a.vfgtg.com/4b34bff2-3902-412d-b835-96ba8b317c78
18.192.108.151302 Found 0 B URL User Request GET HTTP/2 a.vfgtg.com/4b34bff2-3902-412d-b835-96ba8b317c78
IP 18.192.108.151:443
Certificate IssuerLet's Encrypt
Subjecta.vfgtg.com
FingerprintEE:93:F0:E2:AD:28:CA:0B:43:4B:28:DC:10:1F:F8:41:E6:C6:57:2A
ValidityFri, 19 May 2023 06:55:08 GMT - Thu, 17 Aug 2023 06:55:07 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /4b34bff2-3902-412d-b835-96ba8b317c78 HTTP/1.1
Host: a.vfgtg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 26 May 2023 02:58:26 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://a.vfgtc.com/ae99a155-1731-44f1-a936-f3f79631a6c2?aff_sub4=_bucket&subID1=&affiliateID=&source=&subID2=&bnr=&cid=wa0dlsf7kh4sjqvoi3rirb5u&source=_
pragma: no-cache
set-cookie: 4b34bff2-3902-412d-b835-96ba8b317c78-v4=_7vZhQPqeCx4YSIcOuh2liAK3NB5WoBzMHa1xnrDT38; Max-Age=86400; Expires=Sat, 27-May-2023 02:58:26 GMT; Domain=a.vfgtg.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=FPablsQ223cxVKG89gbGiNzJQnosqMPQ480GtB%2Ba3h4srIWPeTztT1ILKM9a8zESzPJJ%2FDYPQ1Pihgb4gpon%2FVPTUfF1n%2FGcvOGQ9eus4oOjrFLgX03sSTVkCgehnETtmEG22Y7tjVnFAKLhe1e%2FNQ%3D%3D; Max-Age=31536000; Expires=Sat, 25-May-2024 02:58:26 GMT; Domain=a.vfgtg.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
a.vfgtc.com/ae99a155-1731-44f1-a936-f3f79631a6c2?aff_sub4=_bucket&subID1=&affiliateID=&source=&subID2=&bnr=&cid=wa0dlsf7kh4sjqvoi3rirb5u&source=_
18.192.108.151302 Found 0 B URL User Request GET HTTP/2 a.vfgtc.com/ae99a155-1731-44f1-a936-f3f79631a6c2?aff_sub4=_bucket&subID1=&affiliateID=&source=&subID2=&bnr=&cid=wa0dlsf7kh4sjqvoi3rirb5u&source=_
IP 18.192.108.151:443
Certificate IssuerLet's Encrypt
Subjecta.vfgtc.com
FingerprintEE:D6:97:11:47:4B:B0:A9:1D:EE:EE:A9:1D:D4:16:B3:3E:2A:19:6F
ValidityFri, 12 May 2023 06:51:30 GMT - Thu, 10 Aug 2023 06:51:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ae99a155-1731-44f1-a936-f3f79631a6c2?aff_sub4=_bucket&subID1=&affiliateID=&source=&subID2=&bnr=&cid=wa0dlsf7kh4sjqvoi3rirb5u&source=_ HTTP/1.1
Host: a.vfgtc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 26 May 2023 02:58:26 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://s.slext1.com//4931/0?aff_sub4=_bucket&aff_sub5=&aff_sub=&aff_sub2=&aff_sub3=wmgluk6arhkmfqvo2a66jcs2&aff_click_id=&bo=2772,2771,2770,2769,2768&source=_
pragma: no-cache
set-cookie: ae99a155-1731-44f1-a936-f3f79631a6c2-v4=4ei6bi7RAVBPKgeZy74bPzIx6GlRF2TtIbAFFehCuQw; Max-Age=86400; Expires=Sat, 27-May-2023 02:58:26 GMT; Domain=a.vfgtc.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=TTq9A%2B3niIn2bDJi3EXYU5cEy%2Bb5WXA6st6D0GKw00%2FylfYculDN5r6mkyDT5%2ByXatr9wahsQ6GwjyqjfzI4khQDkgFY8IMpj5a1Zl392rfycZjoQKQTb0xPa5%2Bi33VD16fExKTl3rA7YyYwOgXHeg%3D%3D; Max-Age=31536000; Expires=Sat, 25-May-2024 02:58:26 GMT; Domain=a.vfgtc.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
s.slext1.com//4931/0?aff_sub4=_bucket&aff_sub5=&aff_sub=&aff_sub2=&aff_sub3=wmgluk6arhkmfqvo2a66jcs2&aff_click_id=&bo=2772,2771,2770,2769,2768&source=_
54.230.111.127303 See Other 480 B URL User Request GET HTTP/2 s.slext1.com//4931/0?aff_sub4=_bucket&aff_sub5=&aff_sub=&aff_sub2=&aff_sub3=wmgluk6arhkmfqvo2a66jcs2&aff_click_id=&bo=2772,2771,2770,2769,2768&source=_
IP 54.230.111.127:443
Certificate IssuerAmazon
Subjectslext1.com
FingerprintAB:49:F5:EA:10:61:2D:DF:2B:EE:71:BF:AE:97:D9:D9:F7:BA:EF:94
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 09 Mar 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (480), with no line terminators
Hash ffcb8a3ecca9dc72fec21939bee694a6
e31dd19fcaf9b0b82715d06ed3c2ab814afe6c0a
3701c769345db3bf5cd06efd485227f678914d59efc35459ec520ed0042969d0
GET //4931/0?aff_sub4=_bucket&aff_sub5=&aff_sub=&aff_sub2=&aff_sub3=wmgluk6arhkmfqvo2a66jcs2&aff_click_id=&bo=2772,2771,2770,2769,2768&source=_ HTTP/1.1
Host: s.slext1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 303 See Other
content-type: text/html; charset=utf-8
content-length: 480
location: https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
server: nginx/1.19.0
date: Fri, 26 May 2023 02:58:27 GMT
set-cookie: enc_aff_session_4931=ENC03ec7f658b8583ebfeaacbf165c2149298502b5b5ba99d6228d21b8862d1fe06452230a015357b5bf58b517109069b800b16bd86f0c8917b9c4d44e7f12c436ef29556168fc0da3c907a516e99c9986a342c839357068951f557447fce9a4d410b3bc04dd058310c003fcc41c5a4fb6f8785ceda3700e529f9c845f2bf3e66d9d8ca72b7f59033de59fefda4913d36fb6ad67b488cf154144256a9c60544321f3d1acdf446; Path=/; Expires=Fri, 15 Nov 2030 17:58:27 GMT; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMTEuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCBYODZfNjQ7IFJ2OjEwOS4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94LzExMS4wIiwiY29ubmVjdGlvbl9zcGVlZCI6ImJyb2FkYmFuZCJ9; Path=/; Expires=Sun, 19 Apr 2026 13:38:27 GMT; Secure
tracking_id: 1024b122843d4ba0918eb0fed8949c
vary: Accept
strict-transport-security: max-age=15724800; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: B_PVTmbvomsC3jET80HX8cljK7lI3sZ_Aw9Iup6ALjtGnSVApkIOVQ==
X-Firefox-Spdy: h2
cdn-dimi.akamaized.net/landings/279393/1679072890/css/style.css?1679072890
95.101.11.11200 OK 1.8 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/css/style.css?1679072890
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash e58b59d12ff2136662404035f17e25f7
dab4bec7e2a46d3cd2c6d360ca06c1f5a288ac9f
4ff043ba8649888378c200ba14c1438258d6033adaecf16fdce3fe6469c1720c
GET /landings/279393/1679072890/css/style.css?1679072890 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: eHz84hvRTapY0vnLJe/BUOrXgTeelYK4h5LKSw+jQ3BRS0L6T6XGoeWlfwBHicqfvmvp1DWJwM8=
x-amz-request-id: TQNX7JXG06DB59FK
Last-Modified: Fri, 17 Mar 2023 17:08:15 GMT
ETag: "e58b59d12ff2136662404035f17e25f7"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 26 May 2023 02:58:27 GMT
Content-Length: 1770
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/js/captcha_v4.js?1679072890
95.101.11.11200 OK 1.8 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/js/captcha_v4.js?1679072890
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash fc2abdfcde8206d4b6eabbd8b5bc01ab
c5f8908f555b54469baaa191651f575b45cad1d5
5259d1d91e03edc886fc488387091cc8572dbaebd85e7bbacd0ad4f9f13b3f67
GET /landings/279393/1679072890/js/captcha_v4.js?1679072890 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: AOcMzRuVLFGM2rYNCLZNR7Eu5lKr5pkEOoiU7oEizkwyfYVyQII1lcg9ucNc2DbhA2R5yfx3vgw=
x-amz-request-id: NE1HDCW5A4AAMHAY
Last-Modified: Fri, 17 Mar 2023 17:08:16 GMT
ETag: "fc2abdfcde8206d4b6eabbd8b5bc01ab"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 26 May 2023 02:58:27 GMT
Content-Length: 1840
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/css/popup.css?1679072890
95.101.11.11200 OK 627 B URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/css/popup.css?1679072890
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash 4460921518bf278a8d847d9adda01a68
d698b3682fecbd2eb573b5f3d0dadb7a28d73321
652a1f39410a8a8502547c84c86b55b510d1b0acd6cb416224d5968a01bfd437
GET /landings/279393/1679072890/css/popup.css?1679072890 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: IC+66tN57Osv4Bq/mi5jMC5d0oXb4Ur0YAvyTvS63QcN8s2/PGuSRR/SHHGaV4twDDNe+gKGPaJRZeU0pqkixQ==
x-amz-request-id: TQNHWHKN1E73G63Y
Last-Modified: Fri, 17 Mar 2023 17:08:15 GMT
ETag: "4460921518bf278a8d847d9adda01a68"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 26 May 2023 02:58:27 GMT
Content-Length: 627
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/js/jquery.validate.min.js?1679072890
95.101.11.11200 OK 7.8 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/js/jquery.validate.min.js?1679072890
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (24228)
Hash 23d73c6bd6cbea8f06d0cc227896a827
3815cf11e1020ac70cc86789ba2adaf07d3db434
6eefc13f4d9832e74173dea423bca495ceb7f4cbb888a19434d71a9bc0f69cb7
GET /landings/279393/1679072890/js/jquery.validate.min.js?1679072890 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: m1klZFtAkPuE4da1bBE0AJtcJdY+qf9qWMhEwoqoXsvI/eAGp4BCCZYhtcTbrUafiSNQiRNYVlo=
x-amz-request-id: NE1NXVJEHAVB2N99
Last-Modified: Fri, 17 Mar 2023 17:08:16 GMT
ETag: "23d73c6bd6cbea8f06d0cc227896a827"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 26 May 2023 02:58:27 GMT
Content-Length: 7815
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/js/captcha-translate.js?1679072890
95.101.11.11200 OK 2.1 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/js/captcha-translate.js?1679072890
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash d952fbb2a803946df2be7e08bead5e51
b9f27b3bf3176efb787b734fa9321e7d116e86fb
6e9e1720b69f355f24df51c7e8996b2dc76cbed5d18643a0e79c594ed02280e0
GET /landings/279393/1679072890/js/captcha-translate.js?1679072890 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: FiLJk8zWoPvJ6SR3qmwMSYFKpMC650UpRJZnMRajt4xxFcjYE2wU0Wo4PzlBFd1JVNuuYBd7F3Y=
x-amz-request-id: AG2ES4RRX4XWF2DH
Last-Modified: Fri, 17 Mar 2023 17:08:16 GMT
ETag: "d952fbb2a803946df2be7e08bead5e51"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 26 May 2023 02:58:27 GMT
Content-Length: 2145
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/js/translates.js?1679072890
95.101.11.11200 OK 21 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/js/translates.js?1679072890
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash 14a91c043a1fadfa95524674088fad00
2bb3a750963106091a3399b83784caa09cd98e64
8f75fceae3b6e01b54cd3e5fb392a51f28c8e5866d0b60b070f569baeb4c4fbc
GET /landings/279393/1679072890/js/translates.js?1679072890 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: zqJ6myU7JCx8YPRK72ldy9dRBKRz/AkmxdiQNnpQWwQEhpZnkC1hnqlRE6gCGlSlIJFr1H+JY/A=
x-amz-request-id: NE1HR0E89641K3ZT
Last-Modified: Fri, 17 Mar 2023 17:08:16 GMT
ETag: "14a91c043a1fadfa95524674088fad00"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 26 May 2023 02:58:27 GMT
Content-Length: 20930
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/js/jquery-2.2.4.min.js?1679072890
95.101.11.11200 OK 30 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/js/jquery-2.2.4.min.js?1679072890
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /landings/279393/1679072890/js/jquery-2.2.4.min.js?1679072890 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: sgpMvBkuA1ckf5XfWJPnIj8+rYjYMsWwxrBRKg73BeIiwPn8E01Hbkuo1qGtjTK5MG4bb52rj3k=
x-amz-request-id: TQNK93TK0WH9NJZW
Last-Modified: Fri, 17 Mar 2023 17:08:16 GMT
ETag: "2f6b11a7e914718e0290410e85366fe9"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 26 May 2023 02:58:27 GMT
Content-Length: 29855
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_01.png
95.101.11.11200 OK 9.3 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_01.png
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 125 x 240, 8-bit colormap, non-interlaced\012- data
Hash df96e2d8a861ba17cd4542e41da93622
40c8c923e4f56b8b9439feaa69a5de8944f9ba4c
2b22daaf05086e90fc46cd81c7ff5de1166fe50188bcfdeb9529ecc64eb01b02
GET /landings/279393/1679072890/images/2_01.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: GyaqYTUHODA4MA+N60iI7ct9jikw7Fy1b4Fa7mjhyWjTHm7XF77Y5Cl5ErConc3zevH7OtLdFl0=
x-amz-request-id: AG2FNX3MY0XEA9ZX
Last-Modified: Fri, 17 Mar 2023 17:08:12 GMT
ETag: "df96e2d8a861ba17cd4542e41da93622"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 9344
Date: Fri, 26 May 2023 02:58:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
www.googletagmanager.com/gtm.js?id=GTM-WDTWGJZ
142.250.74.168200 OK 42 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WDTWGJZ
IP 142.250.74.168:443
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (2271)
Hash e80ee9e3cfab5b24672776e1915b214c
8b6a54e223fd19018a9ff8867364212038f5fb09
2fda054b721f2ff6935b77b35e2f053370022258c5988d1fb6e4a8c37ff11942
GET /gtm.js?id=GTM-WDTWGJZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 02:58:28 GMT
expires: Fri, 26 May 2023 02:58:28 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 May 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42298
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:443
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mdezw.gaydatlngs.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:25:28 GMT
expires: Thu, 23 May 2024 00:25:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 181980
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:443
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mdezw.gaydatlngs.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:25:28 GMT
expires: Thu, 23 May 2024 00:25:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 181980
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_02.png
95.101.11.11200 OK 13 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_02.png
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 125 x 240, 8-bit colormap, non-interlaced\012- data
Hash f4c1a885759b46494c357241b5b9d0b3
b27bf0962405a069bd7142a1fb12ecc14aa32f41
2a4f1295c8d1b0413247cda93d18cb9c15cd9d0abd4fa4f653ab1ba48fb4e518
GET /landings/279393/1679072890/images/2_02.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: mRFtkW/0ucQoQ6Wy28UaWnQjOSDOvMZVFyHEpkSJkncafNu4GJ+oZYvGdaBKaEskocYWSjURJ3s=
x-amz-request-id: 9VZ0E5XS29B28M33
Last-Modified: Fri, 17 Mar 2023 17:08:12 GMT
ETag: "f4c1a885759b46494c357241b5b9d0b3"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 12601
Date: Fri, 26 May 2023 02:58:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_03.png
95.101.11.11200 OK 10 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_03.png
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 125 x 240, 8-bit colormap, non-interlaced\012- data
Hash 149e6b22a9bfded9b89f47077d1020b8
63fd65a1f1f7b14e9a5a862f53e3fc137b64b1bb
55f6973fd5e2639dc12fe11653f528ad2c36e46d3b0d8487affacf31386ef22f
GET /landings/279393/1679072890/images/2_03.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: wMHbUBoxHDYL1AHAusMiC5p2E/hSsbxXqWK8gjBEC3uGKUxqe5amJ558Yip16WSlPxocPaTC6jo=
x-amz-request-id: 32Q87VYY961KZV1A
Last-Modified: Fri, 17 Mar 2023 17:08:12 GMT
ETag: "149e6b22a9bfded9b89f47077d1020b8"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 10450
Date: Fri, 26 May 2023 02:58:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_04.png
95.101.11.11200 OK 11 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_04.png
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 125 x 240, 8-bit colormap, non-interlaced\012- data
Hash 61f609de1ac26121306b13ec6aacb6d7
e5ecdc671fc0d0039d9a339431cff0691beee4e7
648cf97db92bdd33339c6603daab7e3d328766ed2b0f0f7a40cac40f7756930a
GET /landings/279393/1679072890/images/2_04.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: vxh6tkT1byUFPu/AEduka4yLND5YrKrAAjlpQm7HeLEqmg4pupi0Pb6MWD6TIM2lQ72vDTHdQX8=
x-amz-request-id: R1RE43EQ2K8SXMQ6
Last-Modified: Fri, 17 Mar 2023 17:08:12 GMT
ETag: "61f609de1ac26121306b13ec6aacb6d7"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 11185
Date: Fri, 26 May 2023 02:58:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_05.png
95.101.11.11200 OK 11 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_05.png
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 125 x 240, 8-bit colormap, non-interlaced\012- data
Hash f3e3812aace87a3cf8bf46300945aa01
a00d03fab3f15af08b203f64d481d5bc04289652
687d434b00b972385fffe9fc6852bad8b7e46f6dc1d1f5badbf6d39b9058ced1
GET /landings/279393/1679072890/images/2_05.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 30NG54Utd49+yKN5pFOxKL7RVJF0M3FbFHhrJig9a4rTdonW7uLiWd1P7QRhl9ZCLDM83zV9d0w=
x-amz-request-id: CXK28FNT3WTVV7CW
Last-Modified: Fri, 17 Mar 2023 17:08:12 GMT
ETag: "f3e3812aace87a3cf8bf46300945aa01"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 11164
Date: Fri, 26 May 2023 02:58:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_06.png
95.101.11.11200 OK 11 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_06.png
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 125 x 240, 8-bit colormap, non-interlaced\012- data
Hash 99789bdad243541f7624aec3eeea246e
4767d2e8a0cb16004c6765d39e5ab31996ae442a
7c1305de2132913768a429eb41e2b07de828572577434b26cb5845bace5ed444
GET /landings/279393/1679072890/images/2_06.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: CWxWSF9Zs+AUXYpMkOuxSe5R9CPTjmhH6q3gCOKkZf8KT9AB062MSAp4Zj7WJPETPnvc75aUn3g=
x-amz-request-id: 5FRWTCADDZ7A8S0P
Last-Modified: Fri, 17 Mar 2023 17:08:12 GMT
ETag: "99789bdad243541f7624aec3eeea246e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 10568
Date: Fri, 26 May 2023 02:58:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/images/blocked-icon.png
95.101.11.11200 OK 502 B URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/images/blocked-icon.png
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 23 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 87487ad255dde0624f59abb85602defc
caafad17df41875bed690353ead6cc495a9bf8c2
f7a4b3fb74b9e06f243f23ede51a801a0aa3fa2c0040bc44a49a97444780923d
GET /landings/279393/1679072890/images/blocked-icon.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: L/yXr7r7bk5/Ayt+BdzgKUnBwpUkYT06uZ2pGhYZT2+ubmyC241zWGaLbStqUKyll3AN6uUmIJw=
x-amz-request-id: R8SQZBKTFK13MNDT
Last-Modified: Fri, 17 Mar 2023 17:08:12 GMT
ETag: "87487ad255dde0624f59abb85602defc"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 502
Date: Fri, 26 May 2023 02:58:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_07.png
95.101.11.11200 OK 6.3 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_07.png
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 125 x 240, 4-bit colormap, non-interlaced\012- data
Hash 0d26d420c22c7a9d348de44dd7baf48d
129afac5d82c8b686c97da201c897c2160489b09
86db09b6d367560e0eef4972345de82330da2f6a05c1fbfd3d0e9b651c050107
GET /landings/279393/1679072890/images/2_07.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: QqtTn2awIpFXrIi+X7O8mntkOmFMyAQCLMdh5Cv1gxRxM+4AcWhquvxRg/gYoU8Jz9RFv0LhbnA=
x-amz-request-id: 45E5YC6QRM8JHQMG
Last-Modified: Fri, 17 Mar 2023 17:08:12 GMT
ETag: "0d26d420c22c7a9d348de44dd7baf48d"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 6283
Date: Fri, 26 May 2023 02:58:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_08.png
95.101.11.11200 OK 9.9 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_08.png
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 125 x 240, 8-bit colormap, non-interlaced\012- data
Hash a63e2c0d4a237d09e42a8e4e09eba6a6
39456e2ab87b1cbbf1f6318e1a9e99d382eaddca
06322a4a56b7fde3070e7f1571c9e5e30cb31843eb4d629ac2d027de588258c0
GET /landings/279393/1679072890/images/2_08.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: wvmzW0Q3pI7Xf6j1CD+XrX2mawLR85K4AJUxIE3PffpkmXLTt9BbmBtq7XXO9lcbVDPw3k5Zy0k=
x-amz-request-id: DT24B5Y82PHNH1ZH
Last-Modified: Fri, 17 Mar 2023 17:08:12 GMT
ETag: "a63e2c0d4a237d09e42a8e4e09eba6a6"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 9944
Date: Fri, 26 May 2023 02:58:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_09.png
95.101.11.11200 OK 13 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/images/2_09.png
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 125 x 240, 8-bit colormap, non-interlaced\012- data
Hash f81325cec3090bc8c980c8b676f1fcee
015dff333abf3497f21a2bb66217cb362f18b35d
9fec569303c59e5234d82e1f5bfb9684936c2b65d62629e83c607932a2798fa8
GET /landings/279393/1679072890/images/2_09.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: VrELTpJF9FoPSnZ5UEhdjrxWwk1yqzXSrUkuXHXfIAyw85yTz3AyJJN9FdQM0ZnSSa+FaKnyZ8E=
x-amz-request-id: DT251AFYR4A36KWC
Last-Modified: Fri, 17 Mar 2023 17:08:12 GMT
ETag: "f81325cec3090bc8c980c8b676f1fcee"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 12948
Date: Fri, 26 May 2023 02:58:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
mdezw.gaydatlngs.com/ortb
52.19.101.114200 OK 29 B URL POST HTTP/2 mdezw.gaydatlngs.com/ortb
IP 52.19.101.114:443
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerLet's Encrypt
Subject*.gaydatlngs.com
Fingerprint3E:89:80:E8:32:12:B2:DB:38:F4:8C:3C:40:96:36:DC:D6:1A:C1:05
ValiditySat, 29 Apr 2023 23:46:58 GMT - Fri, 28 Jul 2023 23:46:57 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash c453d1e33844d14bbd7ec2846eb408f6
b934f52ed7fbed0cee5874cb0fcafdd1cb450fcd
2b159267580e469b4eed0aaf47253e353fdf727043d52d969bd85cbff7fd4a1a
POST /ortb HTTP/1.1
Host: mdezw.gaydatlngs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 331
Origin: https://mdezw.gaydatlngs.com
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/?s1=19586&s2=1181211&s3=7114&s5=backuser&click_id=1024b122843d4ba0918eb0fed8949c&iexpp=1&j1=1&j5=1&j9=1&utm_source=f82757e39b1a28a9&bo=2772%2C2771%2C2770%2C2769%2C2768
Cookie: unique_id=64702053000ecb23; unique_id2=6470205300001093; 6470205300001093_c=1; ref_token=19586; 6470205300001093_sl=[279393]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 02:58:28 GMT
content-type: text/plain; charset=utf-8
content-length: 29
X-Firefox-Spdy: h2
cdn-dimi.akamaized.net/landings/279393/1679072890/images/1.mp4
95.101.11.11206 Partial Content 1.3 MB URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279393/1679072890/images/1.mp4
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 1.3 MB (1253659 bytes)
Hash c7ba077f6793360505c2c792635cf8b8
75fa1f5061694aff9e0d40a0863844024de1eb42
555ddbe6c71315d553a3231be3769533944a808c1f079129324fa92e1c0a1eda
GET /landings/279393/1679072890/images/1.mp4 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
x-amz-id-2: Dz6zRzauOyKV0Kc8meuQWx7aPI/5gh5B25Vm8BzBHD32ngc6ATS8CWb3jL6e5ZABH6x21c+9VIs=
x-amz-request-id: Z4F58AK5X4F5NQB1
Last-Modified: Fri, 17 Mar 2023 17:08:15 GMT
ETag: "c7ba077f6793360505c2c792635cf8b8"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: video/mp4
Server: AmazonS3
Date: Fri, 26 May 2023 02:58:28 GMT
Content-Range: bytes 0-1253658/1253659
Content-Length: 1253659
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/images/favicon.ico
95.101.11.11200 OK 4.1 kB URL GET HTTP/1.1 cdn-dimi.akamaized.net/images/favicon.ico
IP 95.101.11.11:443
ASN #20940 Akamai International B.V.
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 4cdf3256cd7b8ec3917adb79d6bf457e
bc615337e9223183a126c8fb649774866fb53e69
fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0
GET /images/favicon.ico HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mdezw.gaydatlngs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 2GM1RH+Oo7JIRLs/OPfJSrmls1pwWkrIufazLdJT5aWuDbgNABEKJmW/8rLlCMaF9QlDE8aTJ9E=
x-amz-request-id: Y5JJFAEXP3X803ZN
Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT
ETag: "4cdf3256cd7b8ec3917adb79d6bf457e"
Accept-Ranges: bytes
Content-Type: image/x-icon
Server: AmazonS3
Content-Length: 4103
Date: Fri, 26 May 2023 02:58:28 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
fonts.googleapis.com/css2?family=Ubuntu:wght@400;700&display=swap
142.250.74.106200 OK 3.8 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Ubuntu:wght@400;700&display=swap
IP 142.250.74.106:443
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (3864), with no line terminators
Hash 614d0444eb71829995cb071257548a03
f40117d12bea2fade0d15f71577e9b1e4055bfc8
91a5302a57c4125e14bad34dd8e7be1a9c6a34d03ab7d85a2f22e1482ede7a02
GET /css2?family=Ubuntu:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 02:58:28 GMT
date: Fri, 26 May 2023 02:58:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
52.19.101.114200 OK 24 kB URL User Request GET HTTP/2 mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
IP 52.19.101.114:443
Certificate IssuerLet's Encrypt
Subject*.gaydatlngs.com
Fingerprint3E:89:80:E8:32:12:B2:DB:38:F4:8C:3C:40:96:36:DC:D6:1A:C1:05
ValiditySat, 29 Apr 2023 23:46:58 GMT - Fri, 28 Jul 2023 23:46:57 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (895)
Hash 9feb59ddcc39468a6bf5c13328eed167
cbfba8102e32882f646b36963280afa44493c6d3
874b22eccd394368a9bcdcf2799f26eef2aab148cc3c13c944b4f0e39a7214e2
GET /?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768 HTTP/1.1
Host: mdezw.gaydatlngs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 02:58:27 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=64702053000ecb23; Path=/; Expires=Tue, 25 Jul 2023 02:58:27 GMT; Secure; SameSite=None
unique_id2=6470205300001093; Path=/; Expires=Thu, 24 Aug 2023 02:58:27 GMT; Secure; SameSite=None
6470205300001093_c=1; Path=/; Expires=Thu, 24 Aug 2023 02:58:27 GMT; Secure; SameSite=None
ref_token=19586; Path=/; Expires=Sun, 25 Jun 2023 02:58:27 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Fri, 26 May 2023 02:58:27 GMT; Secure; SameSite=None
6470205300001093_sl=[279393]; Path=/; Expires=Fri, 09 Jun 2023 02:58:27 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:400,500,600,700&display=swap
142.250.74.106200 OK 7.3 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,500,600,700&display=swap
IP 142.250.74.106:443
Requested by https://mdezw.gaydatlngs.com/?utm_source=f82757e39b1a28a9&s1=19586&s2=1181211&s3=7114&s5=&click_id=1024b122843d4ba0918eb0fed8949c&j1=1&j5=1&j9=1&bo=2772%2C2771%2C2770%2C2769%2C2768
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (7500), with no line terminators
Hash 04a4df75ec27d4c91fe700dd652647f4
17a9191402b2df63d0c07ded8ad5956e69fdfa0d
099acc26398281319a40df4275cadfa7adf9a3dd80545cdc5e13d457bb7804b8
GET /css?family=Montserrat:400,500,600,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 02:58:28 GMT
date: Fri, 26 May 2023 02:58:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2