r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e36c852b5e145f2f09fe73111fb162e1
e439c6a462f86a3003d6464a8b9999b1c4d1e210
52a721168d0c41cb0854ff8c730fce3b79db2e804b383238e95ff1401922bd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52A721168D0C41CB0854FF8C730FCE3B79DB2E804B383238E95FF1401922BD74"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3095
Expires: Thu, 27 Oct 2022 00:44:50 GMT
Date: Wed, 26 Oct 2022 23:53:15 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5957
Cache-Control: max-age=127023
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:16 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 11:10:19 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8db408c487f7d35bba323046736e8d3a
01b91e2dce7c6d3de9adfe6ff4d38f9b24ab7db0
9aeafc72c1a969243e1fc96f68ce18888034a749ee70582208bf814bd40b61a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9AEAFC72C1A969243E1FC96F68CE18888034A749EE70582208BF814BD40B61A5"
Last-Modified: Tue, 25 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6084
Expires: Thu, 27 Oct 2022 01:34:40 GMT
Date: Wed, 26 Oct 2022 23:53:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4leNN5+8HHj78Dhpg1677+tBtFsMcNr/KK/OdZewe287ew4SVaLdcdLvOhvraPkp0P+XBSo3CAA=
x-amz-request-id: WE04VMJGYYHR618E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 26 Oct 2022 23:39:23 GMT
age: 833
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 23:53:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 93ecc10939a0dc70bb0db6f9779b5479
737a296d32cd00371ed813bea9d4345cf16d05b7
799384bd7c35d6e072ccadcf4920f5cd0eb4b02d4bce9ca1ad2ce15f108c9e40
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4867
Cache-Control: max-age=140298
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:16 GMT
Etag: "63593673-118"
Expires: Fri, 28 Oct 2022 14:51:34 GMT
Last-Modified: Wed, 26 Oct 2022 13:30:27 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 93ecc10939a0dc70bb0db6f9779b5479
737a296d32cd00371ed813bea9d4345cf16d05b7
799384bd7c35d6e072ccadcf4920f5cd0eb4b02d4bce9ca1ad2ce15f108c9e40
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4867
Cache-Control: max-age=140298
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:16 GMT
Etag: "63593673-118"
Expires: Fri, 28 Oct 2022 14:51:34 GMT
Last-Modified: Wed, 26 Oct 2022 13:30:27 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 280
js.appboycdn.com/web-sdk/1.6/appboy.min.js
104.17.218.31200 OK 39 kB URL HTTP/2 js.appboycdn.com/web-sdk/1.6/appboy.min.js
IP 104.17.218.31:0
File type ASCII text, with very long lines (43293)
Hash 2cdb19c956e49360a89aea9746a30bd0
c2a771377a4fbbd2f4b214ff3ebdb43d83804e52
0ca5c8818653637206a6cdf2d2ea3b28cf22cfc1d9c4a258675547b675d772fb
GET /web-sdk/1.6/appboy.min.js HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 23:53:16 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: rBuvKgQ/AJ4VKKVa4JPfGH0D9BYLN+9Tuba5TDUdtFCtVz03KgtpPlGQQpbbQMIOSgzGsmSJaRA=
x-amz-request-id: PFEFER0M5H56YP5K
last-modified: Fri, 06 Oct 2017 18:19:54 GMT
etag: W/"bd8c768fe5e4740920f57a1a01e14a3f"
cf-cache-status: HIT
age: 3991
expires: Thu, 27 Oct 2022 03:53:16 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 76071c44beec0af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P
142.250.74.168200 OK 63 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T2GJ57P
IP 142.250.74.168:0
File type ASCII text, with very long lines (35661)
Hash 9b502f36e9f4dc26cf61c9f2648d7335
61e80145802077d99d532a1b072163dec8ccc595
cc2245301f5ccb375bbaffb23d02c3b7dc29193c2c4409bd3ae5d0eb541d586a
GET /gtm.js?id=GTM-T2GJ57P HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 26 Oct 2022 23:53:16 GMT
expires: Wed, 26 Oct 2022 23:53:16 GMT
cache-control: private, max-age=900
last-modified: Wed, 26 Oct 2022 22:59:02 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 63054
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
104.18.11.207200 OK 6.0 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
IP 104.18.11.207:0
File type ASCII text, with very long lines (23577)
Hash 79b25bba7faf617a700078021baf261d
afe865347d7edd54588209e2c192160aa4fdba2b
0d532abf8b1c2cc786dda91d183f02a318c82e03e6fd920addf82d0f4ef818bd
GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:16 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
CDN-EdgeStorageId: 632, 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 2021-06-08 21:08:57
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: e6a55b08fe5091f45c9e99ce9e9f98c2
Content-Encoding: gzip
CDN-Status: 200
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 12269995
Server: cloudflare
CF-RAY: 76071c47afa80b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
172.98.65.24200 OK 781 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
IP 172.98.65.24:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (33214)
Size 781 kB (780786 bytes)
Hash a17026e5303d403f36fc9260a2942aa5
01faa73a10891df0fa03a81fc430acda621a731a
eb1190f073acb847895452eb8939e2a6a8d554d76a817db1792511ac1eebf5da
GET /update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:15 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sdk.iad-01.braze.com/api/v3/data/
151.101.85.208200 OK 491 B URL HTTP/2 sdk.iad-01.braze.com/api/v3/data/
IP 151.101.85.208:0
Hash 7513b352da6b190ff37aa7bd84f03926
7ae17ce85ca81ddd1a58d2cdf66fae0a12ecfe6e
348ce6b1072acd80d6d2027ecce5f6f619d5b1d2d0cf5b0cb43a3539350d5f06
OPTIONS /api/v3/data/ HTTP/1.1
Host: sdk.iad-01.braze.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-requested-with
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type,x-requested-with
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 23:53:16 GMT
via: 1.1 varnish
x-served-by: cache-bma1675-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666828397.822287,VS0,VE100
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d
172.64.146.139404 Not Found 2.0 kB URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d
IP 172.64.146.139:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380), with CRLF, LF line terminators
Hash 56aa6ac35db0830adf9ad84cd7bc0620
2f003b66c5dc844036a36fe1d886406dce07596c
461ac298aba5721d1d554c8596458fdbc17d3347a1f602050c34060779363918
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 23:53:16 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=Y_jWr.xUABUnV0iUE00IP0HUCFxbJwogzvS4ons_BIw-1666828396-0-AbUwpFKx7ZYU/9964JfwC3QrFWf8OmYdwzbVnzWAjLszFwbtClja6/4IKDinbsd7FEwC8FLeGMLUlwsU/q9shIQ=; path=/; expires=Thu, 27-Oct-22 00:23:16 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76071c478e81b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3
172.64.146.139404 Not Found 52 kB URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3
IP 172.64.146.139:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380), with CRLF, LF line terminators
Hash af4aaaff1f8184fa36fcff49f9625f42
e13771ab07057be3050edab24257606939d68b2f
0eb5704a91fe2168bcb059e9e5685f460a188eae66e1ac591de189afba4cdb52
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/2.js?q=bec5c429736cef0240c3 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 23:53:16 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=i2UFNpE8WQfKqlgRayxlN1Ntmxz7CLiV7Kjv1_8KwQk-1666828396-0-ATJ4TwVbDCAxSN6NWzrA8dn1R1dbUrJigD+ZDDBCH7MX8ddYLwmh2Bi2Xod5bdDrJYLM8KZi366q+xxbRWks6IM=; path=/; expires=Thu, 27-Oct-22 00:23:16 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76071c478e80b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391
172.217.21.170200 OK 199 B URL HTTP/2 maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391
IP 172.217.21.170:0
File type ASCII text, with no line terminators
Hash d753ddf308007bf2963889db280fca6d
b52cd7f36a769e92b893c3cfc59478ae2792bc00
97d8c57d5a2a66974ff48805365f709c2acc88b3eb5b23d7ddc91ae5efe28a85
GET /maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.christianmingle.com%2Fen-us%2Flogin&4sAIzaSyBYsbJZsSSb0DsWbDeqqKgQ2rOnRJQKhN8&callback=_xdc_._5b0gtv&token=127391 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Wed, 26 Oct 2022 23:53:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-disposition: attachment
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: mafe
content-length: 199
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=10
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 506bd0ed99236eccd72f534ae7af2360
45461bf7033d2f4df9d9b573ddd9b279d7ddf969
60a5bc386fea47d844ab406d2eeb1c1db7a8d43f5ea616e591cb44969e0c5579
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=167217
Date: Wed, 26 Oct 2022 23:53:17 GMT
Etag: "6359a422-1d7"
Expires: Fri, 28 Oct 2022 22:20:14 GMT
Last-Modified: Wed, 26 Oct 2022 21:18:26 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HwKqaaFoH7Y0e9r1uJqTngIgaJm96CaThp6T9ZealQyr5wnOdTDpAg==
Age: 3708
bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js
172.98.65.24200 OK 20 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/ATRK_52A44AA2_min.js
IP 172.98.65.24:0
File type C source, ASCII text, with very long lines (533)
Hash 0373b7787b60a2dfe54326de8b1f4b85
87b9015d8ac4b025c15470988a63fd54aded2996
bec11db4f9e8415d4718c34d7ff9a2968f0e64a9e9e1e91279f79c9fe8135b7b
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/ATRK_52A44AA2_min.js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:17 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 19905
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
35.160.97.225101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.97.225:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vQ/dZOKsGAJ57gm3MgBgOQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wZ6819IbBQD0z1kwohX2bheXC8c=
bangextreme.cedges.com/update/music/christianmingle/css/tp.png
172.98.65.24200 OK 0 B URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/tp.png
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /update/music/christianmingle/css/tp.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:17 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
api.segment.io/v1/p
44.241.121.124200 OK 21 B IP 44.241.121.124:0
File type JSON data\012- , ASCII text
Hash 90749a50019a27e1f32cebdbaa7a1bc1
8329e3339f928f8591024bb0f938dab99c0ad4b8
12f71cb993958eefc4bdb41d7dbbda490779a9c7aba448f7be52bb63912e0254
POST /v1/p HTTP/1.1
Host: api.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1303
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 23:53:17 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: http://bangextreme.cedges.com
strict-transport-security: max-age=31536000
vary: Origin
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg
172.98.65.24200 OK 5.0 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg
IP 172.98.65.24:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (5038), with no line terminators
Hash b1fe73573691e00e8abc9724bdf18a64
96ed1473608b28543349e05d9b8d703f8e7f3ae3
75458168a5a076536706ee20473c29a07eeeb4b3793446c3595d069dadb8345d
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/b1fe73573691e00e8abc9724bdf18a64.svg HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:17 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 5038
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
bangextreme.cedges.com/update/music/christianmingle/css/js
172.98.65.24200 OK 82 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/js
IP 172.98.65.24:0
File type ASCII text, with very long lines (4027)
Hash b34a055aea7c0e7dfeb23312a9fc0760
c3d4489c667d2fcb6e52347d951c47d50b5a902a
766af0dc386594786e3c59282bc86384db697f50a48a5c0bfd5898f20b5aa1be
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:17 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 81829
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
bangextreme.cedges.com/update/music/christianmingle/css/s.js
172.98.65.24200 OK 58 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/s.js
IP 172.98.65.24:0
File type ASCII text, with very long lines (881)
Hash 9038bfff3bfe3fc0bcefa895fea7ccb7
f8e55264a1876d8b59d25b630c646d52526faabf
242770dc1a3f6e097f9b5213c8562974501b681cf155e49b64a2f75cf8abe47d
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/s.js HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:17 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 57588
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89
172.64.146.139404 Not Found 1.3 kB URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89
IP 172.64.146.139:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380), with CRLF, LF line terminators
Hash 08bb46e8284ad8655f9145e9a6f4eeaf
76cf99bf6ee5cc036903ed35a7bae453c064391b
7691e1fbe7e96340f7550e0a6d939b4961412597d210e645fd7b8bcc24f116a2
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Cookie: __cf_bm=_abGC1rd6AHFsGIht8b.XKs2VhEAUfdBLMMdQjajESA-1666828397-0-AdFP6RP3EzT0H+kvet+9ILTkhGkg11n48Pp6LYct7SEgWxhQOQIhWmUpJHlUHmn6odBngIpAfC9/jbUukMCmlao=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 23:53:17 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76071c4c587fb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17546
Expires: Thu, 27 Oct 2022 04:45:44 GMT
Date: Wed, 26 Oct 2022 23:53:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17546
Expires: Thu, 27 Oct 2022 04:45:44 GMT
Date: Wed, 26 Oct 2022 23:53:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9098f868-2119-42f3-92b9-615f0a2c32f6.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9098f868-2119-42f3-92b9-615f0a2c32f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36dbf36c45aa3c5d6e10f8c4afd8bf34
bee7e540981a4ffb14728d2ac4a53ce28e299d0d
0dad70dc63e95aa8fd9befdb7dc4f971bad962e300f380dab2a04cc60138374d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9098f868-2119-42f3-92b9-615f0a2c32f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8760
x-amzn-requestid: 013df52a-1abe-4a1b-ac52-9a5ec5da55b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocv2HRMoAMF5mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7fe-70e98155664262621b8538b5;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9uDSJn3yAYI7RNgIs96f2AT8nfTgd6YbFkMAc9aJAW4wTMiN_JqhEw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:47:46 GMT
etag: "bee7e540981a4ffb14728d2ac4a53ce28e299d0d"
content-type: image/jpeg
age: 7532
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sdk.iad-01.braze.com/api/v3/data/
151.101.85.208201 Created 8.8 kB URL HTTP/2 sdk.iad-01.braze.com/api/v3/data/
IP 151.101.85.208:0
Hash d160047ec6b07c406b2ef1851efebbb8
7dfe4a48e7717ac04eb7a9c70fc841e4bc860ed1
f93e6e992a353dbcd96b7d1ca96b4a42d57914e9305072d4b3f96707937e66be
POST /api/v3/data/ HTTP/1.1
Host: sdk.iad-01.braze.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 545
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
content-type: application/json
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
etag: W/"4fe698c2b61ec775e360867586fecd3c"
cache-control: max-age=0, private, must-revalidate
x-request-id: d20db770-7b14-4006-8161-f981601a812c
x-runtime: 0.489836
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 23:53:17 GMT
via: 1.1 varnish
x-served-by: cache-bma1675-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666828397.989494,VS0,VE855
vary: Origin,Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c92c49279a7704d715e50836676d1abb
3092b4dbd87f7e5a2eff65c463da9c5103ff748a
6941145d63e68abf0f20081517faa4082eed3c59f8b8a69066f70b29d90fd355
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4709
x-amzn-requestid: c2923a57-57c4-4d62-83bc-e4c8b61aa2bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocuiGeeIAMF9Dg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7f6-7e47cfe804e333cc540f162a;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: M72Vjcyc06ihmWcqr2_Xrk8dGcC5pCoDidg5rhtRkVddavcUFE6G6w==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:47:37 GMT
etag: "3092b4dbd87f7e5a2eff65c463da9c5103ff748a"
content-type: image/jpeg
age: 7541
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F577b3c1d-3b6e-4105-8d19-8557bacffa02.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F577b3c1d-3b6e-4105-8d19-8557bacffa02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ded5eb41644bfe7ea87cff5ab0d79f0
9b13eca2d768277b92c05a8a82743018489783a6
3de7fcc3e9c8a107e4c5d6e59506ec71e68129a8351e47af63930873775ac3f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F577b3c1d-3b6e-4105-8d19-8557bacffa02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15768
x-amzn-requestid: ab678277-5d12-4ae2-9af7-f15fab294657
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRoclEbBoAMFz9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63508783-344a14d17bfcd6b12ffe02b0;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 23:25:55 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AgS3Yq-WCRRnFvCxMcwq13lQz8cGvvdwZ51C3H0szmB0iyZLb9mf-A==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:58:12 GMT
age: 6906
etag: "9b13eca2d768277b92c05a8a82743018489783a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2013af8a-e057-44cd-8dca-381e200609e6.jpeg
34.120.237.76200 OK 18 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2013af8a-e057-44cd-8dca-381e200609e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed4462f023dbabb596a2e3b521425ca1
61b82445b422a5f917bb10640beb6d73eb0e62c3
a02af2897331acc123bf7d54b30929e3bc062a0875b5dea95302ddf60d808ded
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2013af8a-e057-44cd-8dca-381e200609e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 18182
x-amzn-requestid: f1232b1f-32ac-4820-b186-b3bfb928c0b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aYvSKFF4oAMF2Wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63535f40-0b9bc4d27b7534176cc278ed;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 03:10:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6Ep7Z_31m6kPwBoVaHyE2TioMdDmF_SkwT5kl326QvWN1pFEX_sy6Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 10:29:50 GMT
age: 48208
etag: "61b82445b422a5f917bb10640beb6d73eb0e62c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ace7660d2948795997e3c7cb9cf12495
fed9b6693077d233f60cc7394c7b667291ffade7
fd4718a6649572cbaf13f46b8e2961cd1c680afa1494b0bacd5fda9010a95098
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5136
x-amzn-requestid: 0059b05c-746b-41cd-8cc1-c744d0b149fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aoc2-H9sIAMFquA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a82c-772120580c4cf9e45b685971;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:35:40 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fqqRNgPgAZRwp_xRyHC3YzEKQTwydDs45MNLQC7hoRpytCb91-9b5Q==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:51:05 GMT
age: 7333
etag: "fed9b6693077d233f60cc7394c7b667291ffade7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/css/0.txt
172.98.65.24200 OK 0 B URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/0.txt
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/0.txt HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:18 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
js.acq.io/ATRK_52A44AA2_min.js
143.204.55.115200 OK 6.6 kB URL HTTP/1.1 js.acq.io/ATRK_52A44AA2_min.js
IP 143.204.55.115:0
File type C source, ASCII text, with very long lines (575)
Hash de2461dc644189a0a33ceb0a11d7d5a1
1f92ce3090483bcd84f49d0df9c8a3e36643e26e
d1adf15d3a14c5f9d549012ca397e9c550bbfc6b64efb7231b611413d5ac1957
GET /ATRK_52A44AA2_min.js HTTP/1.1
Host: js.acq.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Wed, 26 Oct 2022 02:06:04 GMT
Last-Modified: Tue, 09 Feb 2021 18:47:48 GMT
ETag: W/"33b83171c1044dc6bdc7ae7a647443a1"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UUNyi7A6Zow8fhi9AC-kN6O0nKsQ2o3iCOjJbcRsBNRxnlNnB2ldUg==
Age: 78435
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
104.18.11.207200 OK 57 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 104.18.11.207:0
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:18 GMT
Content-Type: font/woff2
Content-Length: 56780
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "97493d3f11c0a3bd5cbd959f5d19b699"
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 08/18/2022 19:50:49
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: 6d42e0c60dd713cd65c3377e27bccf39
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 476989
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76071c540cf21bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9ab0372fbd4e9d389119ccc12be968eb
0e48ffd21d7abf1cf59a471feba8da1f26b934fc
090ac22163a5cc5471bd4220bc6ebe686b115c15378c5eb9066f0767066af57d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6570
Cache-Control: max-age=106408
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:18 GMT
Etag: "6358ab6c-1d7"
Expires: Fri, 28 Oct 2022 05:26:46 GMT
Last-Modified: Wed, 26 Oct 2022 03:37:16 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
172.64.146.139404 Not Found 68 kB URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
IP 172.64.146.139:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380), with CRLF, LF line terminators
Hash bd54d674c5510fd1a471b1f77dcd444e
346e0a88b84a4453f5e73f90b903348e5ea16fb3
9734a4ccccab51b7897124a9e36920296983ec58f5bbe53ac818288da0a1440c
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Cookie: __cf_bm=_abGC1rd6AHFsGIht8b.XKs2VhEAUfdBLMMdQjajESA-1666828397-0-AdFP6RP3EzT0H+kvet+9ILTkhGkg11n48Pp6LYct7SEgWxhQOQIhWmUpJHlUHmn6odBngIpAfC9/jbUukMCmlao=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 23:53:18 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76071c527b15b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html
172.98.65.24200 OK 1.8 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html
IP 172.98.65.24:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (517), with CRLF line terminators
Hash 9f371c2150a8decf9afafd1307790421
abcf3d1c8c901229fb3897f8b4f07e0caf33c380
747c93671bc7eaef5c90e54f2827c965a41d601640afed9666615a543d325553
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/rcj-99d43ead6bdf30da8ed5ffcb4f17100c.html HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:18 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 1795
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/html
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba
172.64.146.139404 Not Found 7.2 kB URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba
IP 172.64.146.139:0
Hash 7b4564ae957eef3a8302343f44c5cfb3
296c38b2ae23a31d80201b32a38c02e75de27c91
15155c8652fe9654c2d2813743ae09ff93a469d790d3424a6b090f876b3d9bb2
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/8.js?q=f027f4184d708639eaba HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 23:53:16 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=A3XUAuTdbjFjo46X_6XqIc5cAwKvPq1iCzBuOoWn_KQ-1666828396-0-AQgxTQzMcfi3NDLQXFqYkuEVpb6xCeV7/Ga9MHiWih8j+AtULl9QRYGBxXvmEzMypggjD1/U2bhtmTeOvd0Gxuw=; path=/; expires=Thu, 27-Oct-22 00:23:16 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76071c479e85b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
staticxx.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
31.13.72.12302 Found 0 B URL HTTP/2 staticxx.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
IP 31.13.72.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42 HTTP/1.1
Host: staticxx.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: Ni5JTcPGOjvxIprBrNhCfN0RB51gkfnxWjQdxxLerHM+ekallcrQz6yLJXxqQ381v7y+mf0qSJ8Fp5XBLT9njQ==
content-length: 0
x-fb-trip-id: 2074150462
date: Wed, 26 Oct 2022 23:53:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/css/tp.png
172.98.65.24200 OK 0 B URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/tp.png
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /update/music/christianmingle/css/tp.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:18 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9ab0372fbd4e9d389119ccc12be968eb
0e48ffd21d7abf1cf59a471feba8da1f26b934fc
090ac22163a5cc5471bd4220bc6ebe686b115c15378c5eb9066f0767066af57d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6570
Cache-Control: max-age=106408
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:18 GMT
Etag: "6358ab6c-1d7"
Expires: Fri, 28 Oct 2022 05:26:46 GMT
Last-Modified: Wed, 26 Oct 2022 03:37:16 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1b9285474d4770c413a534269056e81e
4359b08b2037a8630da4e226ddf231dd94148f89
34677c49d4baa2d9cccdba1b0a017fda45d959535660daa6c4f9069d3e5a9cce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6181
Cache-Control: max-age=167890
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:18 GMT
Etag: "63599d1b-1d7"
Expires: Fri, 28 Oct 2022 22:31:28 GMT
Last-Modified: Wed, 26 Oct 2022 20:48:27 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json
104.16.148.64200 OK 1.2 kB URL HTTP/2 cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (2927), with no line terminators
Hash 8e4c72ec00a99fd7823125c4372c2d79
60101617ed9f7b11074366762007f3d16358a8de
71a566eced85606c6ea616ea8575233de1f8a96bfa8d603f44474fc53a140b49
GET /consent/0232e281-a585-4e05-8d99-2fec39bf53fe/0232e281-a585-4e05-8d99-2fec39bf53fe.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 23:53:18 GMT
content-type: application/x-javascript
content-length: 1216
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: jkxy7ACpn9eCMSXENywteQ==
last-modified: Tue, 30 Mar 2021 08:14:21 GMT
etag: 0x8D8F353D2921816
x-ms-request-id: c59c0bb0-a01e-0110-5b88-c9a855000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Thu, 27 Oct 2022 03:53:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76071c555eb6b50f-OSL
X-Firefox-Spdy: h2
www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
31.13.72.36404 Not Found 72 B URL HTTP/2 www.facebook.com/connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42
IP 31.13.72.36:0
File type HTML document, ASCII text, with no line terminators
Hash 2556c01148fc3cf811a190ae37345224
644567805749ab3ec4df4a00c82b0a4f8566f25d
f65e4cc023578b2bb3522d09231cd56eb84d209b18d501eeebf8a0b098f7635e
GET /connect/xd_arbiter/r/Nh1oH0K63yz.js?version=42 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}, {"max_age":3600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}],"group":"network-errors"}
nel: {"report_to":"network-errors","max_age":3600,"failure_fraction":0.01}
cross-origin-opener-policy: same-origin-allow-popups
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: P0ejeNiDniw86RbuNpI+vaxvMWEo0zkABejgvGmoYSwVtluoK8il9VwgCq7CTVU1ABEVbchnfJoem7oRHv9S7Q==
content-length: 72
date: Wed, 26 Oct 2022 23:53:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/css/0.txt
172.98.65.24200 OK 0 B URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/0.txt
IP 172.98.65.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/0.txt HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D; ATRK_a=29248fd169b9426990a921c7fe9c4e1b.1; ATRK_y=1; ATRK_t=1
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:18 GMT
Server: Apache
X-Powered-By: PHP/7.4.11
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
172.64.146.139404 Not Found 900 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282
IP 172.64.146.139:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380), with CRLF, LF line terminators
Hash 741bc91dd54e97dabc074be989f34722
13b521dacc46ea76180c306f5faf9463057a4f3b
671b089314e80d76ed2dc42a7687269c168bc76e16392154699b625262d32562
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/44.js?q=a7e1f0a02a1247049282 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 23:53:17 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=F5UOw.JxIxtBbyeWJ62OSluMrccP2DgIIRhBn2CvT3o-1666828397-0-AYjal+PqMzGQenZSopgW4h4mwtzqHlTwrR0hFkXKPZUZodk1NiDRrNKs98y9+DtbnjwsbpWpKLiOI2Cscii7SIc=; path=/; expires=Thu, 27-Oct-22 00:23:17 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76071c491f30b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fb65d173aab30259fd83215bb9c728a3
2b504df7a49349a6eb57dd9ca217a338c5b88571
4718cde770e94c67006a247f6a454f8812005ce09e93024af40575882177e685
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3564
Cache-Control: max-age=130035
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:19 GMT
Etag: "63591376-117"
Expires: Fri, 28 Oct 2022 12:00:34 GMT
Last-Modified: Wed, 26 Oct 2022 11:01:10 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
172.64.146.158200 OK 84 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 172.64.146.158:0
File type JSON data\012- , ASCII text, with very long lines (65400)
Hash 8fc62905dc4a34abceb882ef3874cb04
ed4f692e9b3c7e312f7556a0630813eb812902ae
6feeef60fe4026ba443efada6746452d1a958072235ed02f740dd9805c7b2256
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 23:53:19 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76071c568914b517-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg
172.98.65.24200 OK 3.6 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg
IP 172.98.65.24:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3605), with no line terminators
Hash 1fc2f4c7a120346c0dbfdc72c1a925b5
e593fa0daad30c0c4fda97489d1dbc548450a667
1a310e172227e76183c8859859410900f5f78dc859854c59fba1f79a76cf04e5
Analyzer Verdict Alert fortinet Phishing
GET /update/music/christianmingle/css/1fc2f4c7a120346c0dbfdc72c1a925b5.svg HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:19 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 3605
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/1.1 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 84409c129527969831699eb02cd244b9
e1bd7e37698890246e939b31510f3ab3aac605c6
54a130a13a831b71441be9bfbd1b74d8a7433a8e4bb4ab3f5ed9edde6bcd3964
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/x-javascript; charset=utf-8
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
Pragma: public
Cache-Control: public, max-age=1200
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
X-FB-Debug: s58MVtZHQB2EZ1JQLqocm7O4MUfrcOLsqa7TXay85nt+gEbgGqMHUPK126JmuBa4cKaBMZeibwBYxV2ZFaEClA==
X-FB-TRIP-ID: 1904183273
Date: Wed, 26 Oct 2022 23:53:19 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 27076
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
HTTP/1.1 200 OK
Cache-Control: private,max-age=1800
Content-Length: 11367
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 28 Jul 2022 17:32:37 GMT
Accept-Ranges: bytes
ETag: "80a8697a8a2d81:0"
Vary: Accept-Encoding
Set-Cookie: MUID=3CBE2863DEF36D0B033B3A2ADFA46C4D; domain=.bing.com; expires=Mon, 20-Nov-2023 23:53:19 GMT; path=/; SameSite=None; Secure; Priority=High;
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 06C4C16D07D4491CAFE68EA49FF9D968 Ref B: OSL30EDGE0321 Ref C: 2022-10-26T23:53:19Z
Date: Wed, 26 Oct 2022 23:53:18 GMT
cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/f54f29ef-74d5-45b2-8c69-54124e98661e/en.json
104.16.148.64200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/consent/0232e281-a585-4e05-8d99-2fec39bf53fe/f54f29ef-74d5-45b2-8c69-54124e98661e/en.json
IP 104.16.148.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (43389), with no line terminators
Hash d5e20c953f6be67a64952958079ed00d
2ce8ed8df8d5549b8aeb4317915cba4a27dc411e
a44ea327fbe73367a66460ac2620e3f3b88465c665dcc0ee02a837663f53e618
GET /consent/0232e281-a585-4e05-8d99-2fec39bf53fe/f54f29ef-74d5-45b2-8c69-54124e98661e/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 23:53:19 GMT
content-type: application/x-javascript
content-length: 11882
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: 1eIMlT9r5npklSlYB57QDQ==
last-modified: Tue, 30 Mar 2021 08:14:25 GMT
etag: 0x8D8F353D4D2FEF9
x-ms-request-id: 97790e56-801e-0021-6e3f-e5b5d7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: REVALIDATED
expires: Thu, 27 Oct 2022 03:53:19 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76071c57cfcab50f-OSL
X-Firefox-Spdy: h2
script.hotjar.com/modules-fa7b914657f32d32df01f26b19e8f066.js
143.204.55.68403 Forbidden 243 B URL HTTP/2 script.hotjar.com/modules-fa7b914657f32d32df01f26b19e8f066.js
IP 143.204.55.68:0
Hash aae6859053f6c4f542e8f5fdee6fe528
a3de2396c66c9430dfe0606b922d0e62d804d3a1
1d2525bbd6a77472925b006dc11cfb248fa35825d387e41079927a0f2ff333f6
GET /modules-fa7b914657f32d32df01f26b19e8f066.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: application/xml
content-length: 243
date: Wed, 26 Oct 2022 23:53:19 GMT
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eJ0f8p_oJ0R_Zm2h0mwtht-eZ3U3tQpn4fVC19cmPXV129RSjc5hNw==
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=28E39ECEB0EA6E801C998C87B11F6F7F; domain=.bing.com; expires=Mon, 20-Nov-2023 23:53:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C388A7A360874FA291760CBB10DF143A Ref B: OSL30EDGE0209 Ref C: 2022-10-26T23:53:19Z
date: Wed, 26 Oct 2022 23:53:19 GMT
X-Firefox-Spdy: h2
bangextreme.cedges.com/update/music/christianmingle/images/73d62878f28d372f1361d5c93770683d.png
172.98.65.24200 OK 2.4 kB URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/images/73d62878f28d372f1361d5c93770683d.png
IP 172.98.65.24:0
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash 73d62878f28d372f1361d5c93770683d
91febc5c28d7d7f975d1f933727ab30b19e0842e
1e503d1de5566b7048b83491f5a7d3b9133122114009bb6c98fb07fc4ebdabb3
GET /update/music/christianmingle/images/73d62878f28d372f1361d5c93770683d.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D; ATRK_a=29248fd169b9426990a921c7fe9c4e1b.1; ATRK_y=1; ATRK_t=1; __ssid=35c97e87-90a0-43d1-bbc3-d988dd8ef3b7
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:19 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 2386
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/png
bangextreme.cedges.com/update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png
172.98.65.24200 OK 457 B URL HTTP/1.1 bangextreme.cedges.com/update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png
IP 172.98.65.24:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash c2ab4218f7d4cf593f4d6620f780f7f8
8050352dea4a1bc1021cc839fdfde2a80a1bd93b
a31af8633a6dc1857d3a5e9c231c03a49f80306580c3773ac4cddfe441c9bd8d
GET /update/music/christianmingle/images/e4ca02d71aa91b2435ac24e2df787e39.png HTTP/1.1
Host: bangextreme.cedges.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bangextreme.cedges.com/update/music/christianmingle/login.php?sessionid=64d8c982dd8ca7c83cf1a25f93d68467&securessl=true
Cookie: ajs_anonymous_id=%22b84c8f22-711c-492f-b2f4-4b7c35bc7ee4%22; ab.storage.sessionId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%2256c0ec0a-8fd6-bc6b-21f3-0a5cdbcb96bc%22%2C%22e%22%3A1666830196523%2C%22c%22%3A1666828396523%2C%22l%22%3A1666828396523%7D; ab.storage.deviceId.b91460fe-e465-4c32-a0a7-356aaf18afdd=%7B%22g%22%3A%224d143d67-d28f-f202-b163-7c8cdebfcd45%22%2C%22c%22%3A1666828396525%2C%22l%22%3A1666828396525%7D; ATRK_a=29248fd169b9426990a921c7fe9c4e1b.1; ATRK_y=1; ATRK_t=1; __ssid=35c97e87-90a0-43d1-bbc3-d988dd8ef3b7
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 23:53:19 GMT
Server: Apache
Last-Modified: Thu, 08 Jul 2021 16:16:57 GMT
Accept-Ranges: bytes
Content-Length: 457
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/png
bat.bing.com/p/action/5525601.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/5525601.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5525601.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
set-cookie: MUID=0CCA904DF4F16BEE23628204F5046AF4; domain=.bing.com; expires=Mon, 20-Nov-2023 23:53:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FEAB00A8349B4D4BAA3D1FA13CC26AB6 Ref B: OSL30EDGE0209 Ref C: 2022-10-26T23:53:19Z
date: Wed, 26 Oct 2022 23:53:19 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=5525601&Ver=2&mid=524b1f1a-2ed8-4a44-a280-9687eda861fe&sid=5dde7240558911ed94287f4cf63a536f&vid=5dded260558911ed8b0d2183400b38a6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3D64d8c982dd8ca7c83cf1a25f93d68467%26securessl%3Dtrue&r=<=3096&evt=pageLoad&sv=1&rn=794350
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5525601&Ver=2&mid=524b1f1a-2ed8-4a44-a280-9687eda861fe&sid=5dde7240558911ed94287f4cf63a536f&vid=5dded260558911ed8b0d2183400b38a6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3D64d8c982dd8ca7c83cf1a25f93d68467%26securessl%3Dtrue&r=<=3096&evt=pageLoad&sv=1&rn=794350
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5525601&Ver=2&mid=524b1f1a-2ed8-4a44-a280-9687eda861fe&sid=5dde7240558911ed94287f4cf63a536f&vid=5dded260558911ed8b0d2183400b38a6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3D64d8c982dd8ca7c83cf1a25f93d68467%26securessl%3Dtrue&r=<=3096&evt=pageLoad&sv=1&rn=794350 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3010AE567B97664337ADBC1F7A626756; domain=.bing.com; expires=Mon, 20-Nov-2023 23:53:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F5BB6B0B778B41DC8CE8E2127C17ECA2 Ref B: OSL30EDGE0209 Ref C: 2022-10-26T23:53:19Z
date: Wed, 26 Oct 2022 23:53:19 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=27017382&Ver=2&mid=4c51a06c-c781-4395-87dc-58efa57d3ef6&sid=5dde7240558911ed94287f4cf63a536f&vid=5dded260558911ed8b0d2183400b38a6&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3D64d8c982dd8ca7c83cf1a25f93d68467%26securessl%3Dtrue&r=<=3096&evt=pageLoad&sv=1&rn=120554
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=27017382&Ver=2&mid=4c51a06c-c781-4395-87dc-58efa57d3ef6&sid=5dde7240558911ed94287f4cf63a536f&vid=5dded260558911ed8b0d2183400b38a6&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3D64d8c982dd8ca7c83cf1a25f93d68467%26securessl%3Dtrue&r=<=3096&evt=pageLoad&sv=1&rn=120554
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=27017382&Ver=2&mid=4c51a06c-c781-4395-87dc-58efa57d3ef6&sid=5dde7240558911ed94287f4cf63a536f&vid=5dded260558911ed8b0d2183400b38a6&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Christian%20Mingle%20-%20Login&kw=Christian%20web%20site,%20ChristianMingle.com,%20Relationships,%20Online%20Personals,%20Christian%20dating,%20Christian%20singles,%20Christian%20personals,%20Christian%20chat,%20Christian%20matchmaking,%20Christian%20services,%20Christian,%20Christian%20singles%20site,%20free%20Christian%20dating,%20Christian%20dating%20service,%20Christian%20singles%20dating,%20Christian%20dating%20websites,%20online%20dating&p=http%3A%2F%2Fbangextreme.cedges.com%2Fupdate%2Fmusic%2Fchristianmingle%2Flogin.php%3Fsessionid%3D64d8c982dd8ca7c83cf1a25f93d68467%26securessl%3Dtrue&r=<=3096&evt=pageLoad&sv=1&rn=120554 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3B1E6E9D47BE63722F517CD4464B6281; domain=.bing.com; expires=Mon, 20-Nov-2023 23:53:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 946EB7F0D8CC45A58A457DE976C68DF2 Ref B: OSL30EDGE0209 Ref C: 2022-10-26T23:53:19Z
date: Wed, 26 Oct 2022 23:53:19 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/27017382.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/27017382.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/27017382.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=3A5FC232704A663E38CAD07B71BF67EA; domain=.bing.com; expires=Mon, 20-Nov-2023 23:53:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A8B23B0E14BB439F94ADC6299DEBB544 Ref B: OSL30EDGE0209 Ref C: 2022-10-26T23:53:19Z
date: Wed, 26 Oct 2022 23:53:19 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.14.0/assets/v2/otPcPanel.json
104.16.148.64200 OK 14 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.14.0/assets/v2/otPcPanel.json
IP 104.16.148.64:0
File type ASCII text, with very long lines (37569)
Hash adfef80bd8260e9c73d5bcf0cfbdfb5d
9909859c4c3371fc238b00d17c91de0d9c9a3d6f
fe9a3ac00a7b57df831c4d2a2cd572967c9480f1533ee106a56e4ee36ae7d325
GET /scripttemplates/6.14.0/assets/v2/otPcPanel.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 23:53:19 GMT
content-type: application/json
content-length: 11445
content-encoding: gzip
content-md5: lI3wpyDsdDlC36Bf+dmiCA==
last-modified: Wed, 24 Feb 2021 17:18:07 GMT
etag: 0x8D8D8E8271D14E5
x-ms-request-id: 404360e9-601e-0160-130d-e4db91000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76071c5968d1b50f-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json
104.16.148.64200 OK 2.7 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (7345)
Hash 064b4b17fd057f4289dff082cb288634
b84ad2cb8df7bad25d9dbdd8bb74f1fccffdcef6
2f0b307c5c84699437ea90cd220c493fa97e38b9eaead519c261117c82b8fd01
GET /scripttemplates/6.14.0/assets/otFloatingRoundedCorner.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bangextreme.cedges.com/
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 23:53:19 GMT
content-type: application/json
content-length: 2655
content-encoding: gzip
content-md5: BktLF/0Ff0KJ3/CCyyiGNA==
last-modified: Wed, 24 Feb 2021 17:18:06 GMT
etag: 0x8D8D8E82687488A
x-ms-request-id: 90dbbe6f-101e-0085-24b1-e18f33000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76071c5968cdb50f-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
csi.gstatic.com/csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3
142.251.43.3204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3
IP 142.251.43.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csi?v=2&s=mapsapi3&v3v=32.2&action=apiboot2&libraries=places&e=10_1_0,10_2_0&rt=main.3 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
date: Wed, 26 Oct 2022 23:53:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3066dee02aa02b0faab194974497b4d8
8526d2f82a4b3d023149d186442e82daaef47d2a
c4136dbae84532e2b0d3294de6495ccfbc411676865d8a0f3075acac54115c91
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2973
Cache-Control: max-age=154600
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:20 GMT
Etag: "635975bb-1d7"
Expires: Fri, 28 Oct 2022 18:50:00 GMT
Last-Modified: Wed, 26 Oct 2022 18:00:27 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
cdn.siftscience.com/s.js
34.96.67.224200 OK 20 kB IP 34.96.67.224:0
File type ASCII text, with very long lines (881)
Hash 07cb8203158abb26b3c18318350e7b36
e6358e099b70081c2cbc9ded90be18da28386e90
cecc3d075f40d84bbb5f93d506117d31ae9f9dbaacda83a7078e2c7bc61283fb
GET /s.js HTTP/1.1
Host: cdn.siftscience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtkiwEKXILKQ-EptKZWEJOcJol76fU4DpBW-4W7dntbmYJ5R-vdNVp9LCtvpSAmEBod586oJ8GljmJqdG1_weY7gQ
x-goog-generation: 1586469553682331
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 20452
content-encoding: gzip
x-goog-hash: crc32c=fIrBTA==, md5=B8uCAxWKuyazwYMYNQ57Ng==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 20452
server: UploadServer
date: Wed, 26 Oct 2022 21:31:21 GMT
expires: Thu, 27 Oct 2022 21:31:21 GMT
cache-control: public, max-age=86400
age: 8519
last-modified: Thu, 09 Apr 2020 21:59:13 GMT
etag: "07cb8203158abb26b3c18318350e7b36"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3066dee02aa02b0faab194974497b4d8
8526d2f82a4b3d023149d186442e82daaef47d2a
c4136dbae84532e2b0d3294de6495ccfbc411676865d8a0f3075acac54115c91
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2973
Cache-Control: max-age=154600
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:20 GMT
Etag: "635975bb-1d7"
Expires: Fri, 28 Oct 2022 18:50:00 GMT
Last-Modified: Wed, 26 Oct 2022 18:00:27 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 23:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.appboycdn.com/web-sdk/1.6/appboy.min.css
104.17.218.31200 OK 4.8 kB URL HTTP/2 js.appboycdn.com/web-sdk/1.6/appboy.min.css
IP 104.17.218.31:0
File type ASCII text, with very long lines (43517), with no line terminators
Hash e25bf5f38ff40c3bdde9e89840e79292
aab93998af3e38e1fd66d82d6f6976281fc453d1
bfbf37234d4809862066181382d33a1ad22daaec82f13d96e311a94687e94a82
GET /web-sdk/1.6/appboy.min.css HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 23:53:16 GMT
content-type: text/css; charset=utf-8
x-amz-id-2: huDB3PumhyF6WrF6APQUv+8CD8wIbVcPv5aL7uohp3adWf2h9c1YeKxEl7ZrrKdJivchdPfudxs=
x-amz-request-id: KAMFRPEM2QQ08FFS
last-modified: Fri, 06 Oct 2017 18:19:54 GMT
etag: W/"3f4d7e756ec9b4609665da772b9cef98"
cf-cache-status: HIT
age: 3049
expires: Thu, 27 Oct 2022 03:53:16 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 76071c449edc0af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
privacyportal-de.onetrust.com/request/v1/consentreceipts
172.64.146.158201 Created 0 B URL HTTP/2 privacyportal-de.onetrust.com/request/v1/consentreceipts
IP 172.64.146.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish Generic/Spear Phishing
POST /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-de.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 5840
Origin: http://bangextreme.cedges.com
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Wed, 26 Oct 2022 23:53:25 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76071c7b9c3eb511-OSL
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-692969.js?sv=6
143.204.55.37200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-692969.js?sv=6
IP 143.204.55.37:0
GET /c/hotjar-692969.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 23:52:38 GMT
cache-control: max-age=60
etag: W/2f74b4f540662dca226c5d4f39abd014
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HBiYd_w84cLaJCRzRp7sD78fEn8AohH5M-_OnYZDnh-0Y-wyE4ezrA==
age: 41
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89
172.64.146.139404 Not Found 0 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89
IP 172.64.146.139:0
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/0.js?q=10f3b5bd746e6b0a3e89 HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 23:53:17 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=oMs5X.GRGcLyXMw1M4JEQC1CVkq9sX.gxQ0aVSsYQLs-1666828397-0-AW/Ix/1hXBWG9C7r6IZ17ukjnYCpPzinCczzFABzEhBx0yx4+kD3q7Sj7ekYyNY6ZKliEYrd8VAi8ayFQJ/OPFc=; path=/; expires=Thu, 27-Oct-22 00:23:17 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76071c479e88b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d
172.64.146.139404 Not Found 0 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d
IP 172.64.146.139:0
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/1.js?q=f74697b8b880f9be665d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 23:53:17 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=_abGC1rd6AHFsGIht8b.XKs2VhEAUfdBLMMdQjajESA-1666828397-0-AdFP6RP3EzT0H+kvet+9ILTkhGkg11n48Pp6LYct7SEgWxhQOQIhWmUpJHlUHmn6odBngIpAfC9/jbUukMCmlao=; path=/; expires=Thu, 27-Oct-22 00:23:17 GMT; domain=.christianmingle.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76071c478e82b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d
172.64.146.139404 Not Found 0 B URL HTTP/2 www.christianmingle.com/245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d
IP 172.64.146.139:0
GET /245-7831fe4b41cb7ab6af128acfa64557d17688994f/js/7.js?q=f6e07bb13767015e8f0d HTTP/1.1
Host: www.christianmingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Cookie: __cf_bm=A3XUAuTdbjFjo46X_6XqIc5cAwKvPq1iCzBuOoWn_KQ-1666828396-0-AQgxTQzMcfi3NDLQXFqYkuEVpb6xCeV7/Ga9MHiWih8j+AtULl9QRYGBxXvmEzMypggjD1/U2bhtmTeOvd0Gxuw=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 26 Oct 2022 23:53:17 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76071c494f3db506-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-692969.js?sv=5
143.204.55.37200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-692969.js?sv=5
IP 143.204.55.37:0
GET /c/hotjar-692969.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 23:52:38 GMT
cache-control: max-age=60
etag: W/2f74b4f540662dca226c5d4f39abd014
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4TaogJVZMF-9nms7c1YvnGUYUyXwslCAVn9u8Ku_2LQml_By1gs33A==
age: 41
X-Firefox-Spdy: h2
cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js
143.204.48.96200 OK 0 B URL HTTP/2 cdn.segment.com/analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js
IP 143.204.48.96:0
GET /analytics.js/v1/yV4n34bkWQEPkTbR2EiMU3UtqH1FxfK8/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bangextreme.cedges.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 18:04:02 GMT
x-amz-version-id: YnCyzjpCjV986.xpNLpvtAI2y.y0XmP_
server: AmazonS3
content-encoding: gzip
date: Wed, 26 Oct 2022 23:53:15 GMT
cache-control: public, max-age=120
etag: W/"08521cc76b5cdf06eab95b9fc031b95b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 82CmOj1X95NItvg-oFqkrSJhPqxlca--ybyY_lFXazZhX2UD20H74Q==
age: 43
X-Firefox-Spdy: h2