Report - jumhaja.com/bhbatkidz_goa/?srv=kidzo&p=libh&ad=goa&pubid=$PUBID&aff

Report Overview

Submitted URL
jumhaja.com/bhbatkidz_goa/?srv=kidzo&p=libh&ad=goa&pubid=$PUBID&aff_sub=$PIXEL
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-23 17:05:59
Access
public
Website Title
Gazy
Final URL
batelcokidzoo.mpx.mobi:7326/etc/terms
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-22	936 B	63 kB	151.101.130.137
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-23	950 B	47 kB	142.250.74.106
jumhaja.com	unknown	2021-12-20	2021-12-21	2024-02-18	532 B	7.1 kB	188.114.96.1
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-22	2.2 kB	136 kB	216.58.207.227
mediaworldsdp.com	unknown	2021-11-17	2021-11-17	2024-02-18	1.4 kB	16 kB	172.67.170.167
helm.tekmob.com	unknown	2003-10-08	2015-03-14	2024-04-19	777 B	7.3 kB	193.126.233.67
	unknown				6.6 kB	1.7 MB	65.1.74.55
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-23	872 B	33 kB	151.101.129.229

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

JavaScript (0)

HTTP Transactions (30)

	URL	IP	Response	Size
	batelcokidzoo.mpx.mobi:7326/lp1?adnet=goa&pixel=goa-$PIXEL	65.1.74.55		6.8 kB
URL batelcokidzoo.mpx.mobi:7326/lp1?adnet=goa&pixel=goa-$PIXEL IP 65.1.74.55:0 ASN #16509 AMAZON-02 File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators Size 6.8 kB (6758 bytes) Hash b2fae89e49d29e4879068112a90b3656 a551375c8ae44619d84ad5a9ff77280482ad9036 00e786705eb89ae5dee36a7dbcc952277be9c83080524a835320f23d5ec9fd28 HTTP Headers `GET /lp1?adnet=goa&pixel=goa-$PIXEL HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:34 GMT Transfer-Encoding: chunked`

	cdn.jsdelivr.net/npm/axios/dist/axios.min.js	151.101.129.229	200 OK	16 kB
URL GET HTTP/3 cdn.jsdelivr.net/npm/axios/dist/axios.min.js IP 151.101.129.229:443 ASN #54113 FASTLY Requested by http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type JavaScript source, ASCII text, with very long lines (41442) Size 16 kB (15850 bytes) Hash 3b5b3d36fde8ffe8ed76b1efbfc65410 d63107d0912fdb387530d5ce2d512c928d73d122 29d600462a30694efd15b9848b4ca42d178cd067009275c35a30580121114304 HTTP Headers `GET /npm/axios/dist/axios.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=604800, s-maxage=43200 cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 1.6.8 x-jsd-version-type: version etag: W/"a209-1jEH0JEv2zh1MNXOLVEsko1z0SI" content-encoding: br accept-ranges: bytes date: Tue, 23 Apr 2024 17:05:34 GMT age: 10704 x-served-by: cache-fra-etou8220107-FRA, cache-hel1410034-HEL x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 15850 X-Firefox-Spdy: h2

	code.jquery.com/jquery-3.6.0.min.js	151.101.130.137	200 OK	31 kB
URL GET HTTP/2 code.jquery.com/jquery-3.6.0.min.js IP 151.101.130.137:443 ASN #54113 FASTLY Requested by http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn Certificate IssuerSectigo Limited Subject.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65447) Size 31 kB (30875 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers `GET /jquery-3.6.0.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://batelcokidzoo.mpx.mobi:7326 DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx content-type: application/javascript; charset=utf-8 last-modified: Fri, 18 Oct 1991 12:00:00 GMT etag: W/"28feccc0-15d9d" cache-control: public, max-age=31536000, stale-while-revalidate=604800 access-control-allow-origin: * content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Tue, 23 Apr 2024 17:05:34 GMT age: 6349554 x-served-by: cache-lga21931-LGA, cache-hel1410024-HEL x-cache: HIT, HIT x-cache-hits: 22, 499705 x-timer: S1713891935.604584,VS0,VE0 vary: Accept-Encoding content-length: 30875 X-Firefox-Spdy: h2

	batelcokidzoo.mpx.mobi:7326/static/lp/style.css	65.1.74.55	200 OK	1.5 kB
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/static/lp/style.css IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms File type ASCII text, with CRLF line terminators Size 1.5 kB (1537 bytes) Hash a504386c52fbba40d6b690dcf078f392 c1cbe1f4587b791b558ba301e271e4842aed44bf 0722625518307dda86564815d459300ac6e6b8beec705300205fcad00e8b6142 HTTP Headers `GET /static/lp/style.css HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/lp1?adnet=goa&pixel=goa-$PIXEL Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 1537 Content-Type: text/css; charset=utf-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:34 GMT`

	fonts.googleapis.com/css2?family=Montserrat:wght@400;700&display=swap	142.250.74.106	200 OK	12 kB
URL GET HTTP/3 fonts.googleapis.com/css2?family=Montserrat:wght@400;700&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT File type gzip compressed data, max compression Size 12 kB (12146 bytes) Hash af0e059d1a222d892700460e64dc3589 b371745ce29c18c4a1b4d8edfa910b1e149c703b 127aecd9cd67daf8cdfabd1bbc1f299842f9dbb3b005a5a864010efd83fb0dd5 HTTP Headers `GET /css2?family=Montserrat:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 23 Apr 2024 17:05:34 GMT date: Tue, 23 Apr 2024 17:05:34 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	jumhaja.com/bhbatkidz_goa/?srv=kidzo&p=libh&ad=goa&pubid=$PUBID&aff_sub=$PIXEL	188.114.96.1		6.4 kB
URL jumhaja.com/bhbatkidz_goa/?srv=kidzo&p=libh&ad=goa&pubid=$PUBID&aff_sub=$PIXEL IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type data Size 6.4 kB (6421 bytes) Hash 03d519fd603cb2a46109859cb97983eb 92b939b270b6bdcc2db18079dc5ee09bdd3c11f3 e83a0237fe347e7aa6005ea5a3df6382b62c34ee83e6c819f1f623067b12a156 HTTP Headers GET /bhbatkidz_goa/?srv=kidzo&p=libh&ad=goa&pubid=$PUBID&aff_sub=$PIXEL HTTP/1.1 Host: jumhaja.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found date: Tue, 23 Apr 2024 17:05:33 GMT content-type: text/html location: http://batelcokidzoo.mpx.mobi:7326/lp1?adnet=goa&pixel=goa-$PIXEL x-powered-by: PHP/5.5.38 cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Acl83bH8FIXYQMhFopxy4TV44RDG%2FSrh6UzEkTDgDdKmoNsHhja5%2FJJBcrnGKK0PBDnkIqlq742n8AAGPgg2zsBFzFPkX%2B5leg2htVZfxB2boKUlol%2BK4umGWAMKyA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 878f70671929b509-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	batelcokidzoo.mpx.mobi:7326/static/lp/css/mdb.dark.rtl.min.css	65.1.74.55	200 OK	315 kB
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/static/lp/css/mdb.dark.rtl.min.css IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators Size 315 kB (315015 bytes) Hash 7776262867c5633c02e32103af151c43 3eac1a3077f5cdca571a680ac3f8986c9c4a5f1d dd2832741285f5e871c1abe7ee987c420e3ef85c220c4e5f8a6d22c93a7ff627 HTTP Headers `GET /static/lp/css/mdb.dark.rtl.min.css HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/lp1?adnet=goa&pixel=goa-$PIXEL Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 315015 Content-Type: text/css; charset=utf-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:34 GMT`

	fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2	216.58.207.227	200 OK	33 kB
URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT File type Web Open Font Format (Version 2), TrueType, length 33092, version 1.0 Size 33 kB (33092 bytes) Hash 057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b HTTP Headers GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://batelcokidzoo.mpx.mobi:7326 DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 33092 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 18 Apr 2024 02:38:02 GMT expires: Fri, 18 Apr 2025 02:38:02 GMT cache-control: public, max-age=31536000 age: 484053 last-modified: Wed, 13 Sep 2023 22:51:58 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2	216.58.207.227	200 OK	33 kB
URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT File type Web Open Font Format (Version 2), TrueType, length 33092, version 1.0 Size 33 kB (33092 bytes) Hash 057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b HTTP Headers GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://batelcokidzoo.mpx.mobi:7326 DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 33092 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 18 Apr 2024 02:38:02 GMT expires: Fri, 18 Apr 2025 02:38:02 GMT cache-control: public, max-age=31536000 age: 484053 last-modified: Wed, 13 Sep 2023 22:51:58 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	batelcokidzoo.mpx.mobi:7326/static/lp/js/mdb.min.js	65.1.74.55	200 OK	239 kB
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/static/lp/js/mdb.min.js IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn File type JavaScript source, Unicode text, UTF-8 text, with very long lines (43926), with CRLF, NEL line terminators Size 239 kB (239149 bytes) Hash 0f84cede1727f72ecb7e97605926e93c 3502713f821e1da4a1906b6b3efc2bb589656491 cba8d69c9b98611e31af8209494e22f406230c5b14866de91526eb4cf95e4794 HTTP Headers `GET /static/lp/js/mdb.min.js HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/lp1?adnet=goa&pixel=goa-$PIXEL Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 239149 Content-Type: text/javascript; charset=utf-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:34 GMT`

	batelcokidzoo.mpx.mobi:7326/static/img/loading.gif	65.1.74.55	200 OK	12 kB
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/static/img/loading.gif IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn File type GIF image data, version 89a, 160 x 24 Size 12 kB (11516 bytes) Hash 54a916a4a0bfa41abd441e27b299a4cf 5d54f053177bd12d22f51a4a2f741ceff43d263a 4b212f856c231193e5812df0c9aba17e4eb8d16974cc8b286aaecb4158e445f3 HTTP Headers `GET /static/img/loading.gif HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/lp1?adnet=goa&pixel=goa-$PIXEL Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 11516 Content-Type: image/gif Vary: Origin Date: Tue, 23 Apr 2024 17:05:35 GMT`

	mediaworldsdp.com/en/admin/msisdn_decryption/Y0VqVCtYM3BaVFZwdHd5R1ZjTkRRWkw0eW5nTFhWRHMrem1BYXNLallVSTBFaFBtZDJ3OHhqV2Nva2NIZUV5aFdYNytxZFlNdDJwNzRkNE10MGtzZFVxaUczSENwTTJVOCtYNFhlTzJGRmM9	172.67.170.167	302 Found	7.0 kB
URL User Request GET HTTP/3 mediaworldsdp.com/en/admin/msisdn_decryption/Y0VqVCtYM3BaVFZwdHd5R1ZjTkRRWkw0eW5nTFhWRHMrem1BYXNLallVSTBFaFBtZDJ3OHhqV2Nva2NIZUV5aFdYNytxZFlNdDJwNzRkNE10MGtzZFVxaUczSENwTTJVOCtYNFhlTzJGRmM9 IP 172.67.170.167:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectmediaworldsdp.com Fingerprint52:6C:2B:F2:C2:21:E0:31:23:D3:22:D5:F2:B2:5D:CB:1D:E4:AA:46 ValidityTue, 12 Mar 2024 01:27:20 GMT - Mon, 10 Jun 2024 01:27:19 GMT File type JavaScript source, Unicode text, UTF-8 text, with CRLF, LF line terminators Size 7.0 kB (6982 bytes) Hash 9bd1c21a2c9918829751d8f9f76ffc28 0efbbeec3497a101e8c37a0c367378f1abece3a8 658b17a930c6fd86b5a2aee273076aca8ff59806bd5db452d19d3436f187b435 HTTP Headers GET /en/admin/msisdn_decryption/Y0VqVCtYM3BaVFZwdHd5R1ZjTkRRWkw0eW5nTFhWRHMrem1BYXNLallVSTBFaFBtZDJ3OHhqV2Nva2NIZUV5aFdYNytxZFlNdDJwNzRkNE10MGtzZFVxaUczSENwTTJVOCtYNFhlTzJGRmM9 HTTP/1.1 Host: mediaworldsdp.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://batelcokidzoo.mpx.mobi:7326/ DNT: 1 Connection: keep-alive Cookie: PHPSESSID=ktuliqst6jpa90tb07fq847qog; lang=en Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 302 Found date: Tue, 23 Apr 2024 17:05:36 GMT content-type: text/html; charset=UTF-8 location: http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache x-serve: sdp-app1 cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h5O8dQ14i233%2FJ8E1ETy3GlkT9Oa9QFjZb9SmjjYvcHHICJKwFPtO8Vvf7VkasHn2RcfvWAw5IbaLhX5dxPygOB4VgrTBl5vOUZpVL4boqcpr73U%2FMl9FgteHhCMW%2B8oApyxFg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 878f707bfa6a5689-OSL alt-svc: h3=":443"; ma=86400

	cdn.jsdelivr.net/npm/axios/dist/axios.min.js	151.101.129.229	200 OK	16 kB
URL GET HTTP/3 cdn.jsdelivr.net/npm/axios/dist/axios.min.js IP 151.101.129.229:443 ASN #54113 FASTLY Requested by http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type JavaScript source, ASCII text, with very long lines (41442) Size 16 kB (15850 bytes) Hash 3b5b3d36fde8ffe8ed76b1efbfc65410 d63107d0912fdb387530d5ce2d512c928d73d122 29d600462a30694efd15b9848b4ca42d178cd067009275c35a30580121114304 HTTP Headers `GET /npm/axios/dist/axios.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-length: 15850 access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=604800, s-maxage=43200 cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 1.6.8 x-jsd-version-type: version etag: W/"a209-1jEH0JEv2zh1MNXOLVEsko1z0SI" content-encoding: br accept-ranges: bytes date: Tue, 23 Apr 2024 17:05:37 GMT age: 10707 x-served-by: cache-fra-etou8220107-FRA, cache-hel1410027-HEL x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

	code.jquery.com/jquery-3.6.0.min.js	151.101.130.137	200 OK	31 kB
URL GET HTTP/2 code.jquery.com/jquery-3.6.0.min.js IP 151.101.130.137:443 ASN #54113 FASTLY Requested by http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn Certificate IssuerSectigo Limited Subject.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65447) Size 31 kB (30875 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers `GET /jquery-3.6.0.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://batelcokidzoo.mpx.mobi:7326 DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx content-type: application/javascript; charset=utf-8 last-modified: Fri, 18 Oct 1991 12:00:00 GMT etag: W/"28feccc0-15d9d" cache-control: public, max-age=31536000, stale-while-revalidate=604800 access-control-allow-origin: * content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Tue, 23 Apr 2024 17:05:37 GMT age: 6349557 x-served-by: cache-lga21931-LGA, cache-hel1410024-HEL x-cache: HIT, HIT x-cache-hits: 22, 499706 x-timer: S1713891937.178746,VS0,VE0 vary: Accept-Encoding content-length: 30875 X-Firefox-Spdy: h2

	batelcokidzoo.mpx.mobi:7326/static/lp/style.css	65.1.74.55	200 OK	1.5 kB
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/static/lp/style.css IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms File type ASCII text, with CRLF line terminators Size 1.5 kB (1537 bytes) Hash a504386c52fbba40d6b690dcf078f392 c1cbe1f4587b791b558ba301e271e4842aed44bf 0722625518307dda86564815d459300ac6e6b8beec705300205fcad00e8b6142 HTTP Headers `GET /static/lp/style.css HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 1537 Content-Type: text/css; charset=utf-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:37 GMT`

	batelcokidzoo.mpx.mobi:7326/static/lp/css/mdb.dark.rtl.min.css	65.1.74.55	200 OK	315 kB
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/static/lp/css/mdb.dark.rtl.min.css IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators Size 315 kB (315015 bytes) Hash 7776262867c5633c02e32103af151c43 3eac1a3077f5cdca571a680ac3f8986c9c4a5f1d dd2832741285f5e871c1abe7ee987c420e3ef85c220c4e5f8a6d22c93a7ff627 HTTP Headers `GET /static/lp/css/mdb.dark.rtl.min.css HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 315015 Content-Type: text/css; charset=utf-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:37 GMT`

	fonts.googleapis.com/css2?family=Montserrat:wght@400;700&display=swap	142.250.74.106	200 OK	34 kB
URL GET HTTP/3 fonts.googleapis.com/css2?family=Montserrat:wght@400;700&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT File type gzip compressed data, max compression Size 34 kB (33659 bytes) Hash a8fd9eaea06f2144e399477a506e3534 3cdf5305da70ddc7c5619c9b1e33f951b2aff3e5 3b1030a6780c06be6c414f4ded3895a085d62b029c2319ca3eac151548ee3fe2 HTTP Headers `GET /css2?family=Montserrat:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 23 Apr 2024 17:05:37 GMT date: Tue, 23 Apr 2024 17:05:37 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2	216.58.207.227	200 OK	33 kB
URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT File type Web Open Font Format (Version 2), TrueType, length 33092, version 1.0 Size 33 kB (33092 bytes) Hash 057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b HTTP Headers GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://batelcokidzoo.mpx.mobi:7326 DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 33092 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 18 Apr 2024 02:38:02 GMT expires: Fri, 18 Apr 2025 02:38:02 GMT cache-control: public, max-age=31536000 age: 484056 last-modified: Wed, 13 Sep 2023 22:51:58 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	batelcokidzoo.mpx.mobi:7326/static/img/loading.gif	65.1.74.55	200 OK	12 kB
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/static/img/loading.gif IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn File type GIF image data, version 89a, 160 x 24 Size 12 kB (11516 bytes) Hash 54a916a4a0bfa41abd441e27b299a4cf 5d54f053177bd12d22f51a4a2f741ceff43d263a 4b212f856c231193e5812df0c9aba17e4eb8d16974cc8b286aaecb4158e445f3 HTTP Headers `GET /static/img/loading.gif HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 11516 Content-Type: image/gif Vary: Origin Date: Tue, 23 Apr 2024 17:05:38 GMT`

	batelcokidzoo.mpx.mobi:7326/static/lp/js/mdb.min.js	65.1.74.55	200 OK	239 kB
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/static/lp/js/mdb.min.js IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn File type JavaScript source, Unicode text, UTF-8 text, with very long lines (43926), with CRLF, NEL line terminators Size 239 kB (239149 bytes) Hash 0f84cede1727f72ecb7e97605926e93c 3502713f821e1da4a1906b6b3efc2bb589656491 cba8d69c9b98611e31af8209494e22f406230c5b14866de91526eb4cf95e4794 HTTP Headers `GET /static/lp/js/mdb.min.js HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 239149 Content-Type: text/javascript; charset=utf-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:37 GMT`

	batelcokidzoo.mpx.mobi:7326/static/lp/img/banner-kidzoo.jpg	65.1.74.55	200 OK	181 kB
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/static/lp/img/banner-kidzoo.jpg IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=1000, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=1000] Size 181 kB (180923 bytes) Hash 8bfc38b42947c2f579df9cb7b6b38c60 8c39830aad7713b99c12c44e0bd34d19668c3942 6f772d5ff0245ffafa6a8a9aa2484c7e8bfd6c949f0c97558e5e339cdaa4c5c3 HTTP Headers `GET /static/lp/img/banner-kidzoo.jpg HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/lp1?adnet=goa&pixel=goa-$PIXEL Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 166565 Content-Type: image/jpeg Vary: Origin Date: Tue, 23 Apr 2024 17:05:35 GMT`

	batelcokidzoo.mpx.mobi:7326/favicon.ico	65.1.74.55	404 Not Found	121 B
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/favicon.ico IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms File type JSON text data Size 121 B (121 bytes) Hash 41971951f33ef284967b863f693823b4 863068f70500028badfc28ee413941cc678ae46f a97e5ad49c9c0fbc6716f6f4dade82a4726aa57373d0dc96e524bb0a3b2a52c0 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 404 Not Found Content-Type: application/json; charset=UTF-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:38 GMT Content-Length: 121`

	batelcokidzoo.mpx.mobi:7326/etc/terms	65.1.74.55	200 OK	2.1 kB
URL User Request GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/etc/terms IP 65.1.74.55:7326 ASN #16509 AMAZON-02 File type HTML document, ASCII text, with CRLF line terminators Size 2.1 kB (2131 bytes) Hash 5cb9487713cc58f0a77202ae65bf83d0 75b45cf57bc9e56b46f7c40225605a1f9d5e790a f994ad15ad89895d498fd68771f3ddb0d172de8d5bb84e281ffdaea9155d7148 HTTP Headers `GET /etc/terms HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:48 GMT Transfer-Encoding: chunked`

	batelcokidzoo.mpx.mobi:7326/static/lp/style.css	65.1.74.55	200 OK	1.5 kB
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/static/lp/style.css IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms File type ASCII text, with CRLF line terminators Size 1.5 kB (1537 bytes) Hash a504386c52fbba40d6b690dcf078f392 c1cbe1f4587b791b558ba301e271e4842aed44bf 0722625518307dda86564815d459300ac6e6b8beec705300205fcad00e8b6142 HTTP Headers `GET /static/lp/style.css HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/etc/terms Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 1537 Content-Type: text/css; charset=utf-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:49 GMT`

	batelcokidzoo.mpx.mobi:7326/static/lp/css/mdb.dark.rtl.min.css	65.1.74.55	200 OK	315 kB
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/static/lp/css/mdb.dark.rtl.min.css IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators Size 315 kB (315015 bytes) Hash 7776262867c5633c02e32103af151c43 3eac1a3077f5cdca571a680ac3f8986c9c4a5f1d dd2832741285f5e871c1abe7ee987c420e3ef85c220c4e5f8a6d22c93a7ff627 HTTP Headers `GET /static/lp/css/mdb.dark.rtl.min.css HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/etc/terms Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 315015 Content-Type: text/css; charset=utf-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:49 GMT`

	fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2	216.58.207.227	200 OK	33 kB
URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT File type Web Open Font Format (Version 2), TrueType, length 33092, version 1.0 Size 33 kB (33092 bytes) Hash 057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b HTTP Headers GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://batelcokidzoo.mpx.mobi:7326 DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 33092 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 18 Apr 2024 02:38:02 GMT expires: Fri, 18 Apr 2025 02:38:02 GMT cache-control: public, max-age=31536000 age: 484068 last-modified: Wed, 13 Sep 2023 22:51:58 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	batelcokidzoo.mpx.mobi:7326/favicon.ico	65.1.74.55	404 Not Found	121 B
URL GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/favicon.ico IP 65.1.74.55:7326 ASN #16509 AMAZON-02 Requested by http://batelcokidzoo.mpx.mobi:7326/etc/terms File type JSON text data Size 121 B (121 bytes) Hash c53da7b2c00fbee98896aa21a23580ac 5b032147fd788174847a396253dbb78d79c362be eae515d584357d638b63e25b947221adef18b9ac5f7b6d83c0d6f5d63a082ed1 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/etc/terms Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 404 Not Found Content-Type: application/json; charset=UTF-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:50 GMT Content-Length: 121`

	batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn	65.1.74.55	200 OK	6.8 kB
URL User Request GET HTTP/1.1 batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL&msisdn=nomsisdn IP 65.1.74.55:7326 ASN #16509 AMAZON-02 File type HTML document, Unicode text, UTF-8 text, with very long lines (7007), with no line terminators Size 6.8 kB (6758 bytes) Hash e9a3ba309b7606b6231786153dfbaa54 3230cbb0e3982f275d7e5e2898ea6203ec630674 7f5bff8b8f1e693ab1b3f7c1d18178911f7b16b85f7a7dd143934186f207f6ba HTTP Headers `GET /lp1?pixel=goa-$PIXEL&msisdn=nomsisdn HTTP/1.1 Host: batelcokidzoo.mpx.mobi:7326 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://batelcokidzoo.mpx.mobi:7326/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Vary: Origin Date: Tue, 23 Apr 2024 17:05:36 GMT Transfer-Encoding: chunked`

	mediaworldsdp.com/api/get/users.header_enrichment/?api_key=b0330784b8aaf72c3129927f2d491076&channel_id=17&redirect_url=http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL	172.67.170.167	302 Found	6.8 kB
URL User Request GET HTTP/2 mediaworldsdp.com/api/get/users.header_enrichment/?api_key=b0330784b8aaf72c3129927f2d491076&channel_id=17&redirect_url=http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL IP 172.67.170.167:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectmediaworldsdp.com Fingerprint52:6C:2B:F2:C2:21:E0:31:23:D3:22:D5:F2:B2:5D:CB:1D:E4:AA:46 ValidityTue, 12 Mar 2024 01:27:20 GMT - Mon, 10 Jun 2024 01:27:19 GMT File type Size 6.8 kB (6758 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /api/get/users.header_enrichment/?api_key=b0330784b8aaf72c3129927f2d491076&channel_id=17&redirect_url=http://batelcokidzoo.mpx.mobi:7326/lp1?pixel=goa-$PIXEL HTTP/1.1 Host: mediaworldsdp.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://batelcokidzoo.mpx.mobi:7326/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found date: Tue, 23 Apr 2024 17:05:36 GMT content-type: text/html; charset=UTF-8 location: http://helm.tekmob.com/pim/batelcobhrhe?redirectURL=https://mediaworldsdp.com/en/admin/msisdn_decryption/Y0VqVCtYM3BaVFZwdHd5R1ZjTkRRWkw0eW5nTFhWRHMrem1BYXNLallVSTBFaFBtZDJ3OHhqV2Nva2NIZUV5aFdYNytxZFlNdDJwNzRkNE10MGtzZFVxaUczSENwTTJVOCtYNFhlTzJGRmM9&user=medWorld&pass=w0rLd7imm3d14 set-cookie: PHPSESSID=ktuliqst6jpa90tb07fq847qog; path=/; HttpOnly lang=en; expires=Tue, 23-Apr-2024 18:45:36 GMT; Max-Age=6000; path=/; domain=mediaworldsdp.com expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache x-serve: sdp-app1 cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FMEIulUiHS9PvTH65ytbbCT7B7RZ5E132d24WPks3MJU00pv3unbYj2%2BR7zviU59w8zoaQeDH5wcMAN42ci42PPTczG%2FuCIFPra%2BFwZPcgT5QfyFqREqyk%2FDFqeiuxlaxcdVGQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 878f7078cb7856cb-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	helm.tekmob.com/pim/batelcobhrhe?redirectURL=https://mediaworldsdp.com/en/admin/msisdn_decryption/Y0VqVCtYM3BaVFZwdHd5R1ZjTkRRWkw0eW5nTFhWRHMrem1BYXNLallVSTBFaFBtZDJ3OHhqV2Nva2NIZUV5aFdYNytxZFlNdDJwNzRkNE10MGtzZFVxaUczSENwTTJVOCtYNFhlTzJGRmM9&user=medWorld&pass=w0rLd7imm3d14	193.126.233.67	302 Found	6.8 kB
URL User Request GET HTTP/2 helm.tekmob.com/pim/batelcobhrhe?redirectURL=https://mediaworldsdp.com/en/admin/msisdn_decryption/Y0VqVCtYM3BaVFZwdHd5R1ZjTkRRWkw0eW5nTFhWRHMrem1BYXNLallVSTBFaFBtZDJ3OHhqV2Nva2NIZUV5aFdYNytxZFlNdDJwNzRkNE10MGtzZFVxaUczSENwTTJVOCtYNFhlTzJGRmM9&user=medWorld&pass=w0rLd7imm3d14 IP 193.126.233.67:443 ASN #2860 Nos Comunicacoes, S.A. Certificate IssuerGoDaddy.com, Inc. Subjecthelm.tekmob.com Fingerprint2A:7D:0A:3D:3F:80:2E:9A:22:16:5F:37:63:69:E8:50:2F:B7:D7:A9 ValidityThu, 28 Dec 2023 11:58:06 GMT - Tue, 28 Jan 2025 11:58:06 GMT File type Size 6.8 kB (6758 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pim/batelcobhrhe?redirectURL=https://mediaworldsdp.com/en/admin/msisdn_decryption/Y0VqVCtYM3BaVFZwdHd5R1ZjTkRRWkw0eW5nTFhWRHMrem1BYXNLallVSTBFaFBtZDJ3OHhqV2Nva2NIZUV5aFdYNytxZFlNdDJwNzRkNE10MGtzZFVxaUczSENwTTJVOCtYNFhlTzJGRmM9&user=medWorld&pass=w0rLd7imm3d14 HTTP/1.1 Host: helm.tekmob.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://batelcokidzoo.mpx.mobi:7326/ DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found server: Apache-Coyote/1.1 vary: Accept-Encoding content-encoding: gzip date: Tue, 23 Apr 2024 17:05:36 GMT location: https://mediaworldsdp.com/en/admin/msisdn_decryption/Y0VqVCtYM3BaVFZwdHd5R1ZjTkRRWkw0eW5nTFhWRHMrem1BYXNLallVSTBFaFBtZDJ3OHhqV2Nva2NIZUV5aFdYNytxZFlNdDJwNzRkNE10MGtzZFVxaUczSENwTTJVOCtYNFhlTzJGRmM9 set-cookie: JSESSIONID=E1CF075CA10B437571BA28FBD3B422A5; Path=/pim x-frame-options: SAMEORIGIN x-powered-by: Servlet 2.5; JBoss-5.0/JBossWeb-2.1 X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

JavaScript (0)

HTTP Transactions (30)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

HTTP Headers

URL GET HTTP/3