destinee.hxsnxepultura.my.id/_meetups/?click_id=euro&country_code=us&user_agent=web&ip_address=35.203.255.107&user_lp=imonetizeit
68.66.226.117 0 B URL destinee.hxsnxepultura.my.id/_meetups/?click_id=euro&country_code=us&user_agent=web&ip_address=35.203.255.107&user_lp=imonetizeit
IP 68.66.226.117:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_meetups/?click_id=euro&country_code=us&user_agent=web&ip_address=35.203.255.107&user_lp=imonetizeit HTTP/1.1
Host: destinee.hxsnxepultura.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.33
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
location: /_meetups/r.php?click_id=EURO&country_code=us&user_agent=web&ip_address=35.203.255.107&user_lp=imonetizeit
content-type: text/html; charset=UTF-8
content-length: 0
date: Tue, 23 May 2023 13:44:40 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
destinee.hxsnxepultura.my.id/_meetups/r.php?click_id=EURO&country_code=us&user_agent=web&ip_address=35.203.255.107&user_lp=imonetizeit
68.66.226.117 438 B URL destinee.hxsnxepultura.my.id/_meetups/r.php?click_id=EURO&country_code=us&user_agent=web&ip_address=35.203.255.107&user_lp=imonetizeit
IP 68.66.226.117:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (817), with no line terminators
Hash e52a5d0a2df50bc8720df49092245cfa
e2ca8a9d0d31ec86cb8313872f7d44d56264d8ff
055b27641057c688ddc65df539813ba78903c463c4a0a06978158f78205f2ba8
GET /_meetups/r.php?click_id=EURO&country_code=us&user_agent=web&ip_address=35.203.255.107&user_lp=imonetizeit HTTP/1.1
Host: destinee.hxsnxepultura.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.33
cache-control: no-cache
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 438
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 23 May 2023 13:44:41 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cdn-dimi.akamaized.net/landings/279205/1680702419/js/scripts.js?1680702420
88.221.27.128200 OK 511 B URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1680702419/js/scripts.js?1680702420
IP 88.221.27.128:443
ASN #20940 Akamai International B.V.
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash 69e75e0997cdd1b51ef2d8f78358e937
f816503aceb6edd2fd9f0cc3f911b99817ca611d
40c9bae2946917f32864946aabede4750f809cf9f3ab600669faab410b82526c
GET /landings/279205/1680702419/js/scripts.js?1680702420 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vnvdbn.datlngllfe.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: ngAdpUyo5S3IouCcIddDAI3extShReTAI4tnb3fQtjqId41amE8XVf/dde9Tg14GiLBwPrX3cwA=
x-amz-request-id: W0QQ8RHJQTJW7E20
Last-Modified: Wed, 05 Apr 2023 13:47:02 GMT
ETag: "69e75e0997cdd1b51ef2d8f78358e937"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 511
Date: Tue, 23 May 2023 13:44:42 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279205/1680702419/css/reset.min.css?1680702420
88.221.27.128200 OK 527 B URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1680702419/css/reset.min.css?1680702420
IP 88.221.27.128:443
ASN #20940 Akamai International B.V.
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type CSV text\012- , ASCII text
Hash 36f11c31f5b3885dc017f41ed8f5817c
e928be87b659d200361c277fcc3ed1fd13b2a472
b59fdf3a529889ad3a8d013a347d5586f3da8361e71291cc9215edb830d1e45e
GET /landings/279205/1680702419/css/reset.min.css?1680702420 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vnvdbn.datlngllfe.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: LtnYcwF7qTAFlBfrxyADIGajZc+geyQxPQV3XeGqnxILmL5iVz0l4nGUOzbBTSGrNN19ohwyMng=
x-amz-request-id: W0QJ5N133CDCS9ZT
Last-Modified: Wed, 05 Apr 2023 13:47:02 GMT
ETag: "36f11c31f5b3885dc017f41ed8f5817c"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 23 May 2023 13:44:42 GMT
Content-Length: 527
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279205/1680702419/css/style.css?1680702420
88.221.27.128200 OK 1.8 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1680702419/css/style.css?1680702420
IP 88.221.27.128:443
ASN #20940 Akamai International B.V.
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash 50e68ca989043b052b196b593868c50d
7a4de8942d19d16e9e83445404fafecb0616f971
163b87d940693d2035ff0a922f4fbebbba23f553520fbb4a400b739c16f862aa
GET /landings/279205/1680702419/css/style.css?1680702420 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vnvdbn.datlngllfe.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: j+27pqCM9t+G1oW/eriMhMhPpALAAOW4oFiVhZ8QpbRRVn7giwlJpWufboPRXMeV8vMiaJumG5U=
x-amz-request-id: W0QKN40YSDZYSQFG
Last-Modified: Wed, 05 Apr 2023 13:47:02 GMT
ETag: "50e68ca989043b052b196b593868c50d"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 23 May 2023 13:44:42 GMT
Content-Length: 1835
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279205/1680702419/js/translates.js?1680702420
88.221.27.128200 OK 8.6 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1680702419/js/translates.js?1680702420
IP 88.221.27.128:443
ASN #20940 Akamai International B.V.
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash 09375f18dc5bfd539f211887b6a178e6
01151d9836502715a56f01db102da22f462821d2
74e9cb9fca7f14f9de2c6416b1d99b3e28e0fd9c0501c848d8276de3a7036d5c
GET /landings/279205/1680702419/js/translates.js?1680702420 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vnvdbn.datlngllfe.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: ihF+7WS69Ppedi67qpJZALNe+9vtpDK0+Ytji38YaGJnlPzfiooZWljbf7IvwLpH0Ygzl/S1M5Q=
x-amz-request-id: W0QRD486WW44J37N
Last-Modified: Wed, 05 Apr 2023 13:47:02 GMT
ETag: "09375f18dc5bfd539f211887b6a178e6"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 23 May 2023 13:44:42 GMT
Content-Length: 8568
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279205/1680702419/js/jquery.min.js?1680702420
88.221.27.128200 OK 30 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1680702419/js/jquery.min.js?1680702420
IP 88.221.27.128:443
ASN #20940 Akamai International B.V.
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /landings/279205/1680702419/js/jquery.min.js?1680702420 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vnvdbn.datlngllfe.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: hiFP51vu+VEpSNCMXvQLhmxh1XSOdhShdQzI3jY8oKX4rmDiM9drKHVDzuJlIj7eFWSdpTn446U=
x-amz-request-id: W0QZQR5JRXZF1HSN
Last-Modified: Wed, 05 Apr 2023 13:47:02 GMT
ETag: "2f6b11a7e914718e0290410e85366fe9"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 23 May 2023 13:44:42 GMT
Content-Length: 29855
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279205/1680702419/images/logo.svg
88.221.27.128200 OK 11 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1680702419/images/logo.svg
IP 88.221.27.128:443
ASN #20940 Akamai International B.V.
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4864)
Hash 89efea4d57e53488be96c41f813895c2
4ace0a06591c30d245809c58f7cf3aad9e602959
ea91bcc64cbe5159a96da591bdec4939528366b64226c688cc4462baf74dfdd3
GET /landings/279205/1680702419/images/logo.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vnvdbn.datlngllfe.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: veAHZI7SrMIBUKDmQi5j1fg2D/+RAnUkAw4mUsGTzF8+zeUDewKeqT7upCV6hLUmbqNP0oGVvSk=
x-amz-request-id: W0QTMZ8PB972G1ZG
Last-Modified: Wed, 05 Apr 2023 13:47:01 GMT
ETag: "89efea4d57e53488be96c41f813895c2"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 10652
Date: Tue, 23 May 2023 13:44:42 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279205/1680702419/images/girl-ico.png
88.221.27.128200 OK 1.5 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1680702419/images/girl-ico.png
IP 88.221.27.128:443
ASN #20940 Akamai International B.V.
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 87fa20787233a7ac89d1ee83563832c6
2fd58653f791912508d469a274fbdffbc7177bf6
2cb1de63c827301236cb47fc705964c827deb48b360148e11a28c15ea9ef66d0
GET /landings/279205/1680702419/images/girl-ico.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vnvdbn.datlngllfe.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 351uxSSSUuvjOlEnzCiJToMTg4LQ2WE6wyukgNOv59T6Sket5qIN7UKjFq4O4xYTarYobpB7M58=
x-amz-request-id: W0QQQ62XRND3SAE4
Last-Modified: Wed, 05 Apr 2023 13:47:01 GMT
ETag: "87fa20787233a7ac89d1ee83563832c6"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1540
Date: Tue, 23 May 2023 13:44:42 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 732ed209e10454157ef1d4fd0b1626ad
bfa02e7cac5d8912d0a7e41d13cc41096fc5fb61
7a1a679c21f79a9bd2df2fe75fdb6da354f0573a50dc14d425f939f176fe7ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 23 May 2023 13:44:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
63.32.216.166200 OK 9.7 kB URL User Request GET HTTP/2 vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
IP 63.32.216.166:443
Certificate IssuerLet's Encrypt
Subject*.datlngllfe.net
FingerprintBF:C4:6A:8D:AF:33:2D:58:A2:98:1E:3F:79:29:E2:B6:53:C6:AA:F9
ValidityFri, 28 Apr 2023 08:33:34 GMT - Thu, 27 Jul 2023 08:33:33 GMT
File type gzip compressed data, from Unix\012- data
Hash cf9793f505f01c65b08e7213ccfd2ed2
852ddc7cafbdf9a566603374e1fda624fde4ea66
3b97a9b044c510a9875b4d56b32c2123ccc4ec07fd0f460797d27ca5c61a2aa1
GET /?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1 HTTP/1.1
Host: vnvdbn.datlngllfe.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 23 May 2023 13:44:41 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=646cba58000e7102; Path=/; Expires=Sat, 22 Jul 2023 13:44:41 GMT; Secure; SameSite=None
unique_id2=646cc347000c3b49; Path=/; Expires=Mon, 21 Aug 2023 13:44:41 GMT; Secure; SameSite=None
646cc347000c3b49_c=1; Path=/; Expires=Mon, 21 Aug 2023 13:44:41 GMT; Secure; SameSite=None
ref_token=153115_191490; Path=/; Expires=Thu, 22 Jun 2023 13:44:41 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Tue, 23 May 2023 13:44:41 GMT; Secure; SameSite=None
646cc347000c3b49_sl=[279205]; Path=/; Expires=Tue, 06 Jun 2023 13:44:41 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
vnvdbn.datlngllfe.net/ortb
63.32.216.166200 OK 29 B URL POST HTTP/2 vnvdbn.datlngllfe.net/ortb
IP 63.32.216.166:443
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerLet's Encrypt
Subject*.datlngllfe.net
FingerprintBF:C4:6A:8D:AF:33:2D:58:A2:98:1E:3F:79:29:E2:B6:53:C6:AA:F9
ValidityFri, 28 Apr 2023 08:33:34 GMT - Thu, 27 Jul 2023 08:33:33 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash c453d1e33844d14bbd7ec2846eb408f6
b934f52ed7fbed0cee5874cb0fcafdd1cb450fcd
2b159267580e469b4eed0aaf47253e353fdf727043d52d969bd85cbff7fd4a1a
Analyzer Verdict Alert fortinet Phishing
POST /ortb HTTP/1.1
Host: vnvdbn.datlngllfe.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 332
Origin: https://vnvdbn.datlngllfe.net
DNT: 1
Connection: keep-alive
Referer: https://vnvdbn.datlngllfe.net/?s1=191490&s2=1830361&s3=EURO&s5=backuser&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&iexpp=1&j1=1&j3=1&utm_source=da57dc555e50572d
Cookie: unique_id=646cba58000e7102; unique_id2=646cc347000c3b49; 646cc347000c3b49_c=1; ref_token=153115_191490; 646cc347000c3b49_sl=[279205]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 May 2023 13:44:43 GMT
content-type: text/plain; charset=utf-8
content-length: 29
X-Firefox-Spdy: h2
cdn-dimi.akamaized.net/landings/279205/1680702419/images/video-1.mp4
88.221.27.128206 Partial Content 1.1 MB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1680702419/images/video-1.mp4
IP 88.221.27.128:443
ASN #20940 Akamai International B.V.
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 1.1 MB (1132123 bytes)
Hash d5f9fbb8667b2e86bbaaf15275a9be13
c84c479303ff26a5d32ef557e379fbe8b13feca2
80206cf6a74ae1964057fa05d339f7edb224536a94b91c235205710feed9e027
GET /landings/279205/1680702419/images/video-1.mp4 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://vnvdbn.datlngllfe.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
x-amz-id-2: rGiG0yKvS30l9MRynR3XlM1j98vofI0t3KjCcjg7hEuFnYd+QHHSVbTJBE29yBOCZE2NJjd2Sew=
x-amz-request-id: 0BRDJXNQ886S2Z5F
Last-Modified: Wed, 05 Apr 2023 13:47:01 GMT
ETag: "d5f9fbb8667b2e86bbaaf15275a9be13"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: video/mp4
Server: AmazonS3
Date: Tue, 23 May 2023 13:44:42 GMT
Content-Range: bytes 0-1132122/1132123
Content-Length: 1132123
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ec5e2945678cfa7511125f457063f33d
b4b501c267d6bdc3f26d9fb93de3c562576dde94
e7bf71c2fc9c590f69f274f44eff79815790824351aa636fdd59d857adec92dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 23 May 2023 13:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ec5e2945678cfa7511125f457063f33d
b4b501c267d6bdc3f26d9fb93de3c562576dde94
e7bf71c2fc9c590f69f274f44eff79815790824351aa636fdd59d857adec92dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 23 May 2023 13:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:443
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vnvdbn.datlngllfe.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 May 2023 17:30:39 GMT
expires: Wed, 15 May 2024 17:30:39 GMT
cache-control: public, max-age=31536000
age: 591244
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.163200 OK 23 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.163:443
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vnvdbn.datlngllfe.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 May 2023 17:30:39 GMT
expires: Wed, 15 May 2024 17:30:39 GMT
cache-control: public, max-age=31536000
age: 591244
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn-dimi.akamaized.net/landings/279205/1680702419/images/favicon.ico?t=20230523134441
88.221.27.128200 OK 14 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1680702419/images/favicon.ico?t=20230523134441
IP 88.221.27.128:443
ASN #20940 Akamai International B.V.
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel\012- data
Hash 135aeed168833e38d0839e1709e41891
a689caccb7b0a9918ff731bef2a1e3d04aff07ec
74d44e795ea62dcb66e995bfc7a0914e4fb64041567e05cc9118cfc8608caa45
GET /landings/279205/1680702419/images/favicon.ico?t=20230523134441 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vnvdbn.datlngllfe.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: xX3crrrmXiw9/xzUuURp1NJ/2DKSo8/+Ao00dOX1uBXHueGnrDRiqHkUHcp10ASQxpz6u2vYT6o=
x-amz-request-id: W0QKAKMMQ9RR65Q7
Last-Modified: Wed, 05 Apr 2023 13:47:01 GMT
ETag: "135aeed168833e38d0839e1709e41891"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/x-icon
Server: AmazonS3
Content-Length: 13868
Date: Tue, 23 May 2023 13:44:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ec5e2945678cfa7511125f457063f33d
b4b501c267d6bdc3f26d9fb93de3c562576dde94
e7bf71c2fc9c590f69f274f44eff79815790824351aa636fdd59d857adec92dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 23 May 2023 13:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Lato:wght@400;700&display=swap
142.250.74.74200 OK 1.5 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Lato:wght@400;700&display=swap
IP 142.250.74.74:443
Requested by https://vnvdbn.datlngllfe.net/?utm_source=da57dc555e50572d&s1=191490&s2=1830361&s3=EURO&click_id=RVVSTyxVUywzNS4yMDMuMjU1LjEwNyxXRUIsSU1PTkVUSVpFSVQ&j1=1&j3=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (1566), with no line terminators
Hash bef54a4f8ad5d25fc816b34ad3298c30
6e7414798c5ddeccd9b28f79316617dbe59c30ae
6f1630b5aa4ebf650967d76a891d2690f3ad4478da4875b9ad564335c40366c3
GET /css2?family=Lato:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 May 2023 13:44:42 GMT
date: Tue, 23 May 2023 13:44:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2