1473e7
265840b2d2fc6eb764cc6409b05deee8d77a19c2
6e0f01b6bdd5a92e92c7b29a6172a2900c68900afd2abba948940621252e0fd8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 10380
x-amzn-requestid: 35ee2a77-159c-4bb4-a825-98c638398586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdZYHsTIAMFQNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f6f-4f68073432bcea371c7b8f03;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: v8a69x5mDDCCx8OIqDtwfkIpGXvFybxeGtlkZWhldIbSZU6cIWPvbw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:26:32 GMT
age: 73625
etag: "265840b2d2fc6eb764cc6409b05deee8d77a19c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89

104.18.41.117

404 Not Found

0 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89
IP
104.18.41.117:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Cookie: __cf_bm=O0ORacXg2LHhnraIuit6IIMw7f.1Ws_gEKbe6BwhULU-1664650409-0-AerSvnQbEAAxH1BIj6nKgO+qLOG6nRt96mZgHaZYWl0kAEa+QepJatyOGVwetbUh0twDK+zdXwlH2jufKXKIKv0=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
date: Sat, 01 Oct 2022 18:53:30 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 753766c5af3fb50b-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d

104.18.41.117

404 Not Found

0 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d
IP
104.18.41.117:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Cookie: __cf_bm=O0ORacXg2LHhnraIuit6IIMw7f.1Ws_gEKbe6BwhULU-1664650409-0-AerSvnQbEAAxH1BIj6nKgO+qLOG6nRt96mZgHaZYWl0kAEa+QepJatyOGVwetbUh0twDK+zdXwlH2jufKXKIKv0=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
date: Sat, 01 Oct 2022 18:53:29 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 753766c45dc0b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2

js.appboycdn.com/web-sdk/1.6/appboy.min.css

104.17.218.31

200 OK

0 B

URL HTTP/2
js.appboycdn.com/web-sdk/1.6/appboy.min.css
IP
104.17.218.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web-sdk/1.6/appboy.min.css HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 01 Oct 2022 18:53:28 GMT
content-type: text/css; charset=utf-8
x-amz-id-2: huDB3PumhyF6WrF6APQUv+8CD8wIbVcPv5aL7uohp3adWf2h9c1YeKxEl7ZrrKdJivchdPfudxs=
x-amz-request-id: KAMFRPEM2QQ08FFS
last-modified: Fri, 06 Oct 2017 18:19:54 GMT
etag: W/"3f4d7e756ec9b4609665da772b9cef98"
cf-cache-status: HIT
age: 4570
expires: Sat, 01 Oct 2022 22:53:28 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 753766bd2d710b06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

hexagon-analytics.com/images/135261.gif?bk=1f4e7326ba&tm=69&r=201211060&v=103&cs=UTF-8&h=bangextreme.cedges.com&l=en-US&S=310dd58ceb2d5f0d3ef4399739139944&uu=220a034f-c0aa-4da7-b868-f167cb91a97f&t=Christian%20Mingle%20-%20Login&u=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3D3f8e4d353e8f8d0c14eecdfd19dc5d21%26securessl%3Dtrue&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=0&mh=d41d8cd98f00b204e9800998ecf8427e&np=0&ph=d41d8cd98f00b204e9800998ecf8427e&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=unspecified&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=16&je=false&z=z

34.102.232.42

200 OK

0 B

URL HTTP/2
hexagon-analytics.com/images/135261.gif?bk=1f4e7326ba&tm=69&r=201211060&v=103&cs=UTF-8&h=bangextreme.cedges.com&l=en-US&S=310dd58ceb2d5f0d3ef4399739139944&uu=220a034f-c0aa-4da7-b868-f167cb91a97f&t=Christian%20Mingle%20-%20Login&u=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3D3f8e4d353e8f8d0c14eecdfd19dc5d21%26securessl%3Dtrue&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=0&mh=d41d8cd98f00b204e9800998ecf8427e&np=0&ph=d41d8cd98f00b204e9800998ecf8427e&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=unspecified&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=16&je=false&z=z
IP
34.102.232.42:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/135261.gif?bk=1f4e7326ba&tm=69&r=201211060&v=103&cs=UTF-8&h=bangextreme.cedges.com&l=en-US&S=310dd58ceb2d5f0d3ef4399739139944&uu=220a034f-c0aa-4da7-b868-f167cb91a97f&t=Christian%20Mingle%20-%20Login&u=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3D3f8e4d353e8f8d0c14eecdfd19dc5d21%26securessl%3Dtrue&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=0&mh=d41d8cd98f00b204e9800998ecf8427e&np=0&ph=d41d8cd98f00b204e9800998ecf8427e&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=unspecified&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=16&je=false&z=z HTTP/1.1
Host: hexagon-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 01 Oct 2022 18:53:30 GMT
content-type: image/gif
x-content-type-options: nosniff
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba

104.18.41.117

404 Not Found

0 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba
IP
104.18.41.117:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Sat, 01 Oct 2022 18:53:29 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=559lQfl9AmEYIPzDab_kMaD.Tq1.GfN_brIeAJQjQyk-1664650409-0-AX85SOoUl9yk+mcZRwhY4pebb2O5+fbcwg90K1K/X2WAP5unBB19/crrH/3oOQb6WBzIEdm2WLO6LtYVYSPYgwo=; path=/; expires=Sat, 01-Oct-22 19:23:29 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 753766bf3edcb50b-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d

104.18.41.117

404 Not Found

0 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d
IP
104.18.41.117:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Sat, 01 Oct 2022 18:53:29 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=O0ORacXg2LHhnraIuit6IIMw7f.1Ws_gEKbe6BwhULU-1664650409-0-AerSvnQbEAAxH1BIj6nKgO+qLOG6nRt96mZgHaZYWl0kAEa+QepJatyOGVwetbUh0twDK+zdXwlH2jufKXKIKv0=; path=/; expires=Sat, 01-Oct-22 19:23:29 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 753766bf3ee5b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2

sdk.iad-01.braze.com/api/v3/data/

151.101.85.208

200 OK

0 B

URL HTTP/2
sdk.iad-01.braze.com/api/v3/data/
IP
151.101.85.208:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

OPTIONS /api/v3/data/ HTTP/1.1
Host: sdk.iad-01.braze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-requested-with
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers: 
access-control-max-age: 7200
access-control-allow-headers: content-type,x-requested-with
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Oct 2022 18:53:29 GMT
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664650409.937860,VS0,VE92
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-692969.js?sv=6

143.204.68.87

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-692969.js?sv=6
IP
143.204.68.87:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/hotjar-692969.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 01 Oct 2022 18:53:22 GMT
cache-control: max-age=60
etag: W/42664f47b158a3a46c818dd277e8d1a2
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 af2e366d348958e3f4e4b852661686a4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: DmJg3nJ03RS6dVmYt7vmcddt0NwHi0dVbEmQtWN6iV1T18v_aiDj4w==
age: 9
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-692969.js?sv=5

143.204.68.87

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-692969.js?sv=5
IP
143.204.68.87:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/hotjar-692969.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 01 Oct 2022 18:53:22 GMT
cache-control: max-age=60
etag: W/42664f47b158a3a46c818dd277e8d1a2
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 af2e366d348958e3f4e4b852661686a4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: aVDhuGfl4t24zvsUBdgNvR1ctpeUenqnrGPfgYJD9MangmKnBfzguA==
age: 9
X-Firefox-Spdy: h2

www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d

104.18.41.117

404 Not Found

0 B

URL HTTP/2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d
IP
104.18.41.117:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Sat, 01 Oct 2022 18:53:29 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=SbOmeX9SQ._VpZ2leHQdJcgsI2fu8lKmG9_TtRSGQDI-1664650409-0-AQ49OPtr584ohsQviL54nqr+ureKVpxismDf/HnOFRKi2FSgrHoF7BaOSfhoc76mb8XUGOlgXz9VMtnutmDCOLA=; path=/; expires=Sat, 01-Oct-22 19:23:29 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 753766bf2ed4b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations