Report - repita.monster/m/Kzp4jsn

Report Overview

Submitted URL
repita.monster/m/Kzp4jsn
IP
104.21.87.160
ASN
#13335 CLOUDFLARENET
Submitted
2023-06-01 21:14:16
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
samajo.datlngllfe.net	unknown	2023-04-28	2023-05-07	2023-05-28	2.8 kB	57 kB	63.32.216.166
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-06-01	1.0 kB	48 kB	142.250.74.131
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-05-31	866 B	20 kB	142.250.74.35
your.safefollow.life	unknown	2022-10-16	2022-10-17	2023-05-31	515 B	40 kB	104.21.55.24
repita.monster	unknown	2023-02-02	2023-02-02	2023-05-31	926 B	1.1 MB	172.67.144.159
cdn-dimi.akamaized.net	unknown	2014-03-18	2022-07-07	2023-05-31	4.3 kB	1.2 MB	88.221.27.74
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-31	999 B	2.1 kB	142.250.74.131
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-31	460 B	1.5 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-01 21:13:58	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .life TLD
2023-06-01 21:13:58	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .life TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf	2.2 kB	2023-06-01	2023-06-01
Pretty URL samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-01 23:14:17 Last Seen2023-06-01 23:14:17 Times Seen1 Hash ad368baffb91d2f1a05dee7e2c6fff65 6e85098b588b543488888b5ab05c238549eb208e 1ad0796f25065e933e87c591e3d23b24c75261c356508cc6e55e23b45d2df6da Loading...

	samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf	3.6 kB	2023-06-01	2023-06-01
Pretty URL samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-01 23:14:17 Last Seen2023-06-01 23:14:17 Times Seen1 Hash a58443446e4c90f71bae7a4fe3e8e0c3 e0dab3097e3e16bb3e7a3f33fbd4a082251e0614 114af1735b3f1691e1c2b8b127da077fd5746e061f61a557e61c72feeb64a086 Loading...

	samajo.datlngllfe.net/sandbox%20eval%20code	123 B	2023-05-05	2024-04-23
Pretty URL samajo.datlngllfe.net/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 23:38:25 Last Seen2024-04-23 12:46:47 Times Seen7415 Hash 239166f4d1bda569909c9af241098419 ad3987a93224de5c735c7c380daf5bfaecf60ac8 255566913e81e0587539abba68839777480779575271b734e817e7093f4dceec Loading...

	samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf	3.4 kB	2023-06-01	2023-06-01
Pretty URL samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-01 23:14:17 Last Seen2023-06-01 23:14:17 Times Seen1 Hash 8caeb1c969d8abec7e59edf4119d60af c9c158cba42ad15eb57eb7609234a8a0ff89318d 5043bd7463a17de9d2ff4d417af116cfbf6dd85bbfdde006430811bbbdcfaf4d Loading...

	samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf	9.8 kB	2023-06-01	2023-06-01
Pretty URL samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-01 23:14:17 Last Seen2023-06-01 23:14:17 Times Seen1 Hash 5d582358d497035a16df5abbcb89df88 07b7cd4959298da8b1efb17ac87ab4b440f0f795 30ced522ccfa61eec02bfc702152da44c9a2dad0a612b1be1b334c579a8a400b Loading...

	samajo.datlngllfe.net/js/pushjs/1.0.0/subscriber.js	9.4 kB	2023-05-23	2023-07-25
Pretty URL samajo.datlngllfe.net/js/pushjs/1.0.0/subscriber.js IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-23 13:07:49 Last Seen2023-07-25 20:18:06 Times Seen1187 Hash 9a76092417bab7e2f25aac9bb01c6a91 07158fa1c2bd1f320b4401b1a535430afe66655a 788a5bacebaac190a447e071de8c171e7f8baa55be95df07621b24ea4fb667a2 Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/shims/firebase.js	2.3 kB	2023-05-05	2024-04-23
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/shims/firebase.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 23:38:25 Last Seen2024-04-23 12:46:48 Times Seen9696 Hash 32d439c9ec8c789e843ae58b6774681c deb2c661dacf46eb3a1eacbba3e430dcf10cc395 f65e83801e16f98e150ae8843afb4c98c0b3ac0fa7fbe5a5ec687b08119732d6 Loading...

	cdn-dimi.akamaized.net/landings/279205/1685522720/js/jquery.min.js?1685522720	86 kB	2023-03-07	2024-04-24
Pretty URL cdn-dimi.akamaized.net/landings/279205/1685522720/js/jquery.min.js?1685522720 IP 88.221.27.74 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-24 00:00:38 Times Seen383236 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

	cdn-dimi.akamaized.net/landings/279205/1685522720/js/translates.js?1685522720	24 kB	2023-03-25	2024-01-07
Pretty URL cdn-dimi.akamaized.net/landings/279205/1685522720/js/translates.js?1685522720 IP 88.221.27.74 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-25 22:54:23 Last Seen2024-01-07 22:49:29 Times Seen456 Hash 09375f18dc5bfd539f211887b6a178e6 01151d9836502715a56f01db102da22f462821d2 74e9cb9fca7f14f9de2c6416b1d99b3e28e0fd9c0501c848d8276de3a7036d5c Loading...

	cdn-dimi.akamaized.net/landings/279205/1685522720/js/scripts.js?1685522720	511 B	2023-03-25	2024-04-21
Pretty URL cdn-dimi.akamaized.net/landings/279205/1685522720/js/scripts.js?1685522720 IP 88.221.27.74 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-25 22:54:24 Last Seen2024-04-21 01:31:26 Times Seen564 Hash 69e75e0997cdd1b51ef2d8f78358e937 f816503aceb6edd2fd9f0cc3f911b99817ca611d 40c9bae2946917f32864946aabede4750f809cf9f3ab600669faab410b82526c Loading...

	samajo.datlngllfe.net/?s1=100041&s2=1298385&s3=HR&s5=backuser&click_id=1sisi1a1qbpf&iexpp=1&j1=1&utm_source=da57dc555e50572d	0 B	2023-03-07	2024-04-24
Pretty URL samajo.datlngllfe.net/?s1=100041&s2=1298385&s3=HR&s5=backuser&click_id=1sisi1a1qbpf&iexpp=1&j1=1&utm_source=da57dc555e50572d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 01:08:31 Times Seen37028303 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf	326 B	2023-06-01	2023-06-01
Pretty URL samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-01 23:14:17 Last Seen2023-06-01 23:14:17 Times Seen1 Hash 254893df49095217aefc8fa8d019e1d8 b86ecd905f4bca97b3752dbc03e95dd44ada9fe4 1e7701ce3073dcea80f19688562c4cb4bca605e46ef8d2c337562a9022ffb1ed Loading...

	samajo.datlngllfe.net/js/pushjs/1.0.0/utils.js	7.1 kB	2023-03-07	2024-04-21
Pretty URL samajo.datlngllfe.net/js/pushjs/1.0.0/utils.js IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-21 23:30:57 Times Seen4796 Hash 711c7ecda710a342d24faef1dec76ede d1b38489603a2aecc2be5edb4fa4cd8d442fe727 41a5e34d6777a471d63211252ce51555815b728949dc81cec01414f4ffdb98eb Loading...

	www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js	36 kB	2023-03-07	2024-04-21
Pretty URL www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 23:30:58 Times Seen11070 Hash 0cb7a0eb328ea70ab360f861314c8820 e3e20eb50dae36f4cbcef1890b1cc7878acb537a 4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9 Loading...

	www.gstatic.com/firebasejs/5.0.2/firebase-app.js	25 kB	2023-03-07	2024-04-21
Pretty URL www.gstatic.com/firebasejs/5.0.2/firebase-app.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 23:30:58 Times Seen10994 Hash 9164d0e8a317eceb870cca88c9683127 4617c910005f7100b4ff26a458a8b4463e33cdc6 15c9bd66992ef54979c981763cae280f28b6845520020ed38b5ab5f3f70f7931 Loading...

HTTP Transactions (24)

	URL	IP	Response	Size
	repita.monster/m/index.php?p=Kzp4jsn	172.67.144.159		0 B
URL repita.monster/m/index.php?p=Kzp4jsn IP 172.67.144.159:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /m/index.php?p=Kzp4jsn HTTP/1.1 Host: repita.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 301 Moved Permanently Date: Thu, 01 Jun 2023 21:13:58 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Thu, 01 Jun 2023 22:13:58 GMT Location: https://repita.monster/m/index.php?p=Kzp4jsn Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=igtEKNY7pcwsdS2jMI1BldUFepBpl1ouSAkjhE%2BSbZ1sstCd6bQFLJw4tNO0qpfzLcfvz4xJvv6VA7Yrzs85QTS7Khqc45xNrg2nrspAlMaJ9vwh29sT4BKncQxJk21hYQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7d0a76aacc9ab4ff-OSL alt-svc: h2=":443"; ma=60

	cdn-dimi.akamaized.net/landings/279205/1685522720/css/reset.min.css?1685522720	88.221.27.74	200 OK	527 B
URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1685522720/css/reset.min.css?1685522720 IP 88.221.27.74:443 ASN #20940 Akamai International B.V. Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type CSV text\012- , ASCII text Size 527 B (527 bytes) Hash 36f11c31f5b3885dc017f41ed8f5817c e928be87b659d200361c277fcc3ed1fd13b2a472 b59fdf3a529889ad3a8d013a347d5586f3da8361e71291cc9215edb830d1e45e HTTP Headers `GET /landings/279205/1685522720/css/reset.min.css?1685522720 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK x-amz-id-2: KiMg8+9q3ArevHEYYGgWMMicRHppls/jb2S7yJebRtM1fztRhTCDd8NQrdFzD8EzLmz8hAKVs30= x-amz-request-id: D1XJ7E6XA19M2JN2 Last-Modified: Wed, 31 May 2023 08:45:22 GMT ETag: "36f11c31f5b3885dc017f41ed8f5817c" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Content-Type: text/css Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Thu, 01 Jun 2023 21:13:59 GMT Content-Length: 527 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

	cdn-dimi.akamaized.net/landings/279205/1685522720/css/style.css?1685522720	88.221.27.74	200 OK	1.8 kB
URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1685522720/css/style.css?1685522720 IP 88.221.27.74:443 ASN #20940 Akamai International B.V. Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type ASCII text Size 1.8 kB (1835 bytes) Hash 50e68ca989043b052b196b593868c50d 7a4de8942d19d16e9e83445404fafecb0616f971 163b87d940693d2035ff0a922f4fbebbba23f553520fbb4a400b739c16f862aa HTTP Headers `GET /landings/279205/1685522720/css/style.css?1685522720 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK x-amz-id-2: NQsRCNPePDo2YjPmtFNw8uAcEcfyYEV90FlEI2Spf3BvXKwI2EpT6pros5GPXpJ/FlOIJNOUv+w= x-amz-request-id: D1XH2AP9NEY1FK3X Last-Modified: Wed, 31 May 2023 08:45:22 GMT ETag: "50e68ca989043b052b196b593868c50d" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Content-Type: text/css Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Thu, 01 Jun 2023 21:13:59 GMT Content-Length: 1835 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

	cdn-dimi.akamaized.net/landings/279205/1685522720/js/scripts.js?1685522720	88.221.27.74	200 OK	511 B
URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1685522720/js/scripts.js?1685522720 IP 88.221.27.74:443 ASN #20940 Akamai International B.V. Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type ASCII text Size 511 B (511 bytes) Hash 69e75e0997cdd1b51ef2d8f78358e937 f816503aceb6edd2fd9f0cc3f911b99817ca611d 40c9bae2946917f32864946aabede4750f809cf9f3ab600669faab410b82526c HTTP Headers `GET /landings/279205/1685522720/js/scripts.js?1685522720 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: aBB8s78f2NXMLMdU6r0rxGUyIgutD9b27QtRH4Bh8RtI0qVYBMIEfBiTDcvvK8bv1zpQ1MJRsSo= x-amz-request-id: Q0D96H9W9XCS2CFE Last-Modified: Wed, 31 May 2023 08:45:23 GMT ETag: "69e75e0997cdd1b51ef2d8f78358e937" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Content-Length: 511 Date: Thu, 01 Jun 2023 21:13:59 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/279205/1685522720/js/translates.js?1685522720	88.221.27.74	200 OK	8.6 kB
URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1685522720/js/translates.js?1685522720 IP 88.221.27.74:443 ASN #20940 Akamai International B.V. Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type Unicode text, UTF-8 text Size 8.6 kB (8568 bytes) Hash 09375f18dc5bfd539f211887b6a178e6 01151d9836502715a56f01db102da22f462821d2 74e9cb9fca7f14f9de2c6416b1d99b3e28e0fd9c0501c848d8276de3a7036d5c HTTP Headers `GET /landings/279205/1685522720/js/translates.js?1685522720 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK x-amz-id-2: 9PcvGuJ0v2cdFKaNP+MeZ42Z8HJWw5DZfadefh9HwAdBaVDjyx/rnHeDQ2+ehmK1jzNpXNdNpFc= x-amz-request-id: D1XX4MYAHJWD6383 Last-Modified: Wed, 31 May 2023 08:45:23 GMT ETag: "09375f18dc5bfd539f211887b6a178e6" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Thu, 01 Jun 2023 21:13:59 GMT Content-Length: 8568 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

	cdn-dimi.akamaized.net/landings/279205/1685522720/js/jquery.min.js?1685522720	88.221.27.74	200 OK	30 kB
URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1685522720/js/jquery.min.js?1685522720 IP 88.221.27.74:443 ASN #20940 Akamai International B.V. Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type ASCII text, with very long lines (32065) Size 30 kB (29855 bytes) Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e HTTP Headers `GET /landings/279205/1685522720/js/jquery.min.js?1685522720 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK x-amz-id-2: kVTNNi8nf8LYG5Xh2j4IvP//javELSA0r09oKgEZ8OP6AV5AvYwobtCTA6CddEl7LnaTUJxb+E8= x-amz-request-id: D1XV932BDH842S4F Last-Modified: Wed, 31 May 2023 08:45:23 GMT ETag: "2f6b11a7e914718e0290410e85366fe9" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Thu, 01 Jun 2023 21:13:59 GMT Content-Length: 29855 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

	cdn-dimi.akamaized.net/landings/279205/1685522720/images/girl-ico.png	88.221.27.74	200 OK	1.5 kB
URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1685522720/images/girl-ico.png IP 88.221.27.74:443 ASN #20940 Akamai International B.V. Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data Size 1.5 kB (1540 bytes) Hash 87fa20787233a7ac89d1ee83563832c6 2fd58653f791912508d469a274fbdffbc7177bf6 2cb1de63c827301236cb47fc705964c827deb48b360148e11a28c15ea9ef66d0 HTTP Headers `GET /landings/279205/1685522720/images/girl-ico.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: b1cGVXmhZTGfYIjbDP100JGYQfTQkOze2YGsE7fDC5cnDySsQWHTlDRVYDQI+QzXN5l2eUtuPYo= x-amz-request-id: EDPQNFVY2FBBJR58 Last-Modified: Wed, 31 May 2023 08:45:22 GMT ETag: "87fa20787233a7ac89d1ee83563832c6" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Content-Type: image/png Server: AmazonS3 Content-Length: 1540 Date: Thu, 01 Jun 2023 21:13:59 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/279205/1685522720/images/logo.svg	88.221.27.74	200 OK	11 kB
URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1685522720/images/logo.svg IP 88.221.27.74:443 ASN #20940 Akamai International B.V. Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4864) Size 11 kB (10652 bytes) Hash 89efea4d57e53488be96c41f813895c2 4ace0a06591c30d245809c58f7cf3aad9e602959 ea91bcc64cbe5159a96da591bdec4939528366b64226c688cc4462baf74dfdd3 HTTP Headers `GET /landings/279205/1685522720/images/logo.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: qVI+5DhulWdaFfpJff77QXAIWc+M5SYtWz6VJpEU798+ZqJxEVnboMh8nCXrImmKjcMaxfZtTKI= x-amz-request-id: GYYMDWY58S5NHTKA Last-Modified: Wed, 31 May 2023 08:45:22 GMT ETag: "89efea4d57e53488be96c41f813895c2" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Content-Type: image/svg+xml Server: AmazonS3 Content-Length: 10652 Date: Thu, 01 Jun 2023 21:13:59 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 02593b51cd737e1085e5837a9a47c755 aab410449655b9fddf070f3e25a1a8e5aee59530 0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Jun 2023 21:13:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.googleapis.com/css2?family=Lato:wght@400;700&display=swap	142.250.74.106	200 OK	866 B
URL GET HTTP/2 fonts.googleapis.com/css2?family=Lato:wght@400;700&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT File type gzip compressed data, max compression\012- data Size 866 B (866 bytes) Hash d4ae726950274ac7d1c67548ae73a56e 3814a8a6615bb353d185808630811f944f492b1f 8ff61b8e4ad456e6fb1dc229825ab49e01c3dd88425708f95f4aa6d941958669 HTTP Headers `GET /css2?family=Lato:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 01 Jun 2023 21:13:59 GMT date: Thu, 01 Jun 2023 21:13:59 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	samajo.datlngllfe.net/ortb	63.32.216.166	200 OK	29 B
URL POST HTTP/2 samajo.datlngllfe.net/ortb IP 63.32.216.166:443 ASN #16509 AMAZON-02 Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerLet's Encrypt Subject.datlngllfe.net FingerprintBF:C4:6A:8D:AF:33:2D:58:A2:98:1E:3F:79:29:E2:B6:53:C6:AA:F9 ValidityFri, 28 Apr 2023 08:33:34 GMT - Thu, 27 Jul 2023 08:33:33 GMT File type JSON data\012- , ASCII text, with no line terminators Size 29 B (29 bytes) Hash c453d1e33844d14bbd7ec2846eb408f6 b934f52ed7fbed0cee5874cb0fcafdd1cb450fcd 2b159267580e469b4eed0aaf47253e353fdf727043d52d969bd85cbff7fd4a1a HTTP Headers POST /ortb HTTP/1.1 Host: samajo.datlngllfe.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/javascript, /*; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 332 Origin: https://samajo.datlngllfe.net DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/?s1=100041&s2=1298385&s3=HR&s5=backuser&click_id=1sisi1a1qbpf&iexpp=1&j1=1&utm_source=da57dc555e50572d Cookie: unique_id=64790a080008721e; unique_id2=64779c9a00060765; 64779c9a00060765_c=1; ref_token=100041; 64779c9a00060765_sl=[279205] Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Thu, 01 Jun 2023 21:13:59 GMT content-type: text/plain; charset=utf-8 content-length: 29 X-Firefox-Spdy: h2`

	repita.monster/m/r.php?p=Kzp4jsn	172.67.144.159	302 Found	1.1 MB
URL User Request GET HTTP/3 repita.monster/m/r.php?p=Kzp4jsn IP 172.67.144.159:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectrepita.monster Fingerprint8B:7B:89:F0:64:5A:B6:D2:EC:F4:78:4F:8E:E5:2F:C8:69:88:CE:BB ValidityThu, 01 Jun 2023 00:42:35 GMT - Wed, 30 Aug 2023 00:42:34 GMT File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data Size 1.1 MB (1132123 bytes) Hash d5f9fbb8667b2e86bbaaf15275a9be13 c84c479303ff26a5d32ef557e379fbe8b13feca2 80206cf6a74ae1964057fa05d339f7edb224536a94b91c235205710feed9e027 HTTP Headers GET /m/r.php?p=Kzp4jsn HTTP/1.1 Host: repita.monster User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: yaw=1 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 302 Found date: Thu, 01 Jun 2023 21:13:58 GMT content-type: text/html; charset=UTF-8 location: https://your.safefollow.life/xbd4YUx15ZpK?cd=1685654038&p=Kzp4jsn cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SQNoHsuqvDa78ZF41NhNbtfXKqNaTyhw0%2BfIB4kbxpYn5qiZJW4H8dRMmzi8UUIn0MsDnxCawi%2B0RCBu5naDHqs2%2B%2B3DAYFDcsvG5K6cP%2BpoTlVjlVmxHfTpCIIjAaI4CQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d0a76ad6e98b511-OSL alt-svc: h3=":443"; ma=86400

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash de06f6fcbc144014f20c63dd5fe236b4 7f10e556cc7c7786c031a226d3efc006f8511c28 ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Jun 2023 21:13:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2	142.250.74.131	200 OK	24 kB
URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP 142.250.74.131:443 ASN #15169 GOOGLE Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6 ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data Size 24 kB (23580 bytes) Hash e1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537 HTTP Headers GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://samajo.datlngllfe.net DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23580 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 30 May 2023 17:30:39 GMT expires: Wed, 29 May 2024 17:30:39 GMT cache-control: public, max-age=31536000 age: 186201 last-modified: Tue, 02 May 2023 15:17:22 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2	142.250.74.131	200 OK	23 kB
URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP 142.250.74.131:443 ASN #15169 GOOGLE Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6 ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data Size 23 kB (23040 bytes) Hash de69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49 HTTP Headers GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://samajo.datlngllfe.net DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23040 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 30 May 2023 17:30:39 GMT expires: Wed, 29 May 2024 17:30:39 GMT cache-control: public, max-age=31536000 age: 186201 last-modified: Tue, 02 May 2023 15:07:25 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash de06f6fcbc144014f20c63dd5fe236b4 7f10e556cc7c7786c031a226d3efc006f8511c28 ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Jun 2023 21:14:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn-dimi.akamaized.net/landings/279205/1685522720/images/favicon.ico?t=20230601211359	88.221.27.74	200 OK	14 kB
URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1685522720/images/favicon.ico?t=20230601211359 IP 88.221.27.74:443 ASN #20940 Akamai International B.V. Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel\012- data Size 14 kB (13868 bytes) Hash 135aeed168833e38d0839e1709e41891 a689caccb7b0a9918ff731bef2a1e3d04aff07ec 74d44e795ea62dcb66e995bfc7a0914e4fb64041567e05cc9118cfc8608caa45 HTTP Headers `GET /landings/279205/1685522720/images/favicon.ico?t=20230601211359 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: 3zzCo+Fj7NoZM9XELK7DZh2dLtEz1AnjepJCNaHLMdCZsjUo602azmCO9Y7V3eRkvGDV6iilAuY= x-amz-request-id: 45SG0CYSZKJJDA32 Last-Modified: Wed, 31 May 2023 08:45:22 GMT ETag: "135aeed168833e38d0839e1709e41891" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Content-Type: image/x-icon Server: AmazonS3 Content-Length: 13868 Date: Thu, 01 Jun 2023 21:14:00 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js	142.250.74.35	200 OK	10 kB
URL GET HTTP/2 www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6 ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT File type ASCII text, with very long lines (35547) Size 10 kB (10017 bytes) Hash 0cb7a0eb328ea70ab360f861314c8820 e3e20eb50dae36f4cbcef1890b1cc7878acb537a 4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9 HTTP Headers `GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 10017 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 30 May 2023 21:40:29 GMT expires: Wed, 29 May 2024 21:40:29 GMT cache-control: public, max-age=31536000 age: 171211 last-modified: Thu, 10 May 2018 20:35:52 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.gstatic.com/firebasejs/5.0.2/firebase-app.js	142.250.74.35	200 OK	8.6 kB
URL GET HTTP/2 www.gstatic.com/firebasejs/5.0.2/firebase-app.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6 ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT File type ASCII text, with very long lines (25088) Size 8.6 kB (8604 bytes) Hash 9164d0e8a317eceb870cca88c9683127 4617c910005f7100b4ff26a458a8b4463e33cdc6 15c9bd66992ef54979c981763cae280f28b6845520020ed38b5ab5f3f70f7931 HTTP Headers `GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 8604 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 30 May 2023 17:31:35 GMT expires: Wed, 29 May 2024 17:31:35 GMT cache-control: public, max-age=31536000 age: 186145 last-modified: Thu, 10 May 2018 20:35:51 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf	63.32.216.166	200 OK	39 kB
URL User Request GET HTTP/2 samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf IP 63.32.216.166:443 ASN #16509 AMAZON-02 Certificate IssuerLet's Encrypt Subject.datlngllfe.net FingerprintBF:C4:6A:8D:AF:33:2D:58:A2:98:1E:3F:79:29:E2:B6:53:C6:AA:F9 ValidityFri, 28 Apr 2023 08:33:34 GMT - Thu, 27 Jul 2023 08:33:33 GMT File type Size 39 kB (38917 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf HTTP/1.1 Host: samajo.datlngllfe.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Thu, 01 Jun 2023 21:13:59 GMT content-type: text/html; charset=utf-8 set-cookie: unique_id=64790a080008721e; Path=/; Expires=Mon, 31 Jul 2023 21:13:59 GMT; Secure; SameSite=None unique_id2=64779c9a00060765; Path=/; Expires=Wed, 30 Aug 2023 21:13:59 GMT; Secure; SameSite=None 64779c9a00060765_c=1; Path=/; Expires=Wed, 30 Aug 2023 21:13:59 GMT; Secure; SameSite=None ref_token=100041; Path=/; Expires=Sat, 01 Jul 2023 21:13:59 GMT; Secure; SameSite=None impression=; Path=/; Expires=Thu, 01 Jun 2023 21:13:59 GMT; Secure; SameSite=None 64779c9a00060765_sl=[279205]; Path=/; Expires=Thu, 15 Jun 2023 21:13:59 GMT; Secure; SameSite=None content-encoding: gzip X-Firefox-Spdy: h2

	samajo.datlngllfe.net/js/pushjs/1.0.0/utils.js	63.32.216.166	200 OK	7.1 kB
URL GET HTTP/2 samajo.datlngllfe.net/js/pushjs/1.0.0/utils.js IP 63.32.216.166:443 ASN #16509 AMAZON-02 Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerLet's Encrypt Subject.datlngllfe.net FingerprintBF:C4:6A:8D:AF:33:2D:58:A2:98:1E:3F:79:29:E2:B6:53:C6:AA:F9 ValidityFri, 28 Apr 2023 08:33:34 GMT - Thu, 27 Jul 2023 08:33:33 GMT File type C source, ASCII text, with very long lines (7334), with no line terminators Size 7.1 kB (7071 bytes) Hash 7df62062a027cd25d5a179c520f38668 0ddaa8cd9090908d987e0299cef74fbf7f118738 cdf93aff990bae251f609ef00d7d2bdbb56a35f003c7184ba067b5948629faa3 HTTP Headers GET /js/pushjs/1.0.0/utils.js HTTP/1.1 Host: samajo.datlngllfe.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/?s1=100041&s2=1298385&s3=HR&s5=backuser&click_id=1sisi1a1qbpf&iexpp=1&j1=1&utm_source=da57dc555e50572d Cookie: unique_id=64790a080008721e; unique_id2=64779c9a00060765; 64779c9a00060765_c=1; ref_token=100041; 64779c9a00060765_sl=[279205] Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Thu, 01 Jun 2023 21:14:00 GMT content-type: application/javascript expires: Thu, 08 Jun 2023 21:14:00 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2`

	your.safefollow.life/xbd4YUx15ZpK?cd=1685654038&p=Kzp4jsn	104.21.55.24	302 Found	39 kB
URL User Request GET HTTP/2 your.safefollow.life/xbd4YUx15ZpK?cd=1685654038&p=Kzp4jsn IP 104.21.55.24:443 ASN #13335 CLOUDFLARENET Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC3:5B:99:52:E3:F8:D4:BD:02:A5:A5:93:89:70:DB:B4:9A:AA:BF:9A ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT File type Size 39 kB (38917 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /xbd4YUx15ZpK?cd=1685654038&p=Kzp4jsn HTTP/1.1 Host: your.safefollow.life User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found date: Thu, 01 Jun 2023 21:13:58 GMT content-type: text/html; charset=UTF-8 location: https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf set-cookie: PHPSESSID=9kajra85mccujapa37k5ohh2n9; expires=Thu, 01-Jun-2023 21:37:58 GMT; Max-Age=1440; path=/ _subid=1sisi1a1qbpf; expires=Fri, 02-Jun-2023 21:13:58 GMT; Max-Age=86400; path=/; domain=.your.safefollow.life db192=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE2XCI6MTY4NTY1NDAzOH0sXCJjYW1wYWlnbnNcIjp7XCIxXCI6MTY4NTY1NDAzOH0sXCJ0aW1lXCI6MTY4NTY1NDAzOH0ifQ.zhJEsqmmS3b4BAiyAj1KglsHWeD03ASEJ7VhkMJ0KKA; expires=Fri, 02-Jun-2023 21:13:58 GMT; Max-Age=86400; path=/; domain=.your.safefollow.life _token=uuid_1sisi1a1qbpf_1sisi1a1qbpf64790a16c696a5.55610643; expires=Fri, 02-Jun-2023 21:13:58 GMT; Max-Age=86400; path=/; domain=.your.safefollow.life expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xpfB4NDCRiINkCDgocmAqnNtL0dpucpuUyZ5ROTZ%2BW3be09eqwiJC1HzYngK4nO5qdcq2k9WKnAgkAi%2B9CZ4dJvqnGiwz4fb9V9CJeJS7aGLs1iuTN1C9rjtjIUGehmIVqy1AH3dWg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d0a76adde1efac0-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	samajo.datlngllfe.net/js/pushjs/1.0.0/subscriber.js	63.32.216.166	200 OK	9.4 kB
URL GET HTTP/2 samajo.datlngllfe.net/js/pushjs/1.0.0/subscriber.js IP 63.32.216.166:443 ASN #16509 AMAZON-02 Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerLet's Encrypt Subject.datlngllfe.net FingerprintBF:C4:6A:8D:AF:33:2D:58:A2:98:1E:3F:79:29:E2:B6:53:C6:AA:F9 ValidityFri, 28 Apr 2023 08:33:34 GMT - Thu, 27 Jul 2023 08:33:33 GMT File type C source text\012- troff or preprocessor input, ASCII text, with very long lines (9653), with no line terminators Size 9.4 kB (9389 bytes) Hash 84b622eb79d84a20b4fb5d3e2e122e2a 73eb77325e2b070e36f393eb4db66fa5af549ac6 514e603036c84a1e1afbc3b0eb748362dbd294f6af16bf88637d7b27f7a224dc HTTP Headers GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1 Host: samajo.datlngllfe.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/?s1=100041&s2=1298385&s3=HR&s5=backuser&click_id=1sisi1a1qbpf&iexpp=1&j1=1&utm_source=da57dc555e50572d Cookie: unique_id=64790a080008721e; unique_id2=64779c9a00060765; 64779c9a00060765_c=1; ref_token=100041; 64779c9a00060765_sl=[279205] Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Thu, 01 Jun 2023 21:13:59 GMT content-type: application/javascript expires: Thu, 08 Jun 2023 21:13:59 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2`

	cdn-dimi.akamaized.net/landings/279205/1685522720/images/video-1.mp4	88.221.27.74	206 Partial Content	1.1 MB
URL GET HTTP/1.1 cdn-dimi.akamaized.net/landings/279205/1685522720/images/video-1.mp4 IP 88.221.27.74:443 ASN #20940 Akamai International B.V. Requested by https://samajo.datlngllfe.net/?utm_source=da57dc555e50572d&s1=100041&s2=1298385&s3=HR&j1=1&click_id=1sisi1a1qbpf Certificate IssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data Size 1.1 MB (1132123 bytes) Hash 5f1762c6615bcc593fb79fd58ef01d36 262e8ccfe53fc59f416364fbaa155ff9adf43c57 5f998d8dbe4d46f170d34786b1df3bcb7f9ee4c21fdfe16430a7c630d8838fa6 HTTP Headers GET /landings/279205/1685522720/images/video-1.mp4 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: video/webm,video/ogg,video/;q=0.9,application/ogg;q=0.7,audio/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- DNT: 1 Connection: keep-alive Referer: https://samajo.datlngllfe.net/ Sec-Fetch-Dest: video Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Accept-Encoding: identity Pragma: no-cache Cache-Control: no-cache HTTP/1.1 206 Partial Content x-amz-id-2: UIrILt25SDV/1J0Tnw51ttYJXSM1fc4EBn8OPBruN6zjVP3brK1IiUJ3ESlh/wuYaQMmH8b9b8Y= x-amz-request-id: GYYYEEAVKX76A621 Last-Modified: Wed, 31 May 2023 08:45:22 GMT ETag: "d5f9fbb8667b2e86bbaaf15275a9be13" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Content-Type: video/mp4 Server: AmazonS3 Date: Thu, 01 Jun 2023 21:13:59 GMT Content-Range: bytes 0-1132122/1132123 Content-Length: 1132123 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML