Report - tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source

Report Overview

Submitted URL
tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
IP
52.51.27.131
ASN
#16509 AMAZON-02
Submitted
2023-05-28 07:01:10
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn-adef.akamaized.net	125719	2014-03-18	2018-02-06	2023-05-27	5.3 kB	35 kB	23.36.76.96
route.frest.pro	unknown	2022-10-19	2023-01-02	2023-05-24	540 B	746 B	172.67.211.109
translate.googleapis.com	1005	2005-01-25	2012-05-31	2023-05-28	1.8 kB	79 kB	142.250.74.106
translate.google.com	1156	1997-09-15	2012-05-30	2023-05-27	470 B	80 kB	142.250.74.110
cdnjs.claudflare.io	unknown	2021-08-09	2021-08-12	2023-05-25	464 B	92 kB	206.189.196.86
tre.yourlocaldatabasesecurity.site	unknown	2023-02-24	2023-03-09	2023-05-06	719 B	7.8 kB	52.51.27.131
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-27	3.2 kB	89 kB	216.58.207.227
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-05-28	1.1 kB	7.6 kB	216.58.211.3
translate-pa.googleapis.com	1620	2005-01-25	2021-11-04	2023-05-28	550 B	2.3 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-05-28	medium	claudflare.io

ThreatFox

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	cdn-adef.akamaized.net/landings/278087/1674032690/js/second_back_multi.js?1674032690	2.2 kB	2023-03-07	2024-02-28
Pretty URL cdn-adef.akamaized.net/landings/278087/1674032690/js/second_back_multi.js?1674032690 IP 23.36.76.96 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-02-28 14:02:55 Times Seen141 Hash 4034050f2be05cd41b77c4bb153f89eb 395187f1b6ad0a67fcdede70756a1c455903d84d 717b9e3b39eb201ec4cf8ade5f0ce9f2f2537b02b0b7f822ae159a8d1496df60 Loading...

	cdn-adef.akamaized.net/landings/278087/1674032690/js/platform.js?1674032690	876 B	2023-03-13	2024-04-06
Pretty URL cdn-adef.akamaized.net/landings/278087/1674032690/js/platform.js?1674032690 IP 23.36.76.96 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:26:16 Last Seen2024-04-06 19:00:00 Times Seen53 Hash 400464695cd761395e0a930215d0233c 1a25e6a73eda12ae3e25bd0d78d4f6168bed6eda 5969bc4de66f2cbb70b40cb6ef0c9a62e3d8a5ef6f485e9331974bbfdbd31513 Loading...

	cdn-adef.akamaized.net/landings/278087/1674032690/js/translete.js?1674032690	1.4 kB	2023-03-07	2024-04-06
Pretty URL cdn-adef.akamaized.net/landings/278087/1674032690/js/translete.js?1674032690 IP 23.36.76.96 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-06 19:00:00 Times Seen122 Hash ec54980cfed635492cef5628111560d2 a5dbc3628701447711d16decd4409070c9967714 b402b988b04cea3b1ba157a14aa973998a6f5cad4d079dfc81622d77c3ba7558 Loading...

	cdn-adef.akamaized.net/landings/278087/1674032690/js/js.cockie.min.js?1674032690	2.3 kB	2023-03-07	2024-03-03
Pretty URL cdn-adef.akamaized.net/landings/278087/1674032690/js/js.cockie.min.js?1674032690 IP 23.36.76.96 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-03-03 21:18:43 Times Seen100 Hash ee34078cc4ca5f836c668cdabfea8637 5e344a985d5544b25695323eecf113e5f147767a 2977fda7a224fff42e1ff6b1d7a93448597c69555326e14a147abc6cab313ed7 Loading...

	cdn-adef.akamaized.net/landings/278087/1674032690/js/site-protect2.0.js?1674032690	3.1 kB	2023-03-07	2024-03-03
Pretty URL cdn-adef.akamaized.net/landings/278087/1674032690/js/site-protect2.0.js?1674032690 IP 23.36.76.96 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-03-03 21:18:43 Times Seen271 Hash fc96ab06b0f9fcea6731405215ae5daf 8af9f27d895eb69754919a2fc0d74760fecd3860 9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e Loading...

	tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}	654 B	2023-04-10	2023-05-28
Pretty URL tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1} IP 52.51.27.131 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-10 21:01:44 Last Seen2023-05-28 09:01:11 Times Seen3 Hash 2d6ace9dfb3db3fdb90f744b615af709 b549d7267f1583d327a4c6eacab281d12fdd016c baed5fc84551b755dd23b3f21259fcc8679bd5bb59500afebe18e99d346b3b50 Loading...

	tre.yourlocaldatabasesecurity.site/_/translate_http/_/js/k=translate_http.tr.no.klVF4ux5xF8.O/d=1/rs=AN8SPfptfDPTfF2jq4TQUYpl_lGvaR-NBg/m=el_conf	80 kB	2023-05-28	2023-05-28
Pretty URL tre.yourlocaldatabasesecurity.site/_/translate_http/_/js/k=translate_http.tr.no.klVF4ux5xF8.O/d=1/rs=AN8SPfptfDPTfF2jq4TQUYpl_lGvaR-NBg/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-28 09:01:11 Last Seen2023-05-28 09:35:43 Times Seen5 Hash b2dd9fdcb62182029584552daa47d495 a1ddc6904cead8a0151b2c96e86a21dcfc65a120 e64e401bc51e05c59050dca340071e3fb30fdc06db19e8546f367a812fb8010d Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.klVF4ux5xF8.O/d=1/exm=el_conf/ed=1/rs=AN8SPfptfDPTfF2jq4TQUYpl_lGvaR-NBg/m=el_main	218 kB	2023-05-26	2023-06-05
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.klVF4ux5xF8.O/d=1/exm=el_conf/ed=1/rs=AN8SPfptfDPTfF2jq4TQUYpl_lGvaR-NBg/m=el_main IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 03:31:46 Last Seen2023-06-05 23:38:25 Times Seen1128 Hash e573f520bd8dcdfb40e91a9e0e66e527 7182f9fdf1d72c2f42cbbfda617cb81e34a44044 366f944dab73002110a6add4e66a3eb915695bc4f1244da14080a4bc248880c6 Loading...

	cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1674032690	92 kB	2023-03-26	2023-06-03
Pretty URL cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1674032690 IP 206.189.196.86 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:41:34 Last Seen2023-06-03 07:01:28 Times Seen32 Hash cb8a630db66f9d818f49bcc6d1d7a14a ba41650261b082a6f26abaa9408276e0e1db9710 506d4d6ae6e7bd3872900d297a5c5c45073a62bb31debab49c169f735488de6c Loading...

HTTP Transactions (27)

URL IP Response Size

cdn-adef.akamaized.net/landings/278087/1674032690/js/js.cockie.min.js?1674032690

23.36.76.96

200 OK

921 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/278087/1674032690/js/js.cockie.min.js?1674032690
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text
Size
921 B (921 bytes)
Hash
ee34078cc4ca5f836c668cdabfea8637
5e344a985d5544b25695323eecf113e5f147767a
2977fda7a224fff42e1ff6b1d7a93448597c69555326e14a147abc6cab313ed7

HTTP Headers

GET /landings/278087/1674032690/js/js.cockie.min.js?1674032690 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: e62sw1CKR1Tj6n5WJgMnqitWNlZ/28hHDAsYsQ1Uz4jkNOTvitZJFSDcXkVM4cg2mv1Biw/ITr4=
x-amz-request-id: G2HDGVP9WRA2H6SV
Last-Modified: Wed, 18 Jan 2023 09:04:52 GMT
ETag: "ee34078cc4ca5f836c668cdabfea8637"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 28 May 2023 07:00:53 GMT
Content-Length: 921
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/278087/1674032690/js/platform.js?1674032690

23.36.76.96

200 OK

385 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/278087/1674032690/js/platform.js?1674032690
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text
Size
385 B (385 bytes)
Hash
400464695cd761395e0a930215d0233c
1a25e6a73eda12ae3e25bd0d78d4f6168bed6eda
5969bc4de66f2cbb70b40cb6ef0c9a62e3d8a5ef6f485e9331974bbfdbd31513

HTTP Headers

GET /landings/278087/1674032690/js/platform.js?1674032690 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: m3Z1TdCobLfFnTWWGtblZYf0LhaaV0BgO19fbcOVj74de1EP0Yb20EfvxHbpXhwxTH6eiwRRd9M=
x-amz-request-id: G2H0SGB0PARZS47Q
Last-Modified: Wed, 18 Jan 2023 09:04:52 GMT
ETag: "400464695cd761395e0a930215d0233c"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 28 May 2023 07:00:53 GMT
Content-Length: 385
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/278087/1674032690/js/site-protect2.0.js?1674032690

23.36.76.96

200 OK

1.1 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/278087/1674032690/js/site-protect2.0.js?1674032690
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text
Size
1.1 kB (1068 bytes)
Hash
fc96ab06b0f9fcea6731405215ae5daf
8af9f27d895eb69754919a2fc0d74760fecd3860
9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e

HTTP Headers

GET /landings/278087/1674032690/js/site-protect2.0.js?1674032690 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: MD3XxG0mB4jiUibe2y7ToRtXT95lPZsx/of3MfAEZLULBFdugk3hNjLxWl9gjz2YzJ+8wtAzLzg=
x-amz-request-id: G2HC46T5TYTW4YEQ
Last-Modified: Wed, 18 Jan 2023 09:04:52 GMT
ETag: "fc96ab06b0f9fcea6731405215ae5daf"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 28 May 2023 07:00:53 GMT
Content-Length: 1068
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/278087/1674032690/js/translete.js?1674032690

23.36.76.96

200 OK

559 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/278087/1674032690/js/translete.js?1674032690
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text
Size
559 B (559 bytes)
Hash
ec54980cfed635492cef5628111560d2
a5dbc3628701447711d16decd4409070c9967714
b402b988b04cea3b1ba157a14aa973998a6f5cad4d079dfc81622d77c3ba7558

HTTP Headers

GET /landings/278087/1674032690/js/translete.js?1674032690 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: wPp7RIlTRyV7LkIfWNXxFmUZ/KAkkOjMINORU3WEDusASlAAWnENeOtidX1Qlv30sNwR71FOI4A=
x-amz-request-id: 1F6VZK9DNFBKRZBT
Last-Modified: Wed, 18 Jan 2023 09:04:52 GMT
ETag: "ec54980cfed635492cef5628111560d2"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 28 May 2023 07:00:53 GMT
Content-Length: 559
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/278087/1674032690/js/second_back_multi.js?1674032690

23.36.76.96

200 OK

779 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/278087/1674032690/js/second_back_multi.js?1674032690
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
HTML document, ASCII text
Size
779 B (779 bytes)
Hash
4034050f2be05cd41b77c4bb153f89eb
395187f1b6ad0a67fcdede70756a1c455903d84d
717b9e3b39eb201ec4cf8ade5f0ce9f2f2537b02b0b7f822ae159a8d1496df60

HTTP Headers

GET /landings/278087/1674032690/js/second_back_multi.js?1674032690 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: caJ6rX+qa2/bsCFYnEnj1LHyBSrnYuRvO5yY3McgiJrtfq5yKVQd+fFq2NcKcHl96MNRJb5xKl8=
x-amz-request-id: 1F6W1N24YV3JCE75
Last-Modified: Wed, 18 Jan 2023 09:04:52 GMT
ETag: "4034050f2be05cd41b77c4bb153f89eb"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 28 May 2023 07:00:53 GMT
Content-Length: 779
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/278087/1674032690/css/style.css?1674032690

23.36.76.96

200 OK

2.4 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/278087/1674032690/css/style.css?1674032690
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2363 bytes)
Hash
32fe1fa6beb641b837c8a8efe5675697
0941549bfe2fc3e9aaf5fa3fa8ec2b072aaef78e
47b30392fce72a9e103869dc0e6d9d39bdc6a4cde5ef7d2c8be59111e7e7ccd1

HTTP Headers

GET /landings/278087/1674032690/css/style.css?1674032690 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: z4HChPGbPaSLjI2oLIGt/dvPrh/fJ/1Xq4yih6sR12d37sZ2g7FdY8kBHrOxkPTcvc7fCiRjvgI=
x-amz-request-id: 2R5W29AD0MPHKZ9R
Last-Modified: Wed, 18 Jan 2023 09:04:52 GMT
ETag: "32fe1fa6beb641b837c8a8efe5675697"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 28 May 2023 07:00:53 GMT
Content-Length: 2363
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/278087/1674032690/css/translate.css?1674032690

23.36.76.96

200 OK

3.9 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/278087/1674032690/css/translate.css?1674032690
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text, with very long lines (507)
Size
3.9 kB (3859 bytes)
Hash
ddd8385212ed9ba4b8e4d7081b329f49
c0144102e76f622f4548727ffe499fc76af7fcd4
03f7f9bedf884d3178ffba77fc8bdd57a90e79822ba6f66237b45e9f58177c1e

HTTP Headers

GET /landings/278087/1674032690/css/translate.css?1674032690 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: YzetG+6Dw1q/vm9VIl4XQv9tdmAbGII39Fj8o9xSpkS9q2Kd7o6ppD3FWOLWihnYVq3NPU8FkkM=
x-amz-request-id: 2R5Y4X84EQ5MWJD4
Last-Modified: Wed, 18 Jan 2023 09:04:52 GMT
ETag: "ddd8385212ed9ba4b8e4d7081b329f49"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 28 May 2023 07:00:53 GMT
Content-Length: 3859
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1674032690

206.189.196.86

200 OK

92 kB

URL GET HTTP/1.1
cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1674032690
IP
206.189.196.86:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerLet's Encrypt
Subjectcdnjs.claudflare.io
FingerprintBF:D4:AB:9A:D0:EB:75:E1:A0:33:BA:D0:58:58:99:64:E0:75:B9:0C
ValidityThu, 06 Apr 2023 22:54:27 GMT - Wed, 05 Jul 2023 22:54:26 GMT

File type
ASCII text, with very long lines (65447)
Size
92 kB (92013 bytes)
Hash
cb8a630db66f9d818f49bcc6d1d7a14a
ba41650261b082a6f26abaa9408276e0e1db9710
506d4d6ae6e7bd3872900d297a5c5c45073a62bb31debab49c169f735488de6c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ajax/libs/jquery/3.6.0/b/jquery.min.js?1674032690 HTTP/1.1
Host: cdnjs.claudflare.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.22.0 (Ubuntu)
Date: Sun, 28 May 2023 07:00:53 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 92013
Connection: keep-alive
Cache-Control: public, max-age=43200
Expires: Sun, 28 May 2023 19:00:53 GMT

tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}

52.51.27.131

200 OK

7.3 kB

URL User Request GET HTTP/2
tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
IP
52.51.27.131:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjecttre.yourlocaldatabasesecurity.site
FingerprintB2:FF:14:E3:6C:E1:E5:FB:DD:1D:FA:97:E6:9F:9D:9F:80:23:79:3A
ValidityThu, 09 Mar 2023 11:38:04 GMT - Wed, 07 Jun 2023 11:38:03 GMT

File type
gzip compressed data, from Unix\012- data
Size
7.3 kB (7251 bytes)
Hash
ec075402a3491e7122f08693fca56d4c
a6d1204db3d20876854bcbf841ad5b57ededc0ed
239359e57afbfa22966a66d13f46addde4675b3dd3b5407bd679288a02321604

HTTP Headers

GET /c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1} HTTP/1.1
Host: tre.yourlocaldatabasesecurity.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 28 May 2023 07:00:52 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=6472fc2400040a85; Path=/; Expires=Thu, 27 Jul 2023 07:00:52 GMT; Secure; SameSite=None
unique_id2=6472fc2400041333; Path=/; Expires=Sat, 26 Aug 2023 07:00:52 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Sun, 28 May 2023 07:00:52 GMT; Secure; SameSite=None
6472fc2400041333_sl=[278087]; Path=/; Expires=Sun, 11 Jun 2023 07:00:52 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/landings/278087/1674032690/images/logo.png

23.36.76.96

200 OK

3.6 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/278087/1674032690/images/logo.png
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
PNG image data, 100 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
3.6 kB (3619 bytes)
Hash
fac400941652b9e4da713b818ca13822
67546046d8f76504855e095ba9dcc5e4bcaddd0e
0da8e901848697aca8328a2a3c26a024b7163bd0eeafddf72f4ac119553fba87

HTTP Headers

GET /landings/278087/1674032690/images/logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 77eyQ/Mnu/HEExugoAqyn/XlQOFoWulVleRrZ4yfcYmNTTnSAGC7zDUiXm75dPuxEm/1uL3QyOI=
x-amz-request-id: 1F6NVTBXA3AV2YAR
Last-Modified: Wed, 18 Jan 2023 09:04:52 GMT
ETag: "fac400941652b9e4da713b818ca13822"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3619
Date: Sun, 28 May 2023 07:00:53 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tre.yourlocaldatabasesecurity.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 07:44:41 GMT
expires: Sun, 26 May 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 83772
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tre.yourlocaldatabasesecurity.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 08:09:04 GMT
expires: Sun, 26 May 2024 08:09:04 GMT
cache-control: public, max-age=31536000
age: 82309
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tre.yourlocaldatabasesecurity.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:39:40 GMT
expires: Wed, 22 May 2024 21:39:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 379273
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tre.yourlocaldatabasesecurity.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 03:11:48 GMT
expires: Sun, 26 May 2024 03:11:48 GMT
cache-control: public, max-age=31536000
age: 100145
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17336, version 1.0\012- data
Size
17 kB (17336 bytes)
Hash
eec8dbfc49267c4d33cf31b49661bf37
0f49d4563cf9e22e3af6907d0785b9a6facadbf0
661d4b208656c006e7aab58acf7784857963123675de2302279fbe6c05313547

HTTP Headers

GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tre.yourlocaldatabasesecurity.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 10:00:19 GMT
expires: Sun, 26 May 2024 10:00:19 GMT
cache-control: public, max-age=31536000
age: 75635
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/landings/278087/1674032690/images/favicon.png?t=20230528070052

23.36.76.96

200 OK

5.4 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/278087/1674032690/images/favicon.png?t=20230528070052
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Size
5.4 kB (5391 bytes)
Hash
af5ea8de2e2fa7543cdacc04ad53d4ca
09b884ce4522058ca7fcad459c40d5f30ac3b111
f2a23eb9ee6b06f7b3daaa71257a75fb51832c3956c091741026536b14e4414b

HTTP Headers

GET /landings/278087/1674032690/images/favicon.png?t=20230528070052 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: AyoveL6nxq8TH6j/IaIOrSJSoNKi55Q0ioBP/SUl6NZXssgmoV0nv8amXBGVYpGK5JgCiQkrr9g=
x-amz-request-id: 7ZPV48884WZTC491
Last-Modified: Wed, 18 Jan 2023 09:04:52 GMT
ETag: "af5ea8de2e2fa7543cdacc04ad53d4ca"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5391
Date: Sun, 28 May 2023 07:00:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/278087/1674032690/images/favicon.png?t=20230528070052

23.36.76.96

200 OK

5.4 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/278087/1674032690/images/favicon.png?t=20230528070052
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Size
5.4 kB (5391 bytes)
Hash
af5ea8de2e2fa7543cdacc04ad53d4ca
09b884ce4522058ca7fcad459c40d5f30ac3b111
f2a23eb9ee6b06f7b3daaa71257a75fb51832c3956c091741026536b14e4414b

HTTP Headers

GET /landings/278087/1674032690/images/favicon.png?t=20230528070052 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: AyoveL6nxq8TH6j/IaIOrSJSoNKi55Q0ioBP/SUl6NZXssgmoV0nv8amXBGVYpGK5JgCiQkrr9g=
x-amz-request-id: 7ZPV48884WZTC491
Last-Modified: Wed, 18 Jan 2023 09:04:52 GMT
ETag: "af5ea8de2e2fa7543cdacc04ad53d4ca"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5391
Date: Sun, 28 May 2023 07:00:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

route.frest.pro/is_redirect

172.67.211.109

200 OK

17 B

URL POST HTTP/2
route.frest.pro/is_redirect
IP
172.67.211.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subjectfrest.pro
FingerprintBF:79:17:15:EB:F6:8D:E0:44:93:02:1B:18:9B:0E:C8:06:68:24:E1
ValidityFri, 14 Apr 2023 08:42:39 GMT - Thu, 13 Jul 2023 08:42:38 GMT

File type
JSON data\012- , ASCII text
Size
17 B (17 bytes)
Hash
6dec798efb56f56f33660938f6249ff6
e889219883cef38754dc1e5df7ca5277b3b314c8
b493cdb3b30ea63f6a924f814dfccfcfe305dac02106f9994ce2bcb2e8ed28c4

HTTP Headers

POST /is_redirect HTTP/1.1
Host: route.frest.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 10
Origin: https://tre.yourlocaldatabasesecurity.site
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 28 May 2023 07:00:54 GMT
content-type: application/json
content-length: 17
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zurb9%2FJbZ2XGIJxNEQOHIkZWUXtp571WRPFWovr%2Bz72pUYV1JTO%2B8AgO8uGKnWb6NVBamDVRCAPrI2nbRqof0lPqJlTTskWouS2W97w7H03ciAcago2XuyHmkln17aUZ0PA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce49f8d7c421c0e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css

216.58.211.3

200 OK

4.2 kB

URL GET HTTP/2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
ASCII text, with very long lines (23228), with no line terminators
Size
4.2 kB (4205 bytes)
Hash
edf649e1b11a33833272345187bd4eec
73427e2ab282e5f89021e1c7d20f83eaf9830283
553d768412bca504a0c8771705f681dad359370bdcea637298ca5aa486017a06

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 19:11:35 GMT
expires: Thu, 23 May 2024 19:11:35 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 12 Mar 2023 00:11:57 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 301759
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.klVF4ux5xF8.O/d=1/exm=el_conf/ed=1/rs=AN8SPfptfDPTfF2jq4TQUYpl_lGvaR-NBg/m=el_main

142.250.74.106

200 OK

76 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.klVF4ux5xF8.O/d=1/exm=el_conf/ed=1/rs=AN8SPfptfDPTfF2jq4TQUYpl_lGvaR-NBg/m=el_main
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text, with very long lines (1573)
Size
76 kB (76232 bytes)
Hash
e573f520bd8dcdfb40e91a9e0e66e527
7182f9fdf1d72c2f42cbbfda617cb81e34a44044
366f944dab73002110a6add4e66a3eb915695bc4f1244da14080a4bc248880c6

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.klVF4ux5xF8.O/d=1/exm=el_conf/ed=1/rs=AN8SPfptfDPTfF2jq4TQUYpl_lGvaR-NBg/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 76232
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 19:15:56 GMT
expires: Fri, 24 May 2024 19:15:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 May 2023 21:10:42 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 215098
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg

216.58.207.227

200 OK

3.3 kB

URL GET HTTP/3
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Size
3.3 kB (3340 bytes)
Hash
2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09

HTTP Headers

GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 08:05:11 GMT
expires: Sun, 26 May 2024 08:05:11 GMT
cache-control: public, max-age=31536000
age: 82543
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/branding/product/2x/translate_24dp.png

216.58.211.3

200 OK

1.8 kB

URL GET HTTP/3
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 15:58:39 GMT
expires: Wed, 22 May 2024 15:58:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 399735
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

142.250.74.106

1.4 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text
Size
1.4 kB (1392 bytes)
Hash
a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067

HTTP Headers

GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 28 May 2023 07:00:54 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=X-gl6zNC-ZJZVqgIwfNxMyeSiJoLNalQiHCrafZzkMVsZooqumFKSwZk5VPQCBPulVd_CHCG4ZU7-Rw0_8HynOLaEg1dMLTIimAnFtAS5mT1AyTNXVPucIFFvwXU15fSMg_83CJF4x4B9TEbS5KUsO9M73abKJPnoeIzhu7nmck; expires=Mon, 27-Nov-2023 07:00:54 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+073; expires=Tue, 27-May-2025 07:00:54 GMT; path=/; domain=.googleapis.com; Secure
expires: Sun, 28 May 2023 07:00:54 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.106

200 OK

0 B

URL OPTIONS HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Referer: https://tre.yourlocaldatabasesecurity.site/
Origin: https://tre.yourlocaldatabasesecurity.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://tre.yourlocaldatabasesecurity.site
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Sun, 28 May 2023 07:01:04 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+068; expires=Tue, 27-May-2025 07:01:04 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 28 May 2023 07:01:04 GMT
cache-control: private

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.106

200 OK

131 B

URL OPTIONS HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 223
Origin: https://tre.yourlocaldatabasesecurity.site
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://tre.yourlocaldatabasesecurity.site
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sun, 28 May 2023 07:01:04 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+402; expires=Tue, 27-May-2025 07:01:04 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 28 May 2023 07:01:04 GMT

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

142.250.74.110

200 OK

80 kB

URL GET HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT

File type
ASCII text, with very long lines (2450)
Size
80 kB (79719 bytes)
Hash
b2dd9fdcb62182029584552daa47d495
a1ddc6904cead8a0151b2c96e86a21dcfc65a120
e64e401bc51e05c59050dca340071e3fb30fdc06db19e8546f367a812fb8010d

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 28 May 2023 07:00:54 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+437; expires=Tue, 27-May-2025 07:00:54 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/landings/278087/1674032690/images/logo-red.png

23.36.76.96

200 OK

5.4 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/278087/1674032690/images/logo-red.png
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://tre.yourlocaldatabasesecurity.site/c/a1b4678620792c72?clickid={conversion}&bid={bid}&s1={s1}&s3={s3}&s4={pubfeed}&s5={subid}&s6={banner}&s7={campaign}&s8={conversion}&sid1={sid1}&aff_sub2={aff_sub2}&ac={ac}&sa={pubfeed}-{subid}&source_id2={source_id2}&sub1={sub1}
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Size
5.4 kB (5391 bytes)
Hash
af5ea8de2e2fa7543cdacc04ad53d4ca
09b884ce4522058ca7fcad459c40d5f30ac3b111
f2a23eb9ee6b06f7b3daaa71257a75fb51832c3956c091741026536b14e4414b

HTTP Headers

GET /landings/278087/1674032690/images/logo-red.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tre.yourlocaldatabasesecurity.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: NROo1GWknKMCNK2wgkeSC2Q3+YwJYnsUuI1w67Ja+6TQ/niFxVrqmSKSVEhIT/3u5qA3TfQJ8Fk=
x-amz-request-id: GKBTC1CSYVX03ZJD
Last-Modified: Wed, 18 Jan 2023 09:04:52 GMT
ETag: "af5ea8de2e2fa7543cdacc04ad53d4ca"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5391
Date: Sun, 28 May 2023 07:00:53 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML