{"report_id":"eaec5080-7c7e-4e8f-a218-2b69750a12e4","version":6,"status":"done","tags":["paypal","phishing","financial"],"date":"2026-03-28T02:42:41Z","url":{"schema":"http","addr":"com-elevarepay.web.id","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":0,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"final":{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"title":"Log in to your PayPal account","dom":{"size":1254,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1254), with no line terminators","md5":"08fd6f34ae2a42aac3450295a811b2f0","sha1":"293ccca1ae4fd8a154fd84d2fd81b9d0195f2c91","sha256":"2449af4a36964a705a143219696f7be8d9d42d97ed9926e667f0ff1cb839a4cc","sha512":"53772bffe173c003f3987ca92aed9e963e893cf8da31960caccb2f8c65d3d8dba163327896a16b1153f08478f39d00ed68ede30c2ec51f44c6f57dea87f352c5","ssdeep":"","tlshash":"f72145f0abd1e12bbaed0717fd01eaf80176955e32a17907836cba8f25e55c7c5a0488","dom_hash":"domhasha43c535ff78d9099ca945cae11d88518","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"com-elevarepay.web.id","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":0,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-02T02:42:41Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]},"summary":[{"fqdn":"d.paypal.com","ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"1999-07-15","domain_rank":0,"first_seen":"2026-03-25T15:24:11.575387Z","last_seen":"2026-03-25T15:24:11.575387Z","alert_count":0,"request_count":10,"received_data":2855106,"sent_data":5741,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"lhr.stats.paypal.com","ip":{"addr":"34.147.177.40","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United Kingdom","country_code":"GB"},"domain_registered":"1999-07-15","domain_rank":275269,"first_seen":"2024-01-24T06:54:39Z","last_seen":"2026-03-25T13:25:56.243821Z","alert_count":0,"request_count":1,"received_data":299,"sent_data":598,"comment":"","tags":null,"fingerprints":[{"name":"Apache Traffic Server:1.0","description":"Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.","website":"https://trafficserver.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*","icon":"Apache Traffic Server.svg","categories":["Web servers"]}]},{"fqdn":"www.paypalobjects.com","ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2005-05-12","domain_rank":19317,"first_seen":"2012-05-30T06:40:21Z","last_seen":"2026-03-25T17:43:41.300261Z","alert_count":0,"request_count":18,"received_data":1309678,"sent_data":8788,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"c.paypal.com","ip":{"addr":"151.101.193.21","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"1999-07-15","domain_rank":46477,"first_seen":"2014-10-07T12:10:39Z","last_seen":"2026-03-23T21:51:39.181648Z","alert_count":0,"request_count":7,"received_data":77440,"sent_data":7425,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"t.paypal.com","ip":{"addr":"151.101.67.1","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"1999-07-15","domain_rank":56312,"first_seen":"2012-06-27T13:49:38Z","last_seen":"2026-03-23T23:00:35.38386Z","alert_count":0,"request_count":4,"received_data":4868,"sent_data":6459,"comment":"","tags":null,"fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"browser-intake-us5-datadoghq.com","ip":{"addr":"34.149.66.154","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"domain_registered":"2021-09-06","domain_rank":9307,"first_seen":"2023-02-04T11:43:09Z","last_seen":"2026-03-27T21:41:21.819484Z","alert_count":0,"request_count":2,"received_data":840,"sent_data":1598,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"c6.paypal.com","ip":{"addr":"151.101.129.35","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"1999-07-15","domain_rank":56317,"first_seen":"2015-06-30T10:55:45Z","last_seen":"2026-03-24T04:16:43.611283Z","alert_count":0,"request_count":1,"received_data":744,"sent_data":511,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]},{"fqdn":"ddbm2.paypal.com","ip":{"addr":"3.167.2.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"1999-07-15","domain_rank":103210,"first_seen":"2024-09-21T09:17:10Z","last_seen":"2026-03-24T02:47:07.275885Z","alert_count":0,"request_count":3,"received_data":134153,"sent_data":1513,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"DataDome","description":"DataDome is a cybersecurity platform that specialises in bot protection and mitigation, offering advanced solutions to safeguard websites and mobile applications against malicious bot traffic, credential stuffing, scraping, and other automated threats.","website":"https://datadome.co","common_platform_enumeration":"","icon":"DataDome.svg","categories":["Security"]}]},{"fqdn":"b.stats.paypal.com","ip":{"addr":"34.147.177.40","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United Kingdom","country_code":"GB"},"domain_registered":"1999-07-15","domain_rank":39745,"first_seen":"2012-06-19T14:03:33Z","last_seen":"2026-03-25T13:25:56.366717Z","alert_count":0,"request_count":1,"received_data":518,"sent_data":595,"comment":"","tags":null,"fingerprints":[{"name":"Apache Traffic Server:1.0","description":"Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.","website":"https://trafficserver.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*","icon":"Apache Traffic Server.svg","categories":["Web servers"]}]},{"fqdn":"paypalobjects.com","ip":{"addr":"162.159.141.96","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2005-05-12","domain_rank":5147,"first_seen":"2012-05-25T12:02:34Z","last_seen":"2026-03-23T17:51:52.07326Z","alert_count":0,"request_count":1,"received_data":27208,"sent_data":448,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"com-elevarepay.web.id","ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"domain_registered":"2026-03-27","domain_rank":0,"first_seen":"2026-03-28T01:26:54.792648Z","last_seen":"2026-03-28T01:26:54.792648Z","alert_count":45,"request_count":15,"received_data":95811,"sent_data":10420,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PayPal","description":"PayPal is an online payments system that supports online money transfers and serves as an electronic alternative to traditional paper methods like checks and money orders.","website":"https://paypal.com","common_platform_enumeration":"cpe:2.3:a:paypal:paypal:*:*:*:*:*:*:*:*","icon":"PayPal.svg","categories":["Payment processors"]},{"name":"Modernizr","description":"Modernizr is a JavaScript library that detects the features available in a user's browser.","website":"https://modernizr.com","common_platform_enumeration":"","icon":"Modernizr.svg","categories":["JavaScript libraries"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"www.paypalobjects.com/rdaAssets/fraudnet/sync/fn-sync-telemetry-min.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5f8559416a76c08741a246936c58f437","sha1":"aaa7f64104332a0f35a9f56f516eaf15d999a082","sha256":"4f3802a3a58d849d9b0950c807ac3705131bf34d647be4f61d5679b93402ca2d","sha512":"9823656876c6817ab821b5925950123e348fb1235d805bf1c8d014a52624018c682e016624a2da56b27d94997c997d8624af8bf3a66295cbbf7225f7036dca5b","ssdeep":"192:k1+hF5ptVRl3tu4f40IelTPbk9eC4E8ZtRY4KI0tRzkqsYb:8+hF5ptVRlY4AGVAgCxsRY4PKRzkJYb","tlshash":"b4f1a5aa7385707514f326a7662f9305723a62057c8d9088e237ecc07dec98a9377fb5","size":7711,"data":"","first_seen":"2025-01-16T04:18:16.004746Z","last_seen":"2026-06-18T02:20:24.776328Z","times_seen":309,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":true,"md5":"023a6f4572cb9601e6ff9ee8bd926a4e","sha1":"76c4faa66578574a26b6629860ecb650684f2d77","sha256":"e032e030d7e28061743223402f84a498325496ea8e1d1abfe57dc3ebf04cc981","sha512":"c30a55b3cea2a077cc7a0b82790129f5474281d86a455e7cf4ae27a5be87e020c2083e775f00609f65bbd5189af1933855edeebdb8257115989b9029193d4858","ssdeep":"","tlshash":"34e07dd2931c6232ce699701dfbeb2c5683de11569104573ec9a009ad15e52fe0c1cdd","size":327,"data":"","first_seen":"2026-03-25T15:24:15.934896Z","last_seen":"2026-04-01T01:54:21.337705Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/js/signin-split.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"eb106522dd80f44dff43f72385eb7715","sha1":"f028fe659c2cfccd3d5e2b6fe281be161abdb3a0","sha256":"49881c38fe082798dd6fe1ec33ab5a481957d0816791cd0c9809510ae967cb04","sha512":"fd8684af446910f93959f931d8dda393e293b8cf242742233f435c05fb12b6938ff2ea1a636873c3b0af1f9c18db928588fc82e9cd8adf02826d11a251789e09","ssdeep":"6144:dbBr5V/w4xB2CR/I5Uadu0UsRmzQPKSKbu:dbBrn/oCdIAzQiS1","tlshash":"e954e7a631ad18792b5b667634e3038170385d99e405ce284f79943c7d68d8fb332f6e","size":303320,"data":"","first_seen":"2026-03-17T13:52:37.572876Z","last_seen":"2026-04-01T01:54:21.308653Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":true,"md5":"2f047c81e01c7b9e7300e24e759c2651","sha1":"1665103ea44701b65ce6a80041cfaa5db5f57dd7","sha256":"e4998840423a5a1702b5a5135affad7c5673a95d93a2d7df3232e5c48962b83f","sha512":"5691e8bb26d14418b0419639eeae6342bde0c2186d0efec0da2ad0fcdc419a09de44d2bf637803db31ac7a47f28622150c0c8d965560a61428e667669279d83c","ssdeep":"","tlshash":"31e0d8efb7c9303035d2283d063510f8243e5cb6689555f7bc49c0b41065ded43db968","size":371,"data":"","first_seen":"2026-03-25T15:24:15.936092Z","last_seen":"2026-04-01T01:54:21.338386Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ddbm2.paypal.com/tags.js","fqdn":"ddbm2.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2dfc66f422003d5312c6bf109a5f52ab","sha1":"9685b9941ca964705c2394f467d2cabbafa537c7","sha256":"184facb81dfee591d7fa0c48551bd7bb27ae2d6031311f80926f4873bc01a6a7","sha512":"6bb69812a62eefb53a064ee52ac2454b675dae89abcf16f67638a6f3a75637519f21ec9e3b00f1f8d81d4112eaac6d3a96c5950cc2e329f1b18ae17060368f39","ssdeep":"3072:oLxJBf1UlgC4O9pBxv16geM9FAp1jst5+mL5kOus72YR:oLxJBfqeoBSM9FAp1jst5T72YR","tlshash":"6fd3e78237cdb83c06524972179f7743f027af31689c7271d9b0c7a72464a6e5a8fda8","size":132035,"data":"","first_seen":"2026-03-25T10:24:01.891912Z","last_seen":"2026-04-01T02:12:03.887187Z","times_seen":351,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":true,"md5":"1086b243ca69a52e4fa746f880fb8615","sha1":"e8c4b50aaf8cfd5445370543126a442640e247ad","sha256":"0843fc13c1bf4a81539bfdb573594439ee6161633cd3c8f9440898df37efb986","sha512":"a0e910738a9884895200f2222e40d90fb5d6bd62c59c36606aa2f504a98ea00a8e49289233eb6574bdac400b41b1fd602d7e3b7809be47168d8ccb49c90ed586","ssdeep":"","tlshash":"c4f02b53958c3223448c9a64a5bf54c3153c9e4f5b2480fdf657ec5c004e771a4fd315","size":517,"data":"","first_seen":"2026-03-25T15:24:15.938937Z","last_seen":"2026-04-01T01:54:21.339017Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/webcaptcha/ngrlCaptcha.min.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"243eda4543153156c0ae9df9e8c5833d","sha1":"dfa372f408889fa3f4a6ca29847f4a379ed246a8","sha256":"d81bfefd8585b694222d3e94e9dee5d7935049c65355f9fd096800301d51545b","sha512":"bc2e170a94bb45624ed4392b2049fa017411c244dc765b5e862093e2264ec9580752a29a86e6739e2ecba2f16b6880fdbf9ab1ecb6647e739b391b46a5bf9aa9","ssdeep":"384:v0Ap5n5P9Nxf4hfWGwR+EkE+n4QnZ/X2NWKW4BCCMHxDkZbaXpweyGobcUWfgMcC:J5n51f4hfWGwR+Tnn4QnZ/b3J7yGQMUE","tlshash":"faa2c6d9378074b30bdb22ba712fa247f1b2459aac4dd050a614dcf12c7ceda8516fad","size":23125,"data":"","first_seen":"2024-06-05T17:44:09Z","last_seen":"2026-06-24T03:32:46.860318Z","times_seen":1174,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/webcaptcha/grcenterprise_v3_static.html","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"29b123d1d89fefb7ff8070d3841041fd","sha1":"afff186e9ed35e371b4a955ee5ef37d6de50ff01","sha256":"88a70c64b9a59b3d350dc2ad55593c7af174ffd111a36f4863415463453134d9","sha512":"334015e648c947d7c2c0aa6e079237ddd52e17df7827c0f9804056923ca1e84dc427cba84941326c14fbcc102d696144aabafa6948df6fdb394c9a2a5808301d","ssdeep":"192:6atC/3tqt2mZh9rZT+HhbcGNBD7pc/sK7vOavMT:O/3otbZhJh0FesK7Y","tlshash":"5dd151ceff8c11178669120d662a34c9603ee07a6c16dcebfc7cae952360d7e522565c","size":6383,"data":"","first_seen":"2024-09-02T00:52:14Z","last_seen":"2026-05-01T14:56:46.438909Z","times_seen":242,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/martech/tm/paypal/mktgtagmanager.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"830bbce0cf86d48e69d5638b4b8d9e36","sha1":"3516ff3722f95034a88f13eed044d7c7e89e4806","sha256":"21dac7841ff8ec6064185eed4ad7ccfb8396a393c7cf07cd2aea86962a4d43ae","sha512":"ce9d4f944417465d3bcb4d2f808d5e4ff5c447e9d1b644e29ded2e0fea312683f86cec6ff554c405bb9fbc02661329d16bc0f821b84b6228a9644579394bf991","ssdeep":"384:kcGfcUvUKvmwdGebFa7ACG0TXXIU1ebdlM/6y47WL0iJWh:xUJvmwd7bsvtGdlMQd","tlshash":"69722a4937d5f0b1877b10b542af260bb0393a65ac4ec4d0d586e8d03cb4a9f877be99","size":16011,"data":"","first_seen":"2025-06-10T03:28:52.766713Z","last_seen":"2026-06-26T01:22:23.52084Z","times_seen":1225,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/martech/tm/paypal/mktconf.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"00da94bedae14f04419a11e5972bfd52","sha1":"7c84e041d7f524b415e78e64414dc732f6159b6b","sha256":"2b440e3a9257c2065afb0e9ebcc0ec9da665a38bc464e72c3f881c22a6e44c6d","sha512":"233abca12d8429de4807e436dc6b98c8007aaf09032c37f56e6cd93c24b799b578f196d90cf1fc49c9d30d299b3cea7bc1bc1cfdeacc4fa8063f7290d996c208","ssdeep":"3072:TEO3e07NRI4Q1QGQRQDE7qfZTXTjTEcarvGKY:Tlx+z6q9DvEcarv/Y","tlshash":"0b8493c8c8b45daf0d7fdf44ae5f9a2420242ba84b8a4811b7d47f7a07571db29ca7c4","size":384304,"data":"","first_seen":"2026-03-27T14:02:49.786798Z","last_seen":"2026-04-07T12:13:54.284676Z","times_seen":85,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/ca/jquery-3.6.1.min.js","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e0629ba54532cd87a2fc34f7ce5f7ac2","sha1":"d5b4e5ef3c4fb361baedf222ade616a9dd93e898","sha256":"2dbb67aa1e4d0b54276ff987ca7d10de1cfc3c29935d7e3ca1b6d76ba4f347c6","sha512":"5de93a0e8824d0d4d7fc9759569860a39a9af9bbf1380c06b8952c396c8a55cb9714b9e13cc608ad1afaee17cc76c476ae3d16a7c68c96a2ed0a9d0c467d1148","ssdeep":"12288:GKCmV93pvQycHdwcqIod/0QugTYaKoFVC5+woHSDXo1FIzAMsrUcJDBXGCfwhqEK:HVsWcq//XIaKojV7UBGVb","tlshash":"e6d5b1d867d5e51b67cd0e43fe11affa017a966790c87207c3a8ba8d14f924bc5a8cc4","size":2829628,"data":"","first_seen":"2026-03-28T01:26:59.486047Z","last_seen":"2026-03-29T11:59:27.134336Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.paypal.com/da/r/fb_fp.js","fqdn":"c.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.193.21","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a32976d07ac9cd9c1aec95150ada6231","sha1":"526494ccc0c4bbfdf761200d6db75e962e97291f","sha256":"39cd75c742f5fbee3cbc594aaea90b28d7df8d1f893005875c912fa5ef2099dc","sha512":"2b256cda6610a391f2fc2ce4c4a1c9e66bfbb4a342c78a896aa872a640911bdd5f5902a5575dbe26a6020bc0bc4abaa3d9920d1bf691239935b6757208f1731c","ssdeep":"1536:8HUlVnIULGcqyAkOv/Gqxsxi+kbQgVGWxqBf6kGEscqzttHrPJF:8HUlVnIULGQClxV+kBVGKqU1ttHrPJF","tlshash":"d46319dfb6087416067329eab42f5215b5366304a88ee458b16bf5913cace877323f7c","size":70828,"data":"","first_seen":"2026-03-27T22:54:29.914392Z","last_seen":"2026-06-04T13:12:24.476616Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/js/lib/modernizr-2.6.1.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a635a55ddb6339a3d0d01c641f670753","sha1":"a6dee4a1df6c51b82ce2e67323514e7de4e165d4","sha256":"a6c3bff965978df8093c3a29f7071c21d7439a212af41e7b40ce70d94d6bcc44","sha512":"2562ca35be37bfe0b984ec288e23678bc97ba7a881764044e65914ea013742a5310a5c12839cb8a501a464791bc67868fe6a02ae149df9329e40562569eba42d","ssdeep":"","tlshash":"a77175c474e1f15e539b20bb107fa34ef2b85a65596a8510e0a8c4bdbcb0c64867bf2d","size":3807,"data":"","first_seen":"2023-03-07T01:03:30Z","last_seen":"2026-06-18T02:20:24.735063Z","times_seen":1049,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/ca/home-stat.js?a=9f89c84a559f573636a47ff8daed0d33","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e4452d5ac5771ef27e1425e541f7b1d3","sha1":"b38d9ffff1f6a671bb358c08fc1af17091f6b6c7","sha256":"5bb7cbd5e7b3f0fe6ecdbb2014d1547efdb841897a41b761fec472eec917ab1c","sha512":"1aff002a32684cff84fda4e59d7f3868ed8b23789d12f59b518096cc3842009e44267d1eda3e8c47f0e3bea7c0ed27e5fc7eceb3b0baf62aa0b82c4672ec8d66","ssdeep":"96:ZMktelJj+yoMtV6Y1kXpRAjrnf3GzRiJz30sU:6vJj+jMLNApujrnf3aW30sU","tlshash":"2fb1c2d46be5e11f2bdd0e93fd249ffa00ba966a61927307c36cf98d14a9247c1ac448","size":5246,"data":"","first_seen":"2026-03-25T15:24:15.906368Z","last_seen":"2026-06-03T08:38:58.356828Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":true,"md5":"692e4127ae5d9a6199cad3f87ab5e361","sha1":"5f73a37a7a5f7887bfde43b3dbbdaf2c9196fc9d","sha256":"1801b986dfc9558c180334105f08c5cd83f5ed1d6917dfad77d5462cdb1610eb","sha512":"f55bc2888294413bc12a6b9cd4e986c99166b3726db5b5f8c77a53aac73140f7c16a78baf6741c81e03f646017cfa786cb3c95b6df6565f67164144e824e479f","ssdeep":"","tlshash":"22f00255330e24501cc936d4953f4acda37d42598df3c1e5e0919b8861442af0095d17","size":629,"data":"","first_seen":"2026-03-25T15:24:15.940159Z","last_seen":"2026-04-01T01:54:21.339646Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"paypalobjects.com/ae/0.16.0/atomic-events-dom/index.js","fqdn":"paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"162.159.141.96","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0cfbf0dfa4fad9557df4e3b9493dbae0","sha1":"ec927e269619d74d48ed05831ccade5caa580a3c","sha256":"7f083991dcd0f426a91fef258e7a1ce9a3b58c1ad459fb3a9a5cec584a06b1c7","sha512":"fe32e67032b6f63149aa98b92405ba7029c69e611c8f4e2a3222fe3b2864e5eba4f03f349fdeda3de34a07d926645bf48dde2fe14a702be8494b712790e86f59","ssdeep":"768:itXrcGGWoQyfKjEjysmEtPtqJNR0pRIhX0AuQqC6dXBM6kpeSbWV18ktPw:MASmpOhEI","tlshash":"e1c2faccf751b0612ae752a1947b1213e2307fa9708f4051e4698daa3eb15cfe23bb5d","size":26972,"data":"","first_seen":"2024-12-03T09:01:11.359963Z","last_seen":"2026-06-18T02:20:24.753789Z","times_seen":260,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/webcaptcha/grcenterprise_v3_static.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5e1ef31fca217880cb587a759e88e01c","sha1":"a35c2350f4787c2597a71d70f4f62f3bb31beee6","sha256":"f3628ea791958b87da4e82ac9a0f85295b784ea0b3da83c160d70d0375474e7f","sha512":"cda93772843216ff3f8da40aaba3ac21f2c5afef9d334437b308ff446b1e78524ac901eace2958fcd736da0264ab612c1b08e724646cf589c3da52906d20e761","ssdeep":"192:oHXo3pSWlyiuzvCyBoIQo/ZbTHvUMfItoa39SrWM8N6fG:QopqvCyR/ZbTHvUMfItoa39K8NMG","tlshash":"c8d1a35c3db320a580abe62d9beb55047077a11b284fcc10befc59847f24eb925a57ec","size":6252,"data":"","first_seen":"2025-06-17T21:57:42.551971Z","last_seen":"2026-06-03T08:29:10.202176Z","times_seen":182,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/pa/js/min/pa.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"bb25b10981a6333f135c2278afb179a4","sha1":"6503cdbda2039e13cd55d4ff0dc61235c92d4563","sha256":"fae4b858a4efba7ef920a6fda59d4207224ec488e49e16c73ec013b8daf89370","sha512":"dea76e445e48ff1fdaa036b93033da83c49e3307079640c5b3f64edb456c0a51aafa30807ac1bd56e7de5f67684af0f0375663ced815bb58ae70b95116d81e01","ssdeep":"1536:SM/FcQ1vmwdRWDp40xUKvVCceu8TFgAjhD/+xXatu+RJW:SDxpNI+z+RM","tlshash":"3963299c72d1b03747ab1071416f120bb2363d65780bc4d0d62ae5d47db8a8f92abfad","size":71326,"data":"","first_seen":"2025-05-28T18:02:03.444624Z","last_seen":"2026-04-20T23:47:32.76872Z","times_seen":940,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/js/lib/datadog-rum.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4441739369b3c7e391d97a0c1ca55d63","sha1":"3d49967b45253d998a4a59ffb4a20df9b7fa8e3c","sha256":"ee4cd96d72ca2d21a8df21e2f76629df9ad636fc7ecd59d24825def20bc2ee0e","sha512":"72675bb94869dae4802d7e65eee1b23e339fc5ba157833e8f78a733b7864240b8b0c6cd5cacf935608570d10aaaa171d99bbd7bdf0dc60d7f1ef2cf6fff9bb41","ssdeep":"1536:4IOoR3MaQgFxamY7FMXiLh+vhXMLsjRXs8EEKMGjEWAkDxRJAiCQxjMmvD7sh8ui:s2M8FxzY/h2kfzEWxAkEF2B","tlshash":"0af3d5dcf286b07167933036407f120ab77a2954394b85a0e2b6d5d53db869fa233f6c","size":162691,"data":"","first_seen":"2024-07-29T21:09:05Z","last_seen":"2026-06-18T02:20:24.637402Z","times_seen":359,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/ca/lwsa.html","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0008388513f67d842c706478a0504329","sha1":"ed84471ff35bd73b71b413d6ecbbbd6948e0dabd","sha256":"1b040007a0198853fafad54820c9c55b08bb7b9fc8d4d7ddf091fafd3ed76a90","sha512":"df265f58e35384ab1c2992ee3a72e0c0040791ed621128f935fc44d632d5ffd4b3c1a0e6f3fe21c47211ba15967ebb0f96653b52304bd67524193770f21d124a","ssdeep":"","tlshash":"bb1191e07ad0d127baec0b17fd01eaf40076a95e71a03547836c7a8e15f1186c1a4445","size":931,"data":"","first_seen":"2026-01-13T11:56:27.328314Z","last_seen":"2026-06-06T21:48:34.971183Z","times_seen":162,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":true,"md5":"64378eeff747ebd731ee6de7eff64768","sha1":"38989aeb83a00c07836bc15724ee659776bbb6e9","sha256":"cba792b949656a1e160c1e295dbb947e050c03150e00d88b1025f9b360b9278e","sha512":"edcf6e301c0b3104eebf873d27f13f104c7c58982d6a5958d17aae6d0de85bafa61ab0c9bb2b2ec4b2af367fd695057bebb03c4d22fa49f2f2c3b3fa75e56d24","ssdeep":"","tlshash":"53d022e0220e769008ea7a9ccc7e108ba00c4800def8c8ffa394a11d184082a9c0cfb5","size":220,"data":"","first_seen":"2026-03-25T15:24:15.941381Z","last_seen":"2026-04-01T01:54:21.34238Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":false,"md5":"b76f4d20581f24cb4edf805a36aa856a","sha1":"cc1db2c59ba19afffaf980bd00f2bee1194d1689","sha256":"71eb6021d8f5662543ba331234a5b03ac9e6f984f6b1c0662c13c53979907b51","sha512":"aadac40af2c2d873f569422d43a881d14f085930ca41de462d7544760908a14a0d44eadff0d0675a2d39489f8f6f679c623d095ae607a3c390d174166c031e49","ssdeep":"48:ryFMPTgsUtelt/j1cSIcVCjMt/dfHCiHNY052Dj2+dxplAtHdJpTLrH/35/IwKxB:riMktelJj+yoMtV6Y1kXpRAjrnf3GzQm","tlshash":"609148d87be5e00b3bdc0e93fe149ff601ba946ba1d6710bd36c79cd16a9206c1b8484","size":4494,"data":"","first_seen":"2026-03-25T15:24:15.943686Z","last_seen":"2026-04-01T01:54:21.341683Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":true,"md5":"13e29bd144e423909a548cf5f7bd4a6a","sha1":"c85d7d0ef695ee961d4d6a20e75f521a2205e202","sha256":"1e06df7b78b06b3c9bcd842a8a309b2706cbb6ba46169b0ffa9cfcbf85136817","sha512":"3fc561e77112c5e48c1d14d750e898cd9b7bb7991e77b7a216a99680d9684b109f776bf763638f5ecd572259762268c82a43adb02d74c8cd9fec4b0bb1c9c48d","ssdeep":"","tlshash":"92d05e02934c965b04860b2a08af84ca433c0188d8e285eafa03f81c01c1c799df9720","size":271,"data":"","first_seen":"2026-03-25T15:24:15.94264Z","last_seen":"2026-04-01T01:54:21.343067Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":true,"md5":"ee02c3cd889d3eda0da4e50d6d044598","sha1":"f782ceef63524c93d1a1cfc2c04082eff74474fe","sha256":"f89935d61df6f1af1ac5ccbf828045b956674d9045af124f3b9bbd6f3b61526c","sha512":"36ad1ec36851039bc2dfcf5c7d2eca6588517a88653308c1713483687fa88202966e2ce440260a30a18311ed794b8377a72deca14e245e7794c676fb30e2b479","ssdeep":"","tlshash":"f231b5ca361ea100953a8253185b645c21fcd30f68fdfe6dedf1c3608f881a9228f259","size":1596,"data":"","first_seen":"2026-03-25T15:24:15.944936Z","last_seen":"2026-04-01T01:54:21.344379Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":true,"md5":"a64fae379944dd85217b64d50027ab69","sha1":"6ee63e66e2878066d09dbb4fa17c3c05f7db493c","sha256":"f31959ef488f0effb4be98bd0110ed7c5fa2f09af38164ee5d389607beddde0a","sha512":"9d4c78ceaa45f021d94a55061af49c9f4f2bcd92b8cf869ff1d2aaa24389806bc20baf9909b27cd37bb525ee74ab179484dee0bcd9189d3874168545291536cf","ssdeep":"","tlshash":"91f095c8c38e7575417510394f7eb2db15bdd0199ca51c66d57604d02b5c137205bd80","size":535,"data":"","first_seen":"2026-03-25T15:24:15.94601Z","last_seen":"2026-04-01T01:54:21.34552Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"www.paypalobjects.com/webcaptcha/ngrlCaptcha.min.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /webcaptcha/ngrlCaptcha.min.js HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/javascript\r\ncf-ray: 9e3347b37d3b569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 1137\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\ncontent-encoding: br\r\netag: W/\"6697f682-5a55\"\r\nlast-modified: Wed, 17 Jul 2024 16:51:14 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-headers: x-csrf-token\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg13bdrf5-6.ccg13.slc.paypalinc.com\r\npaypal-debug-id: 6ee9bf7acc43f\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\ntraceparent: 00-00000000000000000006ee9bf7acc43f-295190a7d60f3e6a-01\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":23125,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (23125), with no line terminators","md5":"243eda4543153156c0ae9df9e8c5833d","sha1":"dfa372f408889fa3f4a6ca29847f4a379ed246a8","sha256":"d81bfefd8585b694222d3e94e9dee5d7935049c65355f9fd096800301d51545b","sha512":"bc2e170a94bb45624ed4392b2049fa017411c244dc765b5e862093e2264ec9580752a29a86e6739e2ecba2f16b6880fdbf9ab1ecb6647e739b391b46a5bf9aa9","ssdeep":"384:v0Ap5n5P9Nxf4hfWGwR+EkE+n4QnZ/X2NWKW4BCCMHxDkZbaXpweyGobcUWfgMcC:J5n51f4hfWGwR+Tnn4QnZ/b3J7yGQMUE","tlshash":"faa2c6d9378074b30bdb22ba712fa247f1b2459aac4dd050a614dcf12c7ceda8516fad","first_seen":"2024-06-05T17:44:09Z","last_seen":"2026-06-24T03:32:46.860318Z","times_seen":1174,"resource_available":true,"data":null}},"time_used":159,"timings":{"blocked":64,"dns":55,"connect":1,"send":0,"wait":20,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/images/shared/icon-PN-check.png","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /images/shared/icon-PN-check.png HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: image/png\r\ncontent-length: 1210\r\ncf-ray: 9e3347b45d91569c-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\netag: \"cfjXEEqizGto1bQMEOfVYTGhj-K1VnHOdKHxTvMGKADQ:60271b47-8bc\"\r\nlast-modified: Sat, 13 Feb 2021 00:20:23 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\ncf-bgj: imgq:100,h2pri\r\nx-content-type-options: nosniff\r\ncf-resized: internal=ok/h q=0 n=14+1 c=0+1 v=2026.3.3 l=1210 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:; style-src 'unsafe-inline';\r\npriority: u=4;i=?0,cf-chb=(136;u=5;i=?0)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1210,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 121 x 133, 8-bit colormap, non-interlaced","md5":"0a7715c708b8de63ec2c6700fde946b8","sha1":"5d4518c4698fbcaf85f7f5667d3e1bc905bef54d","sha256":"36279ef6fd28cd1da2b1e8be15f87c637ea4da9eda587e31f39c2536af6b8d14","sha512":"eefca1d1e685d809c4bbb562eee69a08c47c9f5d7ae4b0ac34f7a2dc8e80a1f6f01d183d4a2c950681d23919cd6c11cd07bd92273c46df083143658932fe1252","ssdeep":"","tlshash":"e721b7a3933fe04140be002fc1719dd56f0650b9c017ef053445559ac0a53dd5a9c3c3","first_seen":"2026-03-25T15:24:15.904208Z","last_seen":"2026-04-07T17:49:47.361339Z","times_seen":8,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/client-log","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.924Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/client-log HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 1315\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1315,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026currentUrl=https%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F\u0026logRecords=%5B%7B%22evt%22%3A%22state_name%22%2C%22data%22%3A%22ATOMIC_LATENCY_METRICS%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731890%7D%2C%7B%22evt%22%3A%22metric_type%22%2C%22data%22%3A%22counter%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731890%7D%2C%7B%22evt%22%3A%22metric_event_name%22%2C%22data%22%3A%22ui_wait_start%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731890%7D%2C%7B%22evt%22%3A%22metric_namespace%22%2C%22data%22%3A%22pp.xo.ui.ci.count%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731890%7D%2C%7B%22evt%22%3A%22metric_value%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731890%7D%2C%7B%22evt%22%3A%22dimensions%22%2C%22data%22%3A%7B%22domain%22%3A%22identity_UL%22%2C%22interaction%22%3A%22FIRST_PAGE_LOAD%22%2C%22interaction_type%22%3A%22render%22%2C%22nav_type%22%3A%22navigate%22%2C%22task%22%3A%22render_first_page%22%2C%22flow%22%3A%22login%22%2C%22path%22%3A%22%2Fsignin%2F%22%2C%22atomic_lib_version%22%3A%220.16.0%22%7D%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731890%7D%2C%7B%22evt%22%3A%22context_correlation_id%22%2C%22data%22%3A%22f3485341e6b9f%22%2C%22instrument%22%3Atrue%7D%5D\u0026intent=\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:11 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":319,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":318,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"c.paypal.com/v1/r/d/b/p1","fqdn":"c.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.193.21","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.280Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 05 Aug 2025 00:00:00 GMT","end":"Tue, 04 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"12:2E:F7:4B:EE:2D:15:15:4F:4E:DE:63:48:9F:DB:6C:A1:B4:A4:6D","sha256":"A6:C0:A2:30:F9:69:64:91:78:C1:B6:BD:F4:64:B7:8A:CF:17:D7:55:84:52:3F:43:97:56:68:51:CA:99:FD:6B"}}},"request":{"raw":"OPTIONS /v1/r/d/b/p1 HTTP/1.1\r\nHost: c.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,x-requested-with\r\nReferer: https://com-elevarepay.web.id/\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\npaypal-debug-id: 631e3c956b882\r\naccess-control-allow-origin: https://www.paypal.com\r\ncorrelation-id: 631e3c956b882\r\naccess-control-allow-credentials: true\r\ncache-control: max-age=0, no-cache, no-store, must-revalidate\r\naccess-control-allow-methods: POST\r\nset-cookie: l7_az=dcg16.slc; Path=/; Domain=paypal.com; Expires=Sat, 28 Mar 2026 03:12:12 GMT; HttpOnly; Secure\r\naccess-control-allow-headers: Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccept-ranges: bytes\r\nvia: 1.1 varnish, 1.1 varnish\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-fra-eddf8230184-FRA, cache-fra-eddf8230184-FRA, cache-hel1410028-HEL\r\nx-cache: MISS, MISS, MISS\r\nx-cache-hits: 0, 0, 0\r\nvary: Accept-Encoding, Origin\r\nserver-timing: content-encoding;desc=\"\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":294,"timings":{"blocked":35,"dns":1,"connect":13,"send":0,"wait":224,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.paypal.com/v1/r/d/b/w","fqdn":"c.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.193.21","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 05 Aug 2025 00:00:00 GMT","end":"Tue, 04 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"12:2E:F7:4B:EE:2D:15:15:4F:4E:DE:63:48:9F:DB:6C:A1:B4:A4:6D","sha256":"A6:C0:A2:30:F9:69:64:91:78:C1:B6:BD:F4:64:B7:8A:CF:17:D7:55:84:52:3F:43:97:56:68:51:CA:99:FD:6B"}}},"request":{"raw":"OPTIONS /v1/r/d/b/w HTTP/1.1\r\nHost: c.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,x-requested-with\r\nReferer: https://com-elevarepay.web.id/\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\npaypal-debug-id: bdb69bcfe0383\r\naccess-control-allow-origin: https://www.paypal.com\r\ncorrelation-id: bdb69bcfe0383\r\naccess-control-allow-credentials: true\r\ncache-control: max-age=0, no-cache, no-store, must-revalidate\r\naccess-control-allow-methods: POST\r\nset-cookie: l7_az=dcg16.slc; Path=/; Domain=paypal.com; Expires=Sat, 28 Mar 2026 03:12:12 GMT; HttpOnly; Secure\r\naccess-control-allow-headers: Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccept-ranges: bytes\r\nvia: 1.1 varnish, 1.1 varnish\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-fra-etou8220071-FRA, cache-fra-etou8220071-FRA, cache-hel1410028-HEL\r\nx-cache: MISS, MISS, MISS\r\nx-cache-hits: 0, 0, 0\r\nvary: Accept-Encoding, Origin\r\nserver-timing: content-encoding;desc=\"\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":219,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":219,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t.paypal.com/ts?v=1.10.0\u0026t=1774665733927\u0026g=0\u0026pgrp=main%3Aunifiedlogin%3A%3A%3Alogin\u0026page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A\u0026pgtf=Nodejs\u0026s=ci\u0026env=live\u0026transition_name=ss_prepare_pwd\u0026cookie_disabled_request=false\u0026userRedirected=true\u0026xe=101090%2C101735%2C101216%2C104200%2C109195%2C100644%2C106273%2C106057%2C110012%2C110718%2C110982%2C111217%2C110979%2C101820%2C101817%2C108076%2C109047\u0026xt=104050%2C105856%2C103864%2C127485%2C144027%2C101702%2C128593%2C127562%2C160815%2C152856%2C154506%2C162434%2C162442%2C106324%2C112768%2C138090%2C143343\u0026ctx_login_ot_content=0\u0026obex=signin\u0026landing_page=login\u0026browser_client_type=Browser\u0026state_name=begin_pwd\u0026ctx_login_ctxid_fetch=ctxid-not-exist\u0026ctx_login_content_fetch=success\u0026ctx_login_signup_btn=shown%7Cdefault\u0026ctx_login_intent=signin\u0026ctx_login_flow=Signin\u0026ctx_login_state_transition=login_loaded\u0026comp=unifiedloginnodeweb\u0026tsrce=privacynodeweb\u0026cu=0\u0026ef_policy=gdpr_v2.1\u0026c_prefs=T%3D0%2CP%3D1%2CF%3D1%2Ctype%3Dimplicit\u0026pxpguid=6ec5f65819c0ad119da254fefffc3587\u0026pgst=1774376682814\u0026calc=f3485341e6b9f\u0026csci=f781841fd5ca404c9625a7a57b822049\u0026nsid=tcKVcxqub3Dj_abRMVcGCXpOYbw0PxBD\u0026rsta=en_GB\u0026ccpg=SG\u0026securityContext_status=success\u0026post_login_redirect=default\u0026ret_url=%2F\u0026event_name=c_paypal_cpl\u0026t1=8\u0026t1c=0\u0026t1d=0\u0026t1s=0\u0026t2=349\u0026t3=0\u0026tt=357\u0026protocol=h2\u0026cdn=fastly\u0026tmpl=%2F%2Fc.paypal.\u0026view=%7B%22t10%22%3A8%2C%22t11%22%3A357%2C%22nt%22%3A%22res%22%7D\u0026e=pf\u00263p_vid=47d477e2599fce4e\u00263p_fpti=424e81f465ff2b34","fqdn":"t.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.67.1","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:13.933Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"t.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 20 Feb 2026 00:00:00 GMT","end":"Sun, 21 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EA:B8:DE:7E:92:A5:33:3B:95:2F:D2:B0:E6:9F:48:71:A6:33:F5:E8","sha256":"71:55:5A:84:D8:C8:D0:44:77:28:BE:C1:5D:4D:DC:A6:EB:DB:AE:58:D9:B8:D6:F1:1E:EC:35:2A:EE:11:63:39"}}},"request":{"raw":"GET /ts?v=1.10.0\u0026t=1774665733927\u0026g=0\u0026pgrp=main%3Aunifiedlogin%3A%3A%3Alogin\u0026page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A\u0026pgtf=Nodejs\u0026s=ci\u0026env=live\u0026transition_name=ss_prepare_pwd\u0026cookie_disabled_request=false\u0026userRedirected=true\u0026xe=101090%2C101735%2C101216%2C104200%2C109195%2C100644%2C106273%2C106057%2C110012%2C110718%2C110982%2C111217%2C110979%2C101820%2C101817%2C108076%2C109047\u0026xt=104050%2C105856%2C103864%2C127485%2C144027%2C101702%2C128593%2C127562%2C160815%2C152856%2C154506%2C162434%2C162442%2C106324%2C112768%2C138090%2C143343\u0026ctx_login_ot_content=0\u0026obex=signin\u0026landing_page=login\u0026browser_client_type=Browser\u0026state_name=begin_pwd\u0026ctx_login_ctxid_fetch=ctxid-not-exist\u0026ctx_login_content_fetch=success\u0026ctx_login_signup_btn=shown%7Cdefault\u0026ctx_login_intent=signin\u0026ctx_login_flow=Signin\u0026ctx_login_state_transition=login_loaded\u0026comp=unifiedloginnodeweb\u0026tsrce=privacynodeweb\u0026cu=0\u0026ef_policy=gdpr_v2.1\u0026c_prefs=T%3D0%2CP%3D1%2CF%3D1%2Ctype%3Dimplicit\u0026pxpguid=6ec5f65819c0ad119da254fefffc3587\u0026pgst=1774376682814\u0026calc=f3485341e6b9f\u0026csci=f781841fd5ca404c9625a7a57b822049\u0026nsid=tcKVcxqub3Dj_abRMVcGCXpOYbw0PxBD\u0026rsta=en_GB\u0026ccpg=SG\u0026securityContext_status=success\u0026post_login_redirect=default\u0026ret_url=%2F\u0026event_name=c_paypal_cpl\u0026t1=8\u0026t1c=0\u0026t1d=0\u0026t1s=0\u0026t2=349\u0026t3=0\u0026tt=357\u0026protocol=h2\u0026cdn=fastly\u0026tmpl=%2F%2Fc.paypal.\u0026view=%7B%22t10%22%3A8%2C%22t11%22%3A357%2C%22nt%22%3A%22res%22%7D\u0026e=pf\u00263p_vid=47d477e2599fce4e\u00263p_fpti=424e81f465ff2b34 HTTP/1.1\r\nHost: t.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=0, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\ncontent-type: image/gif\r\npaypal-debug-id: 79d35bf3a1fa0\r\nset-cookie: ts=vreXpYrS%3D1806201734%26vteXpYrS%3D1774667534%26vr%3D424e81f465ff2b34%26vt%3D47d477e2599fce4e;Expires=Sun, 28 Mar 2027 02:42:14 GMT;domain=.paypal.com;path=/;secure;HttpOnly;\nts_c=vr%3D424e81f465ff2b34%26vt%3D47d477e2599fce4e;Expires=Sun, 28 Mar 2027 02:42:14 GMT;domain=.paypal.com;path=/;secure;\r\ncorrelation-id: 79d35bf3a1fa0\r\nexpires: Sat, 28 Mar 2026 02:42:14 GMT\r\naccess-control-expose-headers: Server-Timing\r\np3p: CP=\"CAO IND OUR SAM UNI STA COR COM\"\r\naccept-ranges: bytes\r\nvia: 1.1 varnish, 1.1 varnish\r\ndate: Sat, 28 Mar 2026 02:42:14 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-fra-etou8220055-FRA, cache-fra-etou8220055-FRA, cache-hel1410021-HEL\r\nx-cache: MISS, MISS, MISS\r\nx-cache-hits: 0, 0, 0\r\nx-timer: S1774665734.952964,VS0,VE229\r\nvary: Accept-Encoding\r\nserver-timing: \"traceparent;desc=\"00-000000000000000000079d35bf3a1fa0-14023f865685e53d-01\"\";content-encoding;desc=\"\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"b4682377ddfbe4e7dabfddb2e543e842","sha1":"328e472721a93345801ed5533240eac2d1f8498c","sha256":"6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93","sha512":"202612457d9042fe853daab3ddcc1f0f960c5ffdbe8462fa435713e4d1d85ff0c3f197daf8dba15bda9f5266d7e1f9ecaeee045cbc156a4892d2f931fe6fa1bb","ssdeep":"","tlshash":"c2900023efc8c020c280c8380a2c0b0023baac200228030bc03c22e8ecaa3b38c22002","first_seen":"2023-04-06T23:21:37Z","last_seen":"2026-06-25T10:19:43.087197Z","times_seen":15872,"resource_available":true,"data":null}},"time_used":257,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":257,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/js/signin-split.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.270Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /web/res/1ca/74b84302a7188814d86f420a45647/js/signin-split.js HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/javascript\r\ncf-ray: 9e3347b45d97569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 1028867\r\ncache-control: max-age=31536000, s-maxage=31536000\r\ncontent-encoding: br\r\netag: W/\"69b3c297-4a0d8\"\r\nexpires: Tue, 16 Mar 2027 04:54:23 GMT\r\nlast-modified: Fri, 13 Mar 2026 07:53:59 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-headers: x-csrf-token\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg13bdrf5-2.ccg13.slc.paypalinc.com\r\npaypal-debug-id: 422e238e5f5a0\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":303320,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"eb106522dd80f44dff43f72385eb7715","sha1":"f028fe659c2cfccd3d5e2b6fe281be161abdb3a0","sha256":"49881c38fe082798dd6fe1ec33ab5a481957d0816791cd0c9809510ae967cb04","sha512":"fd8684af446910f93959f931d8dda393e293b8cf242742233f435c05fb12b6938ff2ea1a636873c3b0af1f9c18db928588fc82e9cd8adf02826d11a251789e09","ssdeep":"6144:dbBr5V/w4xB2CR/I5Uadu0UsRmzQPKSKbu:dbBrn/oCdIAzQiS1","tlshash":"e954e7a631ad18792b5b667634e3038170385d99e405ce284f79943c7d68d8fb332f6e","first_seen":"2026-03-17T13:52:37.572876Z","last_seen":"2026-04-01T01:54:21.308653Z","times_seen":7,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/webcaptcha/grcenterprise_v3_static.html","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.698Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /webcaptcha/grcenterprise_v3_static.html HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: text/html\r\ncf-ray: 9e3347b71e5c569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 2746934\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\nlast-modified: Thu, 02 May 2024 12:39:39 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-headers: x-csrf-token\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg14bdrf5-5.ccg14.slc.paypalinc.com\r\npaypal-debug-id: 74b8b39b02b19\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6589,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"fd7f53b9355d66c97bdf09e80309c704","sha1":"17bd574b480d827e047fedbfbe71103a9808ac71","sha256":"1de7dce113e00547082b160c7e6e08e329e081d6afc572ee8cce1105b05f2645","sha512":"010a2167e3651f463b6631fd8b269aabb0f655cdacef5a31a1ba3529f5b41d43ce83ebea70b717454416bf0c1d535cd7603c6bfc0bf2214ffb210006727ba279","ssdeep":"192:hyatC/3tqt2mZh9rZT+HhbcGNBD7pc/sK7vOavMj:k/3otbZhJh0FesK7A","tlshash":"7fd162ceff8c11178669120d662a34c9603ee07aac17ecdbfc7cae952750d7e422569c","first_seen":"2024-05-08T02:50:30Z","last_seen":"2026-05-01T14:56:46.283265Z","times_seen":270,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"browser-intake-us5-datadoghq.com/api/v2/rum?ddsource=browser\u0026ddtags=sdk_version%3A5.23.3%2Capi%3Axhr%2Cservice%3Aunifiedloginnodeweb\u0026dd-api-key=pubfa2a063cbe1e1dd735fe2d7af81a244e\u0026dd-evp-origin-version=5.23.3\u0026dd-evp-origin=browser\u0026dd-request-id=8aec768e-3f04-4778-8bd0-5d0a772357b1\u0026batch_time=1774665731757","fqdn":"browser-intake-us5-datadoghq.com","domain":"browser-intake-us5-datadoghq.com","tld":"com"},"ip":{"addr":"34.149.66.154","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.762Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.browser-intake-us5-datadoghq.com","organization":"Datadog, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Sun, 22 Feb 2026 00:00:00 GMT","end":"Sun, 28 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"66:26:09:FF:A9:7C:54:32:8C:51:09:02:0F:CE:A6:90:06:15:9E:AC","sha256":"F9:D8:4A:62:9C:3F:00:9E:4A:BC:55:23:0E:CA:F7:1D:A4:EB:4C:17:94:77:DE:5E:07:0F:0F:4F:47:0C:AE:62"}}},"request":{"raw":"POST /api/v2/rum?ddsource=browser\u0026ddtags=sdk_version%3A5.23.3%2Capi%3Axhr%2Cservice%3Aunifiedloginnodeweb\u0026dd-api-key=pubfa2a063cbe1e1dd735fe2d7af81a244e\u0026dd-evp-origin-version=5.23.3\u0026dd-evp-origin=browser\u0026dd-request-id=8aec768e-3f04-4778-8bd0-5d0a772357b1\u0026batch_time=1774665731757 HTTP/1.1\r\nHost: browser-intake-us5-datadoghq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 15996\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":15996,"data":"{\"_dd\":{\"format_version\":2,\"drift\":-1,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665728838,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"0aba3b41-18bb-4f3e-8419-5b60ce85b11f\",\"type\":\"document\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"duration\":2028000000,\"size\":29495,\"encoded_body_size\":29495,\"decoded_body_size\":29495,\"transfer_size\":29733,\"download\":{\"duration\":0,\"start\":2028000000},\"first_byte\":{\"duration\":322000000,\"start\":1706000000}},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731005,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"cade2d16-2ed3-4989-9972-973bbfab3fa0\",\"type\":\"js\",\"url\":\"https://ddbm2.paypal.com/tags.js\",\"duration\":116000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731006,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"9a9fbdd6-5d99-4805-bd6c-b743e1b47f75\",\"type\":\"js\",\"url\":\"https://www.paypalobjects.com/webcaptcha/ngrlCaptcha.min.js\",\"duration\":131000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731006,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"138a87dc-8e57-498d-81c6-709366732282\",\"type\":\"js\",\"url\":\"https://www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/js/lib/modernizr-2.6.1.js\",\"duration\":131000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731006,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"dea3acbf-0f4b-4e10-b2b3-8cf8665f6151\",\"type\":\"css\",\"url\":\"https://www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/css/contextualLoginElementalUIv5_1.css\",\"duration\":132000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":1,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731006,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"c6909cf4-eb1f-411e-9ceb-778e62d313ad\",\"type\":\"image\",\"url\":\"https://d.paypal.com/cdn/cd/199f4dcf55b9dafd6ad41cbcfb237f87/9f89c84a559f573636a47ff8daed0d33/icon.jpg\",\"duration\":577000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731006,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"c11599d6-5543-4313-8aee-816ecf9037f1\",\"type\":\"css\",\"url\":\"https://d.paypal.com/cdn/cd/199f4dcf55b9dafd6ad41cbcfb237f87/9f89c84a559f573636a47ff8daed0d33/bootstrap.min.css\",\"duration\":578000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":-1,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731018,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"61292586-9e50-496d-bc7f-4ca002e69083\",\"type\":\"image\",\"url\":\"https://www.paypalobjects.com/en_US/i/icon/pp_favicon_x.ico\",\"duration\":703000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731018,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"11a4fdad-f74a-460a-acda-b6790fe2a028\",\"type\":\"image\",\"url\":\"https://www.paypalobjects.com/webstatic/icon/pp64.png\",\"duration\":702000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731243,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"7a9b4660-20cf-4699-8804-7ac63256c23d\",\"type\":\"js\",\"url\":\"https://www.paypalobjects.com/rdaAssets/fraudnet/sync/fn-sync-telemetry-min.js\",\"duration\":31000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731243,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"cf18ed44-e465-4a3e-af76-410d83b03151\",\"type\":\"image\",\"url\":\"https://www.paypalobjects.com/images/shared/icon-PN-check.png\",\"duration\":29000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731243,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"7e3b7a8d-d856-4669-b3ad-278ebe4ee98b\",\"type\":\"image\",\"url\":\"https://www.paypalobjects.com/images/shared/glyph_alert_critical_big-2x.png\",\"duration\":29000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":-1,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731244,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"e66d1110-d40d-40ed-8da9-d873d4c45c7c\",\"type\":\"js\",\"url\":\"https://www.paypalobjects.com/pa/js/min/pa.js\",\"duration\":33000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731244,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"2f0b4ec6-9f9c-48d4-8096-2bcb361ff4d9\",\"type\":\"js\",\"url\":\"https://www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/js/signin-split.js\",\"duration\":32000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731245,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"681659e4-136e-44fa-b0f2-9d07f135ec97\",\"type\":\"js\",\"url\":\"https://www.paypalobjects.com/webcaptcha/grcenterprise_v3_static.js\",\"duration\":37000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":-1,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731245,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"87d8d916-5fca-4bd4-86d7-a3002bebaec3\",\"type\":\"js\",\"url\":\"https://d.paypal.com/cdn/ca/home-stat.js?a=9f89c84a559f573636a47ff8daed0d33\",\"duration\":23000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731245,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"c472c35f-14d3-4e38-ad03-ad7dc9950373\",\"type\":\"js\",\"url\":\"https://www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/js/lib/datadog-rum.js\",\"duration\":33000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731254,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"5b978edb-e20d-4d8d-a85c-96f60e1e0ed7\",\"type\":\"js\",\"url\":\"https://paypalobjects.com/ae/0.16.0/atomic-events-dom/index.js\",\"duration\":96000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731620,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"154e89b2-8079-48fc-b3e3-1c91068ab737\",\"type\":\"js\",\"url\":\"https://www.paypalobjects.com/martech/tm/paypal/mktgtagmanager.js\",\"duration\":77000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":-1,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731632,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"1d07d34c-090c-4861-9775-a576a0b7bd1a\",\"type\":\"js\",\"url\":\"https://d.paypal.com/cdn/ca/jquery-3.6.1.min.js\",\"duration\":14000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5,\"start_session_replay_recording_manually\":false},\"document_version\":1,\"page_states\":[{\"state\":\"passive\",\"start\":2887000000}]},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665728838,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\",\"sampled_for_replay\":false},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\",\"action\":{\"count\":0},\"frustration\":{\"count\":0},\"error\":{\"count\":0},\"is_active\":true,\"loading_type\":\"initial_load\",\"long_task\":{\"count\":0},\"resource\":{\"count\":0},\"time_spent\":2892000000},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"type\":\"view\",\"privacy\":{\"replay_level\":\"mask-user-input\"}}"}},"response":{"raw":"HTTP/2 202 Accepted\r\ncontent-type: application/json\r\ncontent-length: 53\r\ndd-request-id: 8aec768e-3f04-4778-8bd0-5d0a772357b1\r\ncross-origin-resource-policy: cross-origin\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"202","status_text":"Accepted","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":53,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7edc1436bfe4da49f0a926b1dbf41025","sha1":"31c60a128b8912761735756b35c2510510b55ed1","sha256":"b97e1552a986de1d74f169639f8fb3a65ba9a0dd9408ab45d3f71015ecf16a67","sha512":"667a1296cf516f748b5a443fad13bb3704508bdfa7c7c53e3483d9f2b1e2e2f89228e412279eabac09f47af740bd04e1f3c6860821237ef2d3db0bd564611474","ssdeep":"","tlshash":"549002837661bbd260520426c51a0b3a50615b049248543a4121544c91d519062e0dc1","first_seen":"2026-03-28T02:42:47.218952Z","last_seen":"2026-03-28T02:42:47.218952Z","times_seen":1,"resource_available":false,"data":null}},"time_used":843,"timings":{"blocked":278,"dns":15,"connect":12,"send":0,"wait":284,"receive":2,"ssl":248},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/client-log","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.943Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/client-log HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 651\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":651,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026currentUrl=https%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F\u0026logRecords=%5B%7B%22evt%22%3A%22INFO%22%2C%22data%22%3A%22CUSTOMCPLMETRICS%22%2C%22calPayload%22%3A%22%7B%5C%22t12%5C%22%3A2786%2C%5C%22fetchStart%5C%22%3A1704%2C%5C%22domComplete%5C%22%3A3050%2C%5C%22redirectStart%5C%22%3A0%2C%5C%22unloadEventEnd%5C%22%3A0%2C%5C%22domContentLoadedEventEnd%5C%22%3A2855%2C%5C%22loadEventStart%5C%22%3A3069%7D%22%2C%22calEvent%22%3Atrue%2C%22timestamp%22%3A1774665731907%7D%2C%7B%22evt%22%3A%22context_correlation_id%22%2C%22data%22%3A%22f3485341e6b9f%22%2C%22instrument%22%3Atrue%7D%5D\u0026intent=\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:17 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":8977,"timings":{"blocked":2497,"dns":1,"connect":324,"send":0,"wait":3964,"receive":0,"ssl":2187},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/challenge/sms","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/challenge/sms HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 408\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":408,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026locale.x=en_US\u0026processSignin=main\u0026login_email=\u0026login_password=\u0026bp_mid=v%3D1%3Ba1%3Dna~a2%3Dna~a3%3Dna~a4%3DMozilla~a5%3DNetscape~a6%3D5.0%20(Windows)~a7%3D20100101\u0026partyIdHash=6b473892d4a3a7fa75d192f62bdd9c8de87be1f06cf205e07cdb52869586f598\u0026otpVariant=viaLink\u0026otpLoginType=undefined\u0026loginPreference=undefined\u0026otpType=undefined\u0026errorReason=null\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:17 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":6688,"timings":{"blocked":1489,"dns":0,"connect":0,"send":0,"wait":3935,"receive":0,"ssl":1264},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"browser-intake-us5-datadoghq.com/api/v2/rum?ddsource=browser\u0026ddtags=sdk_version%3A5.23.3%2Capi%3Axhr%2Cservice%3Aunifiedloginnodeweb\u0026dd-api-key=pubfa2a063cbe1e1dd735fe2d7af81a244e\u0026dd-evp-origin-version=5.23.3\u0026dd-evp-origin=browser\u0026dd-request-id=9c441d1b-58dd-4d1f-b4f6-0723424c04ff\u0026batch_time=1774665733208","fqdn":"browser-intake-us5-datadoghq.com","domain":"browser-intake-us5-datadoghq.com","tld":"com"},"ip":{"addr":"34.149.66.154","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:13.211Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.browser-intake-us5-datadoghq.com","organization":"Datadog, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Sun, 22 Feb 2026 00:00:00 GMT","end":"Sun, 28 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"66:26:09:FF:A9:7C:54:32:8C:51:09:02:0F:CE:A6:90:06:15:9E:AC","sha256":"F9:D8:4A:62:9C:3F:00:9E:4A:BC:55:23:0E:CA:F7:1D:A4:EB:4C:17:94:77:DE:5E:07:0F:0F:4F:47:0C:AE:62"}}},"request":{"raw":"POST /api/v2/rum?ddsource=browser\u0026ddtags=sdk_version%3A5.23.3%2Capi%3Axhr%2Cservice%3Aunifiedloginnodeweb\u0026dd-api-key=pubfa2a063cbe1e1dd735fe2d7af81a244e\u0026dd-evp-origin-version=5.23.3\u0026dd-evp-origin=browser\u0026dd-request-id=9c441d1b-58dd-4d1f-b4f6-0723424c04ff\u0026batch_time=1774665733208 HTTP/1.1\r\nHost: browser-intake-us5-datadoghq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 14844\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":14844,"data":"{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731648,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"df28a5db-f668-4f8c-9f7e-501e2a94b98e\",\"type\":\"font\",\"url\":\"https://www.paypalobjects.com/paypal-ui/fonts/PayPalOpen-Regular.woff2\",\"duration\":50000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":1,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731655,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"d6d3138a-39e6-434b-921c-eb7c7a27299c\",\"type\":\"font\",\"url\":\"https://www.paypalobjects.com/paypal-ui/fonts/PayPalOpen-Medium.woff2\",\"duration\":43000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731686,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"99a76f5d-c8d5-4051-9c1c-e6574c1e5ce0\",\"type\":\"other\",\"url\":\"https://www.paypalobjects.com/webcaptcha/grcenterprise_v3_static.html\",\"duration\":23000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":1,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731756,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"2bc69156-ada6-44c1-8388-0b3ca6139b0a\",\"type\":\"js\",\"url\":\"https://www.paypalobjects.com/martech/tm/paypal/mktconf.js\",\"duration\":21000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5}},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731899,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\",\"in_foreground\":false},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"error\":{\"id\":\"3a218bee-c6b5-47af-abc3-d5d5f7258b90\",\"message\":\"Uncaught \\\"Script error.\\\"\",\"source\":\"source\",\"stack\":\"Error: Script error.\\n  at undefined @ https://www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/js/signin-split.js\",\"handling\":\"unhandled\",\"source_type\":\"browser\"},\"type\":\"error\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731892,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"8564818c-338b-424e-8faa-25b955db4b56\",\"type\":\"js\",\"url\":\"https://c.paypal.com/da/r/fb_fp.js\",\"duration\":183000000,\"size\":70828,\"encoded_body_size\":23541,\"decoded_body_size\":70828,\"transfer_size\":24612,\"download\":{\"duration\":6000000,\"start\":177000000},\"first_byte\":{\"duration\":14000000,\"start\":163000000},\"connect\":{\"duration\":50000000,\"start\":113000000},\"ssl\":{\"duration\":18000000,\"start\":145000000},\"dns\":{\"duration\":84000000,\"start\":28000000}},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665731907,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"4f08fa4d-5502-48cb-8931-c21b51596ff7\",\"type\":\"fetch\",\"duration\":395000000,\"method\":\"GET\",\"status_code\":0,\"url\":\"https://t.paypal.com/ts?v=1.10.0\u0026t=1774665731900\u0026g=0\u0026e=err\u0026page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A\u0026pgrp=main%3Aunifiedlogin%3A%3A%3Alogin\u0026comp=unifiedloginnodeweb\u0026erpg=Script%20error.\u0026error_type=WINDOW_ONERROR\u0026error_source=https%3A%2F%2Fwww.paypalobjects.com%2Fweb%2Fres%2F1ca%2F74b84302a7188814d86f420a45647%2Fjs%2Fsignin-split.js%200%3A0\u0026event_name=client_js_error_triggered\u00263p_vid=47d477e2599fce4e\u00263p_fpti=424e81f465ff2b34\",\"size\":42,\"encoded_body_size\":42,\"decoded_body_size\":42,\"transfer_size\":1227,\"download\":{\"duration\":0,\"start\":395000000},\"first_byte\":{\"duration\":237000000,\"start\":158000000},\"connect\":{\"duration\":62000000,\"start\":96000000},\"ssl\":{\"duration\":30000000,\"start\":128000000},\"dns\":{\"duration\":70000000,\"start\":25000000}},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665732515,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"a6ce795f-a8ac-4a11-a764-40bd14d4d5b2\",\"type\":\"other\",\"url\":\"https://d.paypal.com/cdn/ca/lwsa.html\",\"duration\":7000000},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665732459,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"c08cbae6-3887-4cb0-a4a9-6802c6085f95\",\"type\":\"image\",\"url\":\"https://c6.paypal.com/v1/r/d/b/p3?f=6b456f150e1440fc9b9489b69051b882\u0026s=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT\",\"duration\":376000000,\"size\":0,\"encoded_body_size\":0,\"decoded_body_size\":0,\"transfer_size\":741,\"download\":{\"duration\":0,\"start\":376000000},\"first_byte\":{\"duration\":273000000,\"start\":103000000},\"connect\":{\"duration\":34000000,\"start\":69000000},\"ssl\":{\"duration\":17000000,\"start\":86000000},\"dns\":{\"duration\":65000000,\"start\":4000000}},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665732546,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"95644554-553c-4231-b011-218b1698e601\",\"type\":\"other\",\"url\":\"https://c.paypal.com/v1/r/d/b/e?appId=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT\u0026correlationID=6b456f150e1440fc9b9489b69051b882\u0026ed=%5B%7B%22location%22%3A%22P1%22%2C%22field%22%3A%22tP1A%22%2C%22issue%22%3A%22e%3D0%3A%20Interrupted%26stack%3DP.prototype.onReadyStateChangeHandler%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A7957%5Cne.exports%2Fn.onreadystatechange%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18589%5CnEventHandlerNonNull*e.exports%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18475%5CnP.prototype.standardXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8423%5CnP.prototype.createXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8344%5CnP%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A6382%5CnMe%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A38620%5CnWn.asyncData.initAndCollect%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A62355%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70809%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70826%5Cn%26url%3Dhttps%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F%22%7D%5D\u0026rvr=3.14.0-FP\u0026ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:134.0)%20Gecko/20100101%20Firefox/134.0\u0026wv=false\",\"duration\":380000000,\"size\":0,\"encoded_body_size\":0,\"decoded_body_size\":0,\"transfer_size\":823,\"download\":{\"duration\":0,\"start\":380000000},\"first_byte\":{\"duration\":373000000,\"start\":7000000}},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665732687,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"3fa2e64a-62d4-41e5-8201-3293b593f661\",\"type\":\"other\",\"url\":\"https://c.paypal.com/v1/r/d/b/e?appId=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT\u0026correlationID=6b456f150e1440fc9b9489b69051b882\u0026ed=%5B%7B%22location%22%3A%22P2%22%2C%22field%22%3A%22tP2A%22%2C%22issue%22%3A%22e%3D0%3A%20Interrupted%26stack%3DP.prototype.onReadyStateChangeHandler%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A7957%5Cne.exports%2Fn.onreadystatechange%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18589%5CnEventHandlerNonNull*e.exports%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18475%5CnP.prototype.standardXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8423%5CnP.prototype.createXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8344%5CnP%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A6382%5CnWe%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A49143%5CnWn.asyncData.initAndCollect%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A62361%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70809%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70826%5Cn%26url%3Dhttps%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F%22%7D%5D\u0026rvr=3.14.0-FP\u0026ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:134.0)%20Gecko/20100101%20Firefox/134.0\u0026wv=false\",\"duration\":331000000,\"size\":0,\"encoded_body_size\":0,\"decoded_body_size\":0,\"transfer_size\":823,\"download\":{\"duration\":1000000,\"start\":330000000},\"first_byte\":{\"duration\":322000000,\"start\":8000000}},\"type\":\"resource\"}\n{\"_dd\":{\"format_version\":2,\"drift\":0,\"configuration\":{\"session_sample_rate\":100,\"session_replay_sample_rate\":5},\"discarded\":false},\"application\":{\"id\":\"cc878d04-1c0d-492b-a5a7-cb4daa889283\"},\"date\":1774665732696,\"service\":\"unifiedloginnodeweb\",\"source\":\"browser\",\"session\":{\"id\":\"19ce3815-a8ad-401c-b3db-37bc5647da64\",\"type\":\"user\"},\"view\":{\"id\":\"4879f50b-7454-48fa-b03b-3c2f1d41771b\",\"url\":\"https://com-elevarepay.web.id/signin/\",\"referrer\":\"\"},\"action\":{\"id\":[]},\"display\":{\"viewport\":{\"width\":1280,\"height\":1024}},\"connectivity\":{\"status\":\"connected\"},\"resource\":{\"id\":\"ac98a914-ae7b-498a-bae3-2dde37f561ca\",\"type\":\"other\",\"url\":\"https://c.paypal.com/v1/r/d/b/e?appId=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT\u0026correlationID=6b456f150e1440fc9b9489b69051b882\u0026ed=%5B%7B%22location%22%3A%22W%22%2C%22field%22%3A%22tWA%22%2C%22issue%22%3A%22e%3D0%3A%20Interrupted%26stack%3DP.prototype.onReadyStateChangeHandler%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A7957%5Cne.exports%2Fn.onreadystatechange%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18589%5CnEventHandlerNonNull*e.exports%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18475%5CnP.prototype.standardXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8423%5CnP.prototype.createXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8344%5CnP%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A6382%5Cnwn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A56313%5CnWn.asyncData.initAndCollect%2F%3C%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A61244%5CnHn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A60539%5Cnkn%2F%3C%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A60055%5Cnpromise%20callback*kn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A59992%5CnWn.asyncData.initAndCollect%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A61226%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70809%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70826%5Cn%26url%3Dhttps%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F%22%7D%5D\u0026rvr=3.14.0-FP\u0026ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:134.0)%20Gecko/20100101%20Firefox/134.0\u0026wv=false\",\"duration\":357000000,\"size\":0,\"encoded_body_size\":0,\"decoded_body_size\":0,\"transfer_size\":823,\"download\":{\"duration\":0,\"start\":357000000},\"first_byte\":{\"duration\":349000000,\"start\":8000000}},\"type\":\"resource\"}"}},"response":{"raw":"HTTP/2 202 Accepted\r\ncontent-type: application/json\r\ncontent-length: 53\r\ndd-request-id: 9c441d1b-58dd-4d1f-b4f6-0723424c04ff\r\ncross-origin-resource-policy: cross-origin\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ndate: Sat, 28 Mar 2026 02:42:13 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"202","status_text":"Accepted","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":53,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"2fb95b959e3987ff7f6f9f835ee1709c","sha1":"01232affe4e251daa9b5377940aa172e23ff5608","sha256":"9821c365279142291fb6579fc6244e9f72cacfb8d3fb713ee39fefc1a26a9050","sha512":"a1288b1c4f809748e0a650e4f8d4800fd891d0379aa1cf7269474d877f800c42e600e38b3201c5664d7d66c8cdb391b5027be95126725f4a51fe02cd2b0f1948","ssdeep":"","tlshash":"85900241695194c2c1441c05881156514c04a010768c352e502531e64d1b009c21014d","first_seen":"2026-03-28T02:42:47.22022Z","last_seen":"2026-03-28T02:42:47.22022Z","times_seen":1,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":218,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/ca/home-stat.js?a=9f89c84a559f573636a47ff8daed0d33","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.273Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"d.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 21 Nov 2025 00:00:00 GMT","end":"Thu, 21 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:95:B3:90:9B:31:9E:BC:57:35:3B:83:0F:11:A6:C1:B5:7B:AD:10","sha256":"D4:9C:0B:6F:12:3A:41:94:A5:60:6B:34:B5:61:2E:13:B0:A5:7C:15:B1:CE:68:6E:36:55:DB:32:79:6C:AF:BA"}}},"request":{"raw":"GET /cdn/ca/home-stat.js?a=9f89c84a559f573636a47ff8daed0d33 HTTP/1.1\r\nHost: d.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://com-elevarepay.web.id/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\ndate: Fri, 27 Mar 2026 10:53:29 GMT\r\nlast-modified: Tue, 17 Mar 2026 19:02:09 GMT\r\ncontent-encoding: br\r\nserver: AmazonS3\r\netag: W/\"e4452d5ac5771ef27e1425e541f7b1d3\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 0dab08166aa7b915b2e3314728d79750.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: GPgBJymoeC8ptVi0R66QugCndg7Jt2YtcAbLWOXZdJkFwQf2OTli8g==\r\nage: 56923\r\nvary: Accept-Encoding, Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5246,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (5246), with no line terminators","md5":"e4452d5ac5771ef27e1425e541f7b1d3","sha1":"b38d9ffff1f6a671bb358c08fc1af17091f6b6c7","sha256":"5bb7cbd5e7b3f0fe6ecdbb2014d1547efdb841897a41b761fec472eec917ab1c","sha512":"1aff002a32684cff84fda4e59d7f3868ed8b23789d12f59b518096cc3842009e44267d1eda3e8c47f0e3bea7c0ed27e5fc7eceb3b0baf62aa0b82c4672ec8d66","ssdeep":"96:ZMktelJj+yoMtV6Y1kXpRAjrnf3GzRiJz30sU:6vJj+jMLNApujrnf3aW30sU","tlshash":"2fb1c2d46be5e11f2bdd0e93fd249ffa00ba966a61927307c36cf98d14a9247c1ac448","first_seen":"2026-03-25T15:24:15.906368Z","last_seen":"2026-06-03T08:38:58.356828Z","times_seen":16,"resource_available":true,"data":null}},"time_used":2,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.paypal.com/da/r/fb_fp.js","fqdn":"c.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.193.21","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.932Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 05 Aug 2025 00:00:00 GMT","end":"Tue, 04 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"12:2E:F7:4B:EE:2D:15:15:4F:4E:DE:63:48:9F:DB:6C:A1:B4:A4:6D","sha256":"A6:C0:A2:30:F9:69:64:91:78:C1:B6:BD:F4:64:B7:8A:CF:17:D7:55:84:52:3F:43:97:56:68:51:CA:99:FD:6B"}}},"request":{"raw":"GET /da/r/fb_fp.js HTTP/1.1\r\nHost: c.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncf-cache-status: HIT\r\nx-content-type-options: nosniff\r\naccess-control-allow-headers: x-csrf-token\r\ncf-ray: 9e22e7fd2a89dfd7-HEL\r\netag: W/\"69c47363-114ac\"\r\ndc: ccg11-origin-www-1.paypal.com\r\nlast-modified: Wed, 25 Mar 2026 23:44:35 GMT\r\nserver: cloudflare\r\npaypal-debug-id: 70b6fd6c3cfa3\r\ncontent-type: application/javascript\r\ncontent-encoding: gzip\r\naccept-ranges: bytes\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nvia: 1.1 varnish\r\nage: 180095\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-hel1410024-HEL, cache-hel1410027-HEL\r\nx-cache: MISS, HIT\r\nx-cache-hits: 0, 4223\r\nx-timer: S1774665732.060835,VS0,VE1\r\nvary: Accept-Encoding, Accept-Encoding\r\nexpires: Sun, 29 Mar 2026 02:42:12 GMT\r\ncache-control: s-maxage=31536000, public,max-age=86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-allow-credentials: false\r\naccess-control-max-age: 86400\r\nserver-timing: content-encoding;desc=\"gzip\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\ncontent-length: 23541\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":70828,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"a32976d07ac9cd9c1aec95150ada6231","sha1":"526494ccc0c4bbfdf761200d6db75e962e97291f","sha256":"39cd75c742f5fbee3cbc594aaea90b28d7df8d1f893005875c912fa5ef2099dc","sha512":"2b256cda6610a391f2fc2ce4c4a1c9e66bfbb4a342c78a896aa872a640911bdd5f5902a5575dbe26a6020bc0bc4abaa3d9920d1bf691239935b6757208f1731c","ssdeep":"1536:8HUlVnIULGcqyAkOv/Gqxsxi+kbQgVGWxqBf6kGEscqzttHrPJF:8HUlVnIULGQClxV+kBVGKqU1ttHrPJF","tlshash":"d46319dfb6087416067329eab42f5215b5366304a88ee458b16bf5913cace877323f7c","first_seen":"2026-03-27T22:54:29.914392Z","last_seen":"2026-06-04T13:12:24.476616Z","times_seen":35,"resource_available":true,"data":null}},"time_used":280,"timings":{"blocked":123,"dns":85,"connect":25,"send":0,"wait":14,"receive":7,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lhr.stats.paypal.com/v1/counter2.cgi?r=cD02YjQ1NmYxNTBlMTQ0MGZjOWI5NDg5YjY5MDUxYjg4MiZpPTEwMy4xNTQuMTEwLjMmdD0xNzc0Mzc2NjgyLjg2MiZhPTIxJnM9VU5JRklFRF9MT0dJTg0xcI_NUv7JIeVmpT8QflZi6MuP","fqdn":"lhr.stats.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"34.147.177.40","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.706Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"b.stats.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Thu, 08 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"F7:51:A4:2B:BB:2D:3E:9D:2A:AE:A4:4C:C4:7C:AF:15:2A:E4:DD:9A","sha256":"04:A3:15:26:AA:1D:C2:BC:5A:41:8F:6D:AB:49:DE:F3:5C:87:71:04:56:0E:D2:4A:4F:B5:0D:57:44:BE:26:8C"}}},"request":{"raw":"GET /v1/counter2.cgi?r=cD02YjQ1NmYxNTBlMTQ0MGZjOWI5NDg5YjY5MDUxYjg4MiZpPTEwMy4xNTQuMTEwLjMmdD0xNzc0Mzc2NjgyLjg2MiZhPTIxJnM9VU5JRklFRF9MT0dJTg0xcI_NUv7JIeVmpT8QflZi6MuP HTTP/1.1\r\nHost: lhr.stats.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://com-elevarepay.web.id/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nConnection: close\r\nServer: PayPal-B.Stats/1.0\r\nContent-Type: image/jpeg\r\nContent-Length: 42\r\nSet-Cookie: c=b644101cd90501f61d23; Domain=stats.paypal.com; expires=Fri, 23 Mar 2046 02:42:12 GMT; Path=/\r\nDate: Sat, 28 Mar 2026 02:42:12 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache Traffic Server:1.0","description":"Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.","website":"https://trafficserver.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*","icon":"Apache Traffic Server.svg","categories":["Web servers"]}],"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"accba0b69f352b4c9440f05891b015c5","sha1":"9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f","sha256":"47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292","sha512":"d3c4a5427bf645cc226106b0e8c28a76b0b91f50fa6d77e962a3b59b85be2a0cfdb94ec0f40742f10c18025573d8fbfadecddf60f4652bae671f6031c02a7cb5","ssdeep":"","tlshash":"a0900023fa828000c3a8c2300b0b23822b8c80a00aa8032380ae208cec3a3aa2c03020","first_seen":"2023-04-05T16:42:42Z","last_seen":"2026-06-25T23:56:01.268329Z","times_seen":6471,"resource_available":true,"data":null}},"time_used":276,"timings":{"blocked":115,"dns":26,"connect":42,"send":0,"wait":46,"receive":0,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/webstatic/icon/pp64.png","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.708Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /webstatic/icon/pp64.png HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 985\r\ncf-ray: 9e3347b72e66569c-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 9811675\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\netag: \"cf2hoRrA3v185JX76RNdzZqLnTK1VnHOdKHxTvMGKADQ:53611ccb-11a6\"\r\nlast-modified: Wed, 30 Apr 2014 15:54:51 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\nx-content-type-options: nosniff\r\ncf-resized: internal=ram/- q=0 n=0+0 c=0+0 v=2025.10.9 l=985\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\npriority: u=4;i=?0,cf-chb=(173;u=4;i=?0)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":985,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3","md5":"023075bc4303c2be95c07a3d6cb8c611","sha1":"2feff3517280158d53e64cb9d0786133dfa800e2","sha256":"88308c4c9a6c7accd4d8541939b6c6ff7b6cd035ebd6c5f00055a1d761348d37","sha512":"69369575b8185447c80db03aeb4cb588418729da4c2e08a10dbf6913cf48f05a32ae8219323b97d99b76dd7bd95b3b6c1e15b46306d4dac5df0e4cf33c87b288","ssdeep":"","tlshash":"c111542ee2a6986be73d3d749730232167272a515308c7c98284d76521a04e76e286c3","first_seen":"2025-09-25T07:13:32.21734Z","last_seen":"2026-06-11T00:50:39.922408Z","times_seen":68,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/cd/gwf?e=v\u0026v=latest","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"d.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 21 Nov 2025 00:00:00 GMT","end":"Thu, 21 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:95:B3:90:9B:31:9E:BC:57:35:3B:83:0F:11:A6:C1:B5:7B:AD:10","sha256":"D4:9C:0B:6F:12:3A:41:94:A5:60:6B:34:B5:61:2E:13:B0:A5:7C:15:B1:CE:68:6E:36:55:DB:32:79:6C:AF:BA"}}},"request":{"raw":"POST /cdn/cd/gwf?e=v\u0026v=latest HTTP/1.1\r\nHost: d.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://com-elevarepay.web.id/\r\ncontent-type: application/x-www-form-urlencoded\r\nx-h-token: cuVYvJqCkZOp68KvRi4+BQFHTJ06StadWxoNiKf/B8g=\r\nContent-Length: 860\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ec080eef91390fd025dd0bb85cfbf60e__sb=Jp8RNTnTIPgjgOljsGdMburAyiYxsRurijX0zfTSxYtrWvTZDl\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":860,"data":"o=ZWMwODBlZWY5MTM5MGZkMDI1ZGQwYmI4NWNmYmY2MGU%3D\u0026m=aRh1JJrPM33ICsOEw8%2F56RuuOIjHoY%2Fou%2Bmiep4AUFqgXrzhppQOnjoUrpP7BaASOmtuVgeQGwfVzRPtZG208ZP0kS%2FFgv8SbThz5bHBbmrUKby6pIZeAtWyKsQ5bwJUc%2FUckdRqDHCF6dQH4BXysPnV9JHdESGLsCIepv026MWadzbirO3eK4yIzDOSgj0Ltq%2BSUU5HT52VWwCBvwdAvf22pH6qDlHKgWVXJQV6ZvTx%2BwK1omRhQOSzEF3091BYKXUrlP7OQzVzVZFZ%2FbF9AUoqrqrJQtfW9bWr9IU6TGHP3ZUCjocbOFbe6CG8lPZzpo9c7o0wPEqCqHQewAMSUPRrCjcTQGJ0QH9K1Oegil%2BZt3aJRuGvbDf0lxeuDKz3SfdvjUgYl0AUsJFyV1MhPQIi80FKa4QFkKALd5lltiCvI89DC66Ant1cOBPMP4bcEEaZtFuhfv6Lo5utx%2FB8JUIHIlPlr0yuL4BBEInU9LfE5PxozkjdgzZX7gHx4iTqpOsoNPs1pQlJkFftByEPw%2FPEh6hYqAjGCNIPWLTkeYmb8DwQIGOySwKe9Dgw7g4cAw3xbEfivFZhCWIKiVNjGDHZ3PwFYfv2lMmuq%2ByjN8b2Brn9xtWhwp6qaCPh79hWCaajqb6o4vFTb5884AznunnuQaFnDov2cxMq0R6V0vuYn9XZ\u0026s=UjqM86ht72lN5Ym6K4CZA4Iu78%2Bz1krZw40Lxx%2FTgrs%3D\u0026a=9f89c84a559f573636a47ff8daed0d33\u0026v=latest"}},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/plain; charset=UTF-8\r\ndate: Sat, 28 Mar 2026 02:42:13 GMT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nserver: nginx\r\npragma: no-cache\r\ncache-control: no-cache, pre-check=0, post-check=0, max-age=0, s-maxage=0, no-store, must-revalidate\r\nreferrer-policy: unsafe-url\r\nx-content-type-options: no-sniff\r\naccess-control-allow-origin: https://com-elevarepay.web.id\r\naccess-control-allow-credentials: true\r\nx-permitted-cross-domain-policies: master-only\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0dab08166aa7b915b2e3314728d79750.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: pIQMJFnrU7d97Y-edqAcqK2_FSNVj-d8B_sqsrQ71dc_u2U2ZGKEJA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11256,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (11256), with no line terminators","md5":"f49e4d5b88ea24de34f6c38ac51787cd","sha1":"185e5a89693c0370aa1dda4490863740d562a187","sha256":"7613618533b64c7732ba790ab7ebcc7b50e73a305a26a387efeb77c741d4caf0","sha512":"0d6f6df31cd52f29a82d49d3a1f2f6eb68cf3289709cfc932a9a10f5a0bbcc3075774bf94e4f9e200cf7569d5ab2e681dac7d492b2c2ace873de69ef87ef3cec","ssdeep":"192:Hhghnm1NJc0vdyx6PHQI9TXznVhfTS8ysDbtQRZSBzZl+DJ4ssHwYjvaT8FG4KnT:B+nTidykPwMLznVZ9ykJQCr+l4hwkv2n","tlshash":"5832b04896d0508f88c6d555689d32bc7a7c05c428310de8fde7712cb237c55ac25a9f","first_seen":"2026-03-28T02:42:47.223921Z","last_seen":"2026-03-28T02:42:47.223921Z","times_seen":1,"resource_available":false,"data":null}},"time_used":459,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":459,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-28T02:42:10.219Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"GET /signin HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Sat, 28 Mar 2026 02:42:10 GMT\r\nServer: Apache\r\nLocation: https://com-elevarepay.web.id/signin/\r\nContent-Length: 285\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":29495,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":321,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":321,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"www.paypalobjects.com/martech/tm/paypal/mktgtagmanager.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.623Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /martech/tm/paypal/mktgtagmanager.js HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/javascript\r\ncf-ray: 9e3347b6ae3d569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\ncontent-encoding: br\r\netag: W/\"68427e47-3e8b\"\r\nlast-modified: Fri, 06 Jun 2025 05:36:07 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-headers: x-csrf-token\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg14bdrf5-6.ccg14.slc.paypalinc.com\r\npaypal-debug-id: d4ea8df9a9b45\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16011,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (15983)","md5":"830bbce0cf86d48e69d5638b4b8d9e36","sha1":"3516ff3722f95034a88f13eed044d7c7e89e4806","sha256":"21dac7841ff8ec6064185eed4ad7ccfb8396a393c7cf07cd2aea86962a4d43ae","sha512":"ce9d4f944417465d3bcb4d2f808d5e4ff5c447e9d1b644e29ded2e0fea312683f86cec6ff554c405bb9fbc02661329d16bc0f821b84b6228a9644579394bf991","ssdeep":"384:kcGfcUvUKvmwdGebFa7ACG0TXXIU1ebdlM/6y47WL0iJWh:xUJvmwd7bsvtGdlMQd","tlshash":"69722a4937d5f0b1877b10b542af260bb0393a65ac4ec4d0d586e8d03cb4a9f877be99","first_seen":"2025-06-10T03:28:52.766713Z","last_seen":"2026-06-26T01:22:23.52084Z","times_seen":1225,"resource_available":true,"data":null}},"time_used":75,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":75,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c6.paypal.com/v1/r/d/b/p3?f=6b456f150e1440fc9b9489b69051b882\u0026s=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT","fqdn":"c6.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.129.35","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.465Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 05 Aug 2025 00:00:00 GMT","end":"Tue, 04 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"12:2E:F7:4B:EE:2D:15:15:4F:4E:DE:63:48:9F:DB:6C:A1:B4:A4:6D","sha256":"A6:C0:A2:30:F9:69:64:91:78:C1:B6:BD:F4:64:B7:8A:CF:17:D7:55:84:52:3F:43:97:56:68:51:CA:99:FD:6B"}}},"request":{"raw":"GET /v1/r/d/b/p3?f=6b456f150e1440fc9b9489b69051b882\u0026s=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT HTTP/1.1\r\nHost: c6.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\npaypal-debug-id: ef8978502e131\r\ncorrelation-id: ef8978502e131\r\ncache-control: max-age=0, no-cache, no-store, must-revalidate\r\nset-cookie: l7_az=dcg04.phx; Path=/; Domain=paypal.com; Expires=Sat, 28 Mar 2026 03:12:12 GMT; HttpOnly; Secure\r\naccept-ranges: bytes\r\nvia: 1.1 varnish, 1.1 varnish\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-fra-etou8220119-FRA, cache-fra-etou8220119-FRA, cache-hel1410020-HEL\r\nx-cache: MISS, MISS, MISS\r\nx-cache-hits: 0, 0, 0\r\nx-timer: S1774665733.566961,VS0,VE259\r\nvary: Accept-Encoding\r\nserver-timing: content-encoding;desc=\"\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":467,"timings":{"blocked":96,"dns":64,"connect":13,"send":0,"wait":273,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ddbm2.paypal.com/js/","fqdn":"ddbm2.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.512Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ddbm.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 14 Jul 2025 00:00:00 GMT","end":"Fri, 14 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1A:DA:04:24:FE:17:8B:56:BB:A8:B4:0A:DC:19:88:FC:C3:FC:F0:2E","sha256":"45:33:A4:5E:E4:27:62:D5:85:64:5E:BC:9C:E0:51:FC:DC:E6:30:41:E6:F8:70:7F:06:63:95:6D:FC:3F:85:2B"}}},"request":{"raw":"OPTIONS /js/ HTTP/1.1\r\nHost: ddbm2.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: x-requested-with\r\nReferer: https://com-elevarepay.web.id/\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 193fe983778f7496cce206a132f2e55a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: Y4A63-lYGfgukxCEJiN2BrpE6WGWfxQjX1XjeihW9k6CXPoaOQWqdQ==\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST\r\nvary: Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-max-age: 600\r\naccess-control-allow-headers: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":14,"dns":1,"connect":1,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/cd/199f4dcf55b9dafd6ad41cbcfb237f87/9f89c84a559f573636a47ff8daed0d33/icon.jpg","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"d.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 21 Nov 2025 00:00:00 GMT","end":"Thu, 21 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:95:B3:90:9B:31:9E:BC:57:35:3B:83:0F:11:A6:C1:B5:7B:AD:10","sha256":"D4:9C:0B:6F:12:3A:41:94:A5:60:6B:34:B5:61:2E:13:B0:A5:7C:15:B1:CE:68:6E:36:55:DB:32:79:6C:AF:BA"}}},"request":{"raw":"GET /cdn/cd/199f4dcf55b9dafd6ad41cbcfb237f87/9f89c84a559f573636a47ff8daed0d33/icon.jpg HTTP/1.1\r\nHost: d.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/jpeg\r\ncontent-length: 0\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\nstrict-transport-security: max-age=31536000\r\nserver: nginx\r\npragma: no-cache\r\nset-cookie: _ec080eef91390fd025dd0bb85cfbf60e__sb=qmOUMNiB59K1yg0ZLDEAO1V3HhUHFePpeta0crsoZ4Z42fQuc0; Max-Age=60; Expires=Sat, 28 Mar 2026 02:43:11 GMT; SameSite=None; Path=/; Secure\r\ncache-control: no-cache, pre-check=0, post-check=0, max-age=0, s-maxage=0, no-store, must-revalidate\r\nreferrer-policy: unsafe-url\r\ncontent-disposition: inline; filename=\"icon.jpg\"\r\nx-content-type-options: no-sniff\r\naccess-control-allow-credentials: true\r\nx-permitted-cross-domain-policies: master-only\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0dab08166aa7b915b2e3314728d79750.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: koON_UY7rdazgWoymBOv2Zp9qilhQrpqxWTBXWC1fLAmYet2RnGj4Q==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":529,"timings":{"blocked":82,"dns":0,"connect":0,"send":0,"wait":447,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/ca/jquery-3.6.1.min.js","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.634Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"d.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 21 Nov 2025 00:00:00 GMT","end":"Thu, 21 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:95:B3:90:9B:31:9E:BC:57:35:3B:83:0F:11:A6:C1:B5:7B:AD:10","sha256":"D4:9C:0B:6F:12:3A:41:94:A5:60:6B:34:B5:61:2E:13:B0:A5:7C:15:B1:CE:68:6E:36:55:DB:32:79:6C:AF:BA"}}},"request":{"raw":"GET /cdn/ca/jquery-3.6.1.min.js HTTP/1.1\r\nHost: d.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://com-elevarepay.web.id/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ec080eef91390fd025dd0bb85cfbf60e__sb=Jp8RNTnTIPgjgOljsGdMburAyiYxsRurijX0zfTSxYtrWvTZDl\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sat, 28 Mar 2026 01:57:21 GMT\r\nlast-modified: Wed, 25 Mar 2026 18:14:04 GMT\r\ncontent-encoding: br\r\nserver: AmazonS3\r\netag: W/\"e0629ba54532cd87a2fc34f7ce5f7ac2\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 0dab08166aa7b915b2e3314728d79750.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: mwQCECn-h_PPF95SP-pedmYGsvl5YBtRwF42XUln28eBbxWeHd-LLg==\r\nage: 2691\r\nvary: Accept-Encoding, Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2829628,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"e367af21b299f3047ca8678ffc15f746","sha1":"55f84445682cec3db72fc58030e94bb84a7c574b","sha256":"416b4b50d2e6fbab5d6c355ba83df85c5d34637bd97ff180d920e60bc108f6e9","sha512":"8432ee93900fc56c52cdb5dac2dc30d77b74a3af561c4c9306123fb08fc5aa3e716b266984235b6fb7e9904aeeabcfb752611523cb36a0f33486f04aaed4491b","ssdeep":"6144:GXaXFpamBx2A9DqwygdXdTV2RdSlLI/uCBbKiSl0uQycHdFvKcqIod/y:GKCmV93pvQycHdwcqIod/y","tlshash":"9225f2d876d1e11f6bdd0e43fe15aafa017a966790d97307836cba8d14e824bc27cc84","first_seen":"2026-03-25T15:24:15.902411Z","last_seen":"2026-05-01T14:56:46.372725Z","times_seen":13,"resource_available":false,"data":null}},"time_used":2,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/client-log","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.935Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/client-log HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 400\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":400,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026currentUrl=https%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F\u0026logRecords=%5B%7B%22evt%22%3A%22ads_challenge%22%2C%22data%22%3A%22ads_challenge_disabled%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731897%7D%2C%7B%22evt%22%3A%22context_correlation_id%22%2C%22data%22%3A%22f3485341e6b9f%22%2C%22instrument%22%3Atrue%7D%5D\u0026intent=\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:12 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":1230,"timings":{"blocked":906,"dns":0,"connect":0,"send":0,"wait":324,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/client-log","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:17.485Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/client-log HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 832\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724; datadome=3Gb8RsK9yr4j_GSteTs4dlBN0kDK3ClwcYs1HCVjt6988UkTO_EbGQ9DJnRGGN7ydpv9E1fDID9gYPyIFbR8OxARL1roe5ZX5mx8yYpv7w1cBY7WAYZGO4LNlLQpyzvg\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":832,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026currentUrl=https%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F\u0026logRecords=%5B%7B%22evt%22%3A%22CHALLENGE_SMS_FAILURE%22%2C%22data%22%3A%22CHALLENGE_SMS_FAILURE%22%2C%22calEvent%22%3Atrue%2C%22timestamp%22%3A1774665737471%7D%2C%7B%22evt%22%3A%22state_name%22%2C%22data%22%3A%22otp_cs_eligibility%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665737471%7D%2C%7B%22evt%22%3A%22transition_name%22%2C%22data%22%3A%22process_otp_cs_eligibility%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665737471%7D%2C%7B%22evt%22%3A%22otp_cs_elg%22%2C%22data%22%3A%22challenge_sms_failure%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665737471%7D%2C%7B%22evt%22%3A%22context_correlation_id%22%2C%22data%22%3A%22f3485341e6b9f%22%2C%22instrument%22%3Atrue%7D%5D\u0026intent=\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:18 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":1434,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1433,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"www.paypalobjects.com/paypal-ui/fonts/PayPalOpen-Medium.woff2","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /paypal-ui/fonts/PayPalOpen-Medium.woff2 HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.paypalobjects.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/font-woff2\r\ncf-ray: 9e3347b70e56569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 50961\r\ncache-control: s-maxage=31536000, public,max-age=31536000\r\nx-content-type-options: nosniff\r\netag: W/\"65a04ab6-6bf1\"\r\nlast-modified: Thu, 11 Jan 2024 20:08:22 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg01bdrf5-11.ccg01.phx.paypalinc.com\r\npaypal-debug-id: cdc342d84e8f0\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27633,"size_decoded":0,"mime_type":"application/font-woff2","magic":"Web Open Font Format (Version 2), TrueType, length 27633, version 1.0","md5":"38178232099be6c278a39fdcfe2db243","sha1":"abf44e1e4a3cd12be295b8361dc488784259fb53","sha256":"8d0e74dfe39c809f2dde1119f404841405d107fa40165669ea74fca51722311b","sha512":"307cb0a013088bc87c392dbe0c084ada953beb01b902c988a97a46894bc85b81eb93bea0436186f09deccec7bcc58b9b63cad9d4c5783fe37d5968a90bdc94f3","ssdeep":"768:4qq1uwAN5VyeAAL7ddHIavOnPMpz6dmP6wfzVUsl4bDA:4q2BAN5HrLHaUpz66n4bk","tlshash":"f5c2e1ca04025970e53356ff439f28dfc0b1d2e3ae199c9dd49f59a8c4ff38512950a6","first_seen":"2024-07-23T00:03:56Z","last_seen":"2026-06-18T02:20:24.809472Z","times_seen":396,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/martech/tm/paypal/mktconf.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.758Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /martech/tm/paypal/mktconf.js HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/javascript\r\ncf-ray: 9e3347b77e77569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 29564\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\ncontent-encoding: br\r\netag: W/\"69c68278-5dd30\"\r\nlast-modified: Fri, 27 Mar 2026 13:13:28 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-headers: x-csrf-token\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg14bdrf5-5.ccg14.slc.paypalinc.com\r\npaypal-debug-id: 118ab7a6a1f15\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":384304,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65491)","md5":"00da94bedae14f04419a11e5972bfd52","sha1":"7c84e041d7f524b415e78e64414dc732f6159b6b","sha256":"2b440e3a9257c2065afb0e9ebcc0ec9da665a38bc464e72c3f881c22a6e44c6d","sha512":"233abca12d8429de4807e436dc6b98c8007aaf09032c37f56e6cd93c24b799b578f196d90cf1fc49c9d30d299b3cea7bc1bc1cfdeacc4fa8063f7290d996c208","ssdeep":"3072:TEO3e07NRI4Q1QGQRQDE7qfZTXTjTEcarvGKY:Tlx+z6q9DvEcarv/Y","tlshash":"0b8493c8c8b45daf0d7fdf44ae5f9a2420242ba84b8a4811b7d47f7a07571db29ca7c4","first_seen":"2026-03-27T14:02:49.786798Z","last_seen":"2026-04-07T12:13:54.284676Z","times_seen":85,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/client-log","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:17.476Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/client-log HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 390\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724; datadome=3Gb8RsK9yr4j_GSteTs4dlBN0kDK3ClwcYs1HCVjt6988UkTO_EbGQ9DJnRGGN7ydpv9E1fDID9gYPyIFbR8OxARL1roe5ZX5mx8yYpv7w1cBY7WAYZGO4LNlLQpyzvg\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":390,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026currentUrl=https%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F\u0026logRecords=%5B%7B%22evt%22%3A%22XHR_STATUS_FAIL%22%2C%22data%22%3A%22status%20404%22%2C%22calEvent%22%3Atrue%2C%22timestamp%22%3A1774665737469%7D%2C%7B%22evt%22%3A%22context_correlation_id%22%2C%22data%22%3A%22f3485341e6b9f%22%2C%22instrument%22%3Atrue%7D%5D\u0026intent=\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:17 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":317,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":317,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"b.stats.paypal.com/v1/counter.cgi?r=cD02YjQ1NmYxNTBlMTQ0MGZjOWI5NDg5YjY5MDUxYjg4MiZpPTEwMy4xNTQuMTEwLjMmdD0xNzc0Mzc2NjgyLjg2MiZhPTIxJnM9VU5JRklFRF9MT0dJTg0xcI_NUv7JIeVmpT8QflZi6MuP","fqdn":"b.stats.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"34.147.177.40","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.474Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"b.stats.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Thu, 08 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"F7:51:A4:2B:BB:2D:3E:9D:2A:AE:A4:4C:C4:7C:AF:15:2A:E4:DD:9A","sha256":"04:A3:15:26:AA:1D:C2:BC:5A:41:8F:6D:AB:49:DE:F3:5C:87:71:04:56:0E:D2:4A:4F:B5:0D:57:44:BE:26:8C"}}},"request":{"raw":"GET /v1/counter.cgi?r=cD02YjQ1NmYxNTBlMTQ0MGZjOWI5NDg5YjY5MDUxYjg4MiZpPTEwMy4xNTQuMTEwLjMmdD0xNzc0Mzc2NjgyLjg2MiZhPTIxJnM9VU5JRklFRF9MT0dJTg0xcI_NUv7JIeVmpT8QflZi6MuP HTTP/1.1\r\nHost: b.stats.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nConnection: close\r\nServer: PayPal-B.Stats/1.0\r\nLocation: https://lhr.stats.paypal.com/v1/counter2.cgi?r=cD02YjQ1NmYxNTBlMTQ0MGZjOWI5NDg5YjY5MDUxYjg4MiZpPTEwMy4xNTQuMTEwLjMmdD0xNzc0Mzc2NjgyLjg2MiZhPTIxJnM9VU5JRklFRF9MT0dJTg0xcI_NUv7JIeVmpT8QflZi6MuP\r\nContent-Length: 0\r\nSet-Cookie: c=023874eb5e254716e1df; Domain=stats.paypal.com; expires=Fri, 23 Mar 2046 02:42:12 GMT; Path=/\r\nContent-Type: application/octet-stream\r\nDate: Sat, 28 Mar 2026 02:42:12 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Apache Traffic Server:1.0","description":"Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.","website":"https://trafficserver.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*","icon":"Apache Traffic Server.svg","categories":["Web servers"]}],"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":401,"timings":{"blocked":183,"dns":81,"connect":30,"send":0,"wait":35,"receive":0,"ssl":70},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/client-log","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:17.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/client-log HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 832\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724; datadome=3Gb8RsK9yr4j_GSteTs4dlBN0kDK3ClwcYs1HCVjt6988UkTO_EbGQ9DJnRGGN7ydpv9E1fDID9gYPyIFbR8OxARL1roe5ZX5mx8yYpv7w1cBY7WAYZGO4LNlLQpyzvg\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":832,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026currentUrl=https%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F\u0026logRecords=%5B%7B%22evt%22%3A%22CHALLENGE_SMS_FAILURE%22%2C%22data%22%3A%22CHALLENGE_SMS_FAILURE%22%2C%22calEvent%22%3Atrue%2C%22timestamp%22%3A1774665737470%7D%2C%7B%22evt%22%3A%22state_name%22%2C%22data%22%3A%22otp_cs_eligibility%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665737470%7D%2C%7B%22evt%22%3A%22transition_name%22%2C%22data%22%3A%22process_otp_cs_eligibility%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665737470%7D%2C%7B%22evt%22%3A%22otp_cs_elg%22%2C%22data%22%3A%22challenge_sms_failure%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665737470%7D%2C%7B%22evt%22%3A%22context_correlation_id%22%2C%22data%22%3A%22f3485341e6b9f%22%2C%22instrument%22%3Atrue%7D%5D\u0026intent=\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:17 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":323,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":323,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"www.paypalobjects.com/webcaptcha/grcenterprise_v3_static.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.274Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /webcaptcha/grcenterprise_v3_static.js HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/javascript\r\ncf-ray: 9e3347b46d9b569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 3105645\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\ncontent-encoding: br\r\netag: \"68517ed9-186c\"\r\nlast-modified: Tue, 17 Jun 2025 14:42:33 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-headers: x-csrf-token\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg14bdrf5-3.ccg14.slc.paypalinc.com\r\npaypal-debug-id: 8cbeb61a42979\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6252,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"5e1ef31fca217880cb587a759e88e01c","sha1":"a35c2350f4787c2597a71d70f4f62f3bb31beee6","sha256":"f3628ea791958b87da4e82ac9a0f85295b784ea0b3da83c160d70d0375474e7f","sha512":"cda93772843216ff3f8da40aaba3ac21f2c5afef9d334437b308ff446b1e78524ac901eace2958fcd736da0264ab612c1b08e724646cf589c3da52906d20e761","ssdeep":"192:oHXo3pSWlyiuzvCyBoIQo/ZbTHvUMfItoa39SrWM8N6fG:QopqvCyR/ZbTHvUMfItoa39K8NMG","tlshash":"c8d1a35c3db320a580abe62d9beb55047077a11b284fcc10befc59847f24eb925a57ec","first_seen":"2025-06-17T21:57:42.551971Z","last_seen":"2026-06-03T08:29:10.202176Z","times_seen":182,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/client-log","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.936Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/client-log HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 411\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":411,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026currentUrl=https%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F\u0026logRecords=%5B%7B%22evt%22%3A%22CLIENT_JS_CONSOLE_ERROR%22%2C%22data%22%3A%22client_is_error_triggered%22%2C%22calEvent%22%3Atrue%2C%22timestamp%22%3A1774665731898%7D%2C%7B%22evt%22%3A%22context_correlation_id%22%2C%22data%22%3A%22f3485341e6b9f%22%2C%22instrument%22%3Atrue%7D%5D\u0026intent=\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:12 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":2131,"timings":{"blocked":894,"dns":1,"connect":324,"send":0,"wait":330,"receive":0,"ssl":329},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"c.paypal.com/v1/r/d/b/e?appId=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT\u0026correlationID=6b456f150e1440fc9b9489b69051b882\u0026ed=%5B%7B%22location%22%3A%22P2%22%2C%22field%22%3A%22tP2A%22%2C%22issue%22%3A%22e%3D0%3A%20Interrupted%26stack%3DP.prototype.onReadyStateChangeHandler%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A7957%5Cne.exports%2Fn.onreadystatechange%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18589%5CnEventHandlerNonNull*e.exports%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18475%5CnP.prototype.standardXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8423%5CnP.prototype.createXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8344%5CnP%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A6382%5CnWe%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A49143%5CnWn.asyncData.initAndCollect%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A62361%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70809%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70826%5Cn%26url%3Dhttps%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F%22%7D%5D\u0026rvr=3.14.0-FP\u0026ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:134.0)%20Gecko/20100101%20Firefox/134.0\u0026wv=false","fqdn":"c.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.193.21","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.699Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 05 Aug 2025 00:00:00 GMT","end":"Tue, 04 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"12:2E:F7:4B:EE:2D:15:15:4F:4E:DE:63:48:9F:DB:6C:A1:B4:A4:6D","sha256":"A6:C0:A2:30:F9:69:64:91:78:C1:B6:BD:F4:64:B7:8A:CF:17:D7:55:84:52:3F:43:97:56:68:51:CA:99:FD:6B"}}},"request":{"raw":"GET /v1/r/d/b/e?appId=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT\u0026correlationID=6b456f150e1440fc9b9489b69051b882\u0026ed=%5B%7B%22location%22%3A%22P2%22%2C%22field%22%3A%22tP2A%22%2C%22issue%22%3A%22e%3D0%3A%20Interrupted%26stack%3DP.prototype.onReadyStateChangeHandler%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A7957%5Cne.exports%2Fn.onreadystatechange%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18589%5CnEventHandlerNonNull*e.exports%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18475%5CnP.prototype.standardXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8423%5CnP.prototype.createXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8344%5CnP%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A6382%5CnWe%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A49143%5CnWn.asyncData.initAndCollect%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A62361%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70809%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70826%5Cn%26url%3Dhttps%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F%22%7D%5D\u0026rvr=3.14.0-FP\u0026ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:134.0)%20Gecko/20100101%20Firefox/134.0\u0026wv=false HTTP/1.1\r\nHost: c.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\naccess-control-allow-origin: https://www.paypal.com\r\naccess-control-allow-credentials: true\r\nset-cookie: l7_az=dcg16.slc; Path=/; Domain=paypal.com; Expires=Sat, 28 Mar 2026 03:12:12 GMT; HttpOnly; Secure\r\ncorrelation-id: 2f60fd0d3efb5\r\npaypal-debug-id: 2f60fd0d3efb5\r\ncache-control: max-age=0, no-cache, no-store, must-revalidate\r\naccept-ranges: bytes\r\nvia: 1.1 varnish, 1.1 varnish\r\ndate: Sat, 28 Mar 2026 02:42:13 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-fra-eddf8230067-FRA, cache-fra-eddf8230067-FRA, cache-hel1410027-HEL\r\nx-cache: MISS, MISS, MISS\r\nx-cache-hits: 0, 0, 0\r\nx-timer: S1774665733.701131,VS0,VE308\r\nvary: Accept-Encoding, Origin\r\nserver-timing: content-encoding;desc=\"\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":322,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":322,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.paypal.com/v1/r/d/b/e?appId=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT\u0026correlationID=6b456f150e1440fc9b9489b69051b882\u0026ed=%5B%7B%22location%22%3A%22W%22%2C%22field%22%3A%22tWA%22%2C%22issue%22%3A%22e%3D0%3A%20Interrupted%26stack%3DP.prototype.onReadyStateChangeHandler%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A7957%5Cne.exports%2Fn.onreadystatechange%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18589%5CnEventHandlerNonNull*e.exports%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18475%5CnP.prototype.standardXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8423%5CnP.prototype.createXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8344%5CnP%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A6382%5Cnwn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A56313%5CnWn.asyncData.initAndCollect%2F%3C%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A61244%5CnHn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A60539%5Cnkn%2F%3C%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A60055%5Cnpromise%20callback*kn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A59992%5CnWn.asyncData.initAndCollect%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A61226%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70809%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70826%5Cn%26url%3Dhttps%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F%22%7D%5D\u0026rvr=3.14.0-FP\u0026ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:134.0)%20Gecko/20100101%20Firefox/134.0\u0026wv=false","fqdn":"c.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.193.21","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.704Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 05 Aug 2025 00:00:00 GMT","end":"Tue, 04 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"12:2E:F7:4B:EE:2D:15:15:4F:4E:DE:63:48:9F:DB:6C:A1:B4:A4:6D","sha256":"A6:C0:A2:30:F9:69:64:91:78:C1:B6:BD:F4:64:B7:8A:CF:17:D7:55:84:52:3F:43:97:56:68:51:CA:99:FD:6B"}}},"request":{"raw":"GET /v1/r/d/b/e?appId=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT\u0026correlationID=6b456f150e1440fc9b9489b69051b882\u0026ed=%5B%7B%22location%22%3A%22W%22%2C%22field%22%3A%22tWA%22%2C%22issue%22%3A%22e%3D0%3A%20Interrupted%26stack%3DP.prototype.onReadyStateChangeHandler%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A7957%5Cne.exports%2Fn.onreadystatechange%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18589%5CnEventHandlerNonNull*e.exports%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18475%5CnP.prototype.standardXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8423%5CnP.prototype.createXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8344%5CnP%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A6382%5Cnwn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A56313%5CnWn.asyncData.initAndCollect%2F%3C%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A61244%5CnHn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A60539%5Cnkn%2F%3C%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A60055%5Cnpromise%20callback*kn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A59992%5CnWn.asyncData.initAndCollect%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A61226%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70809%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70826%5Cn%26url%3Dhttps%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F%22%7D%5D\u0026rvr=3.14.0-FP\u0026ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:134.0)%20Gecko/20100101%20Firefox/134.0\u0026wv=false HTTP/1.1\r\nHost: c.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\naccess-control-allow-origin: https://www.paypal.com\r\naccess-control-allow-credentials: true\r\nset-cookie: l7_az=dcg14.slc; Path=/; Domain=paypal.com; Expires=Sat, 28 Mar 2026 03:12:12 GMT; HttpOnly; Secure\r\ncorrelation-id: bd2fe2d2f6b17\r\npaypal-debug-id: bd2fe2d2f6b17\r\ncache-control: max-age=0, no-cache, no-store, must-revalidate\r\naccept-ranges: bytes\r\nvia: 1.1 varnish, 1.1 varnish\r\ndate: Sat, 28 Mar 2026 02:42:13 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-fra-eddf8230069-FRA, cache-fra-eddf8230069-FRA, cache-hel1410027-HEL\r\nx-cache: MISS, MISS, MISS\r\nx-cache-hits: 0, 0, 0\r\nx-timer: S1774665733.709961,VS0,VE335\r\nvary: Accept-Encoding, Origin\r\nserver-timing: content-encoding;desc=\"\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":348,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":348,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-28T02:42:10.544Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"GET /signin/ HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 28 Mar 2026 02:42:10 GMT\r\nServer: Apache\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PayPal","description":"PayPal is an online payments system that supports online money transfers and serves as an electronic alternative to traditional paper methods like checks and money orders.","website":"https://paypal.com","common_platform_enumeration":"cpe:2.3:a:paypal:paypal:*:*:*:*:*:*:*:*","icon":"PayPal.svg","categories":["Payment processors"]},{"name":"Modernizr","description":"Modernizr is a JavaScript library that detects the features available in a user's browser.","website":"https://modernizr.com","common_platform_enumeration":"","icon":"Modernizr.svg","categories":["JavaScript libraries"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}],"data":{"size":29495,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1564)","md5":"f023a49c5e6045be25ca77d81751e10a","sha1":"3dd0cdc1fd5fa6ed524e7b1c8b81e9b5b7b9b3c1","sha256":"4759ada57a7744bb5448300f9f5f36f8e7b68d0e01764291dc57214a8a17bf87","sha512":"7362001bfa0b89f99217b078bec7a8704bb469bec315b3498e83d69d6a3e30abffab5c3da27fd8586ed3a8ddc7e09c6c399246797f90dc188f8de59c46f6f396","ssdeep":"384:x56x/R1q77a33rwtVbgOe/5klBT1bI5RJDvO3PBeytQfNy8bBNEVOMU0vMHJsVmu:xcpdGHZM0sxxqojo8XkqDtFtK/","tlshash":"5fd2e941218c6c3b560342ca707a7b8d707fde35cd71e8a6f9f382a81bd6e62551b067","first_seen":"2026-03-28T02:42:47.229408Z","last_seen":"2026-03-28T02:42:47.229408Z","times_seen":1,"resource_available":false,"data":null}},"time_used":645,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":323,"receive":322,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"ddbm2.paypal.com/tags.js","fqdn":"ddbm2.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ddbm.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 14 Jul 2025 00:00:00 GMT","end":"Fri, 14 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1A:DA:04:24:FE:17:8B:56:BB:A8:B4:0A:DC:19:88:FC:C3:FC:F0:2E","sha256":"45:33:A4:5E:E4:27:62:D5:85:64:5E:BC:9C:E0:51:FC:DC:E6:30:41:E6:F8:70:7F:06:63:95:6D:FC:3F:85:2B"}}},"request":{"raw":"GET /tags.js HTTP/1.1\r\nHost: ddbm2.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Wed, 25 Mar 2026 11:41:50 GMT\r\nserver: AmazonS3\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: Nx6bc5U.AwDdiUi9ktDZ4ZaKxxUvXDml\r\ncontent-encoding: br\r\ndate: Sat, 28 Mar 2026 02:07:44 GMT\r\ncache-control: max-age=3600, public\r\netag: W/\"2dfc66f422003d5312c6bf109a5f52ab\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 c99d057689db169d0b27b6e562e255c2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: atPWXwrVD_O3BRwiPhz_0LN7JfQ4C8genprGo71cNcO4ZBiklK9A0A==\r\nage: 2069\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nvary: Accept-Encoding, Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":132035,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65435)","md5":"2dfc66f422003d5312c6bf109a5f52ab","sha1":"9685b9941ca964705c2394f467d2cabbafa537c7","sha256":"184facb81dfee591d7fa0c48551bd7bb27ae2d6031311f80926f4873bc01a6a7","sha512":"6bb69812a62eefb53a064ee52ac2454b675dae89abcf16f67638a6f3a75637519f21ec9e3b00f1f8d81d4112eaac6d3a96c5950cc2e329f1b18ae17060368f39","ssdeep":"3072:oLxJBf1UlgC4O9pBxv16geM9FAp1jst5+mL5kOus72YR:oLxJBfqeoBSM9FAp1jst5T72YR","tlshash":"6fd3e78237cdb83c06524972179f7743f027af31689c7271d9b0c7a72464a6e5a8fda8","first_seen":"2026-03-25T10:24:01.891912Z","last_seen":"2026-04-01T02:12:03.887187Z","times_seen":351,"resource_available":true,"data":null}},"time_used":144,"timings":{"blocked":69,"dns":61,"connect":2,"send":0,"wait":1,"receive":0,"ssl":8},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/cd/gwf?e=v\u0026v=latest","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.608Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"d.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 21 Nov 2025 00:00:00 GMT","end":"Thu, 21 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:95:B3:90:9B:31:9E:BC:57:35:3B:83:0F:11:A6:C1:B5:7B:AD:10","sha256":"D4:9C:0B:6F:12:3A:41:94:A5:60:6B:34:B5:61:2E:13:B0:A5:7C:15:B1:CE:68:6E:36:55:DB:32:79:6C:AF:BA"}}},"request":{"raw":"OPTIONS /cdn/cd/gwf?e=v\u0026v=latest HTTP/1.1\r\nHost: d.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: x-h-token\r\nReferer: https://com-elevarepay.web.id/\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-length: 3\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nstrict-transport-security: max-age=31536000\r\nserver: nginx\r\npragma: no-cache\r\ncache-control: no-cache, pre-check=0, post-check=0, max-age=0, s-maxage=0, no-store, must-revalidate\r\nreferrer-policy: unsafe-url\r\nx-content-type-options: no-sniff\r\naccess-control-allow-origin: https://com-elevarepay.web.id\r\naccess-control-allow-headers: x-h-token\r\naccess-control-allow-credentials: true\r\nx-permitted-cross-domain-policies: master-only\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0dab08166aa7b915b2e3314728d79750.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: dyp5NdvCQG6uzfOfCgnxd7dCcELoS74DA4FqGcAASYDDrSzSIJOshA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"202cb962ac59075b964b07152d234b70","sha1":"40bd001563085fc35165329ea1ff5c5ecbdbbeef","sha256":"a665a45920422f9d417e4867efdc4fb8a04a1f3fff1fa07e998e86f7f7a27ae3","sha512":"3c9909afec25354d551dae21590bb26e38d53f2173b8d3dc3eee4c047e7ab1c1eb8b85103e3be7ba613b31bb5c9c36214dc9f14a42fd7a2fdb84856bca5c44c2","ssdeep":"","tlshash":"c72000000c00000000000000c00000000000000000000000000000000000000000c000","first_seen":"2023-03-12T09:12:21Z","last_seen":"2026-06-25T11:00:17.21767Z","times_seen":448,"resource_available":true,"data":null}},"time_used":306,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":305,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/cd/l?e=v\u0026v=latest","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:13.423Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"d.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 21 Nov 2025 00:00:00 GMT","end":"Thu, 21 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:95:B3:90:9B:31:9E:BC:57:35:3B:83:0F:11:A6:C1:B5:7B:AD:10","sha256":"D4:9C:0B:6F:12:3A:41:94:A5:60:6B:34:B5:61:2E:13:B0:A5:7C:15:B1:CE:68:6E:36:55:DB:32:79:6C:AF:BA"}}},"request":{"raw":"OPTIONS /cdn/cd/l?e=v\u0026v=latest HTTP/1.1\r\nHost: d.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: x-h-token\r\nReferer: https://com-elevarepay.web.id/\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-length: 3\r\ndate: Sat, 28 Mar 2026 02:42:13 GMT\r\nstrict-transport-security: max-age=31536000\r\nserver: nginx\r\npragma: no-cache\r\ncache-control: no-cache, pre-check=0, post-check=0, max-age=0, s-maxage=0, no-store, must-revalidate\r\nreferrer-policy: unsafe-url\r\nx-content-type-options: no-sniff\r\naccess-control-allow-origin: https://com-elevarepay.web.id\r\naccess-control-allow-headers: x-h-token\r\naccess-control-allow-credentials: true\r\nx-permitted-cross-domain-policies: master-only\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0dab08166aa7b915b2e3314728d79750.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: FDejTS4vNMM3T9RqUSiReu-D7x4Ro9d4Ce6ijxm8UHsPFtIUVT6LJQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":3,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"202cb962ac59075b964b07152d234b70","sha1":"40bd001563085fc35165329ea1ff5c5ecbdbbeef","sha256":"a665a45920422f9d417e4867efdc4fb8a04a1f3fff1fa07e998e86f7f7a27ae3","sha512":"3c9909afec25354d551dae21590bb26e38d53f2173b8d3dc3eee4c047e7ab1c1eb8b85103e3be7ba613b31bb5c9c36214dc9f14a42fd7a2fdb84856bca5c44c2","ssdeep":"","tlshash":"c72000000c00000000000000c00000000000000000000000000000000000000000c000","first_seen":"2023-03-12T09:12:21Z","last_seen":"2026-06-25T11:00:17.21767Z","times_seen":448,"resource_available":true,"data":null}},"time_used":307,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":307,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/css/contextualLoginElementalUIv5_1.css","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.053Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /web/res/1ca/74b84302a7188814d86f420a45647/css/contextualLoginElementalUIv5_1.css HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: text/css\r\ncf-ray: 9e3347b37d3f569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 1023630\r\ncache-control: max-age=31536000, s-maxage=31536000\r\ncontent-encoding: br\r\netag: W/\"69b3c294-3640f\"\r\nexpires: Tue, 16 Mar 2027 04:54:14 GMT\r\nlast-modified: Fri, 13 Mar 2026 07:53:56 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-headers: x-csrf-token\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg14bdrf5-1.ccg14.slc.paypalinc.com\r\npaypal-debug-id: 41551203d5779\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":222223,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (586)","md5":"42308300e02e988e45fffa0f80f23353","sha1":"4ffac6b7c4a5ac67686a373c4e4b35dd1b0975be","sha256":"953991355b69addb144b9a875c630c89eae165d89f6d43dbd36ac51b8e360354","sha512":"4add505e6bfee521b79dee0bfac9acd57e8e10ef4e8e17dfc387cb2a458c0011ba1d84156f0cb63ec5e9dd4ac83d33718acfaaa26792bf007eb703def7bdafcd","ssdeep":"6144:gMI6E4hKNeI6E/I6EtI6EAI6EJI6EELQdb6HrImfha6I6ExI6EEI6Ea6I6EXI6EG:gMI6E4hKNeI6E/I6EtI6EAI6EJI6EELc","tlshash":"c524a3ea9ae40501b91bc56475667b90a32d8003c94fdcbdbbe5306cefc92d992b334d","first_seen":"2026-03-17T13:52:37.577289Z","last_seen":"2026-06-11T00:50:39.922953Z","times_seen":20,"resource_available":false,"data":null}},"time_used":156,"timings":{"blocked":65,"dns":50,"connect":1,"send":0,"wait":19,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/js/lib/datadog-rum.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.272Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /web/res/1ca/74b84302a7188814d86f420a45647/js/lib/datadog-rum.js HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/javascript\r\ncf-ray: 9e3347b46d99569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 1023630\r\ncache-control: max-age=31536000, s-maxage=31536000\r\ncontent-encoding: br\r\netag: W/\"69b3c298-27b83\"\r\nexpires: Tue, 16 Mar 2027 04:54:26 GMT\r\nlast-modified: Fri, 13 Mar 2026 07:54:00 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-headers: x-csrf-token\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg14bdrf5-1.ccg14.slc.paypalinc.com\r\npaypal-debug-id: 49f29ee1c2088\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":162691,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators","md5":"4441739369b3c7e391d97a0c1ca55d63","sha1":"3d49967b45253d998a4a59ffb4a20df9b7fa8e3c","sha256":"ee4cd96d72ca2d21a8df21e2f76629df9ad636fc7ecd59d24825def20bc2ee0e","sha512":"72675bb94869dae4802d7e65eee1b23e339fc5ba157833e8f78a733b7864240b8b0c6cd5cacf935608570d10aaaa171d99bbd7bdf0dc60d7f1ef2cf6fff9bb41","ssdeep":"1536:4IOoR3MaQgFxamY7FMXiLh+vhXMLsjRXs8EEKMGjEWAkDxRJAiCQxjMmvD7sh8ui:s2M8FxzY/h2kfzEWxAkEF2B","tlshash":"0af3d5dcf286b07167933036407f120ab77a2954394b85a0e2b6d5d53db869fa233f6c","first_seen":"2024-07-29T21:09:05Z","last_seen":"2026-06-18T02:20:24.637402Z","times_seen":359,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/client-log","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.944Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/client-log HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 810\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":810,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026currentUrl=https%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F\u0026logRecords=%5B%7B%22evt%22%3A%22event_name%22%2C%22data%22%3A%22guest_eligibility_set%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731908%7D%2C%7B%22evt%22%3A%22state_name%22%2C%22data%22%3A%22begin_guest_eligibility%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731908%7D%2C%7B%22evt%22%3A%22transition_name%22%2C%22data%22%3A%22guest_eligibility_set%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731908%7D%2C%7B%22evt%22%3A%22is_guest_eligible%22%2C%22data%22%3A%22N%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731908%7D%2C%7B%22evt%22%3A%22context_correlation_id%22%2C%22data%22%3A%22f3485341e6b9f%22%2C%22instrument%22%3Atrue%7D%5D\u0026intent=\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:12 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":1614,"timings":{"blocked":634,"dns":1,"connect":319,"send":0,"wait":318,"receive":16,"ssl":323},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"ddbm2.paypal.com/js/","fqdn":"ddbm2.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.547Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ddbm.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 14 Jul 2025 00:00:00 GMT","end":"Fri, 14 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1A:DA:04:24:FE:17:8B:56:BB:A8:B4:0A:DC:19:88:FC:C3:FC:F0:2E","sha256":"45:33:A4:5E:E4:27:62:D5:85:64:5E:BC:9C:E0:51:FC:DC:E6:30:41:E6:F8:70:7F:06:63:95:6D:FC:3F:85:2B"}}},"request":{"raw":"POST /js/ HTTP/1.1\r\nHost: ddbm2.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-type: application/x-www-form-urlencoded\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 4540\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":4540,"data":"jspl=8ybpAMSdaORgDuiaCuVWsiUH1ptPGWJIET1nMkrkH83WXCVMBpB--vmy1OYPbUz1CFFwLMIT6_iwKqmu1ssNRAD7Z77OucTEsO2R1iF-OLdJ2mjbnIwymBDBNsh7rGrhTsmcRx9qT-qx2KC-1Estj1PqEiQMEjRo16yscGx9FtKHWItiMGzQMpRVP5LKL38jOCxoSXnuP-jmlfr6r-mcLmMfrtXTl_FXqMMY4rmbuAfMzHQDq9Q6GoychHYq5WRKtjzKSA15wv82FJRPHx48HoFNJO8MJYeyFydLw0Deyv8dM5wV-_x2ZCXNwKIq5bkFS71L7o_Y_ZKkemHHjNVEsFFdAO7sKyJEoJg4XLEVn3RC5sNKe3SkUfmpm3HNQ_jX_gx4Xj8VmPKrpDtJAIBmpwcvtXzmg8GCENiu_nyW8R6DVFAVZgHCrj57_-Mh_lEOLEzbf59liuLOJueAHp-6fChcqai1M6eNnSNb0dixXMzRO59jiUtubtW3E_L0VpNQMX_xXReI_auixY0dEuZShPYcvZb4iaHghTYejp4B3mxD1pPYOrhGJ-k7R8v7g7ERwaf58UnEr2widXe2-PXrmj3LcS80uEzidzXnhbRTeDzJxnhPuAVHK8C7KxetTU7iKB3KHzKyeMex0-2ZgtWURP8XnTlFpHiIwhDPu2-LA6T3tTscBINW4aE556q6RWgsWiH4Rr5CYHfi3qLBKkMBmU6YsT1Ek1s7mC4-sRygs7xJiTUDXZckLMGctk220DcaI-Voh7UytrvyK2B9CXcGhrWSqIFjZZh014xX8Y-ZCP1SE0n1PTCeQkIDqGO_3hvQbj6Hf7r6PY1wM_wcWYlD4Y7z3SsH1duGusF5DFdwWMrWcWRCiqWhGqXYESSDaX9OE-ia-x8kKC3jwHErcfcxAXYSJpezE2Fs4uU09qgBJuUjJMME4QWXpM0gv_uUVYr_mqPEotHzvgHDzGkORll09bneWq3zAtK0Vx_CMJWNCCO-Svxq90Muh_D_FQfkedNlrIx70QbCA7C-hcQpbPZ16rt9PrpYsebAW2C5qV9uSnDeYsMUR2gCYLKfre5gK8-sk3QFFBAVe0DcefjHh4-XeV1PI142XkQNLC_Q4nYqrBOj4srgq4rMKlTlTX0B4ph9ejfm2J6Cz2HVC157KO4bEcMA5bV3MG6-vyuHfk-rIXHDJKmcEHlq_EizkIJEbW9q3ezl6aoU4M4dPO5Ym58--s2-Iet1wxLbC5KpwmUmwKWOuoe32iahtXzNyUdm2BBXKbVQQb0wBq4HdyieBuxqhu3SyxosRbwcX4x3QU7kY3eIohDPHwYOYwoecozIHZ4nmYs-p6Fnom4QaPZ8_kATZu4Q86vIANJAkJSbxlcAYXM6rbCe2YNu122RkqwQYz6QQrpop-RqT3F9Vtx41cNTTTSndYozCis3BR2t29wvb_s4lsPraMJ7Ew8JXgfu-Phz0S1Msh1kpAI7nTuADnQE4VhOuaKXx4VX7nHRwf44NfT4K6rd0ehQgGWhk4ek2FgwKpCix_VNJ-n_fjYCaGJ4E5j2ebVA21IFPtgWgsEMAeLh-cw6O1qMZMarothbueFaxraJJ5rxdI7Qed5CHa4s4ly74_K8ON8jGKPrH-KpAMceZ2uNPSpsLThdZ15qa0Jmud7M7UpEmwue7YDc0HuYPcShKVbw0oBmYnVa6oCZm-Bqzdi1yGRp-1ByYeH6DIzDpG1pzlgHwPs5ov6GxK9U2DpGfDiciiLRnib9eUTKGQni13qyQd-D0UHDUEH4t5K6CcEmaUB9xr_11UWhqq9smWa4HJnqbuOyFXXxnJxfsi6WX_nJUV6g922Y4iLFx5-YBiWIOmYw3BWr5baAEuQRsX0eE3Vc_Vww_1vaD34XpfmubUCOEy3BM33OfVtbSbkJ6p6n0jXA6_wT8I9MSny4fcSuVfRaTBNXFHV78khD5GgDdFOnbqOm8zZJvYyD6_FhFOEVMqM5YHTFIanxYjvA7xvnilzF9OqAk3DrjIVUjFcF-LqE5bTkzKqlLHCTLKYKgtdwsot8iPKhnysrJikdJNwaBF8qDO984N_3AkRZDdJwRpC95nqU4s_LJcONXFx4sp6rmB7hyDDBkKq9rfEmk7rRgwtDleZyU0ADwLN83sas5pPi7iboP8ldyZI04XxgFMgmQI6IFgc44u6u7Ng5v583Si3P51drrr6QPLIo1RIAOQqOJzj74RmhtEdALj9e94ZMfzlnmMRDPSvumo-5yQuAkR9byYiArdbUpdHwR8hV0aqeR4RBNLvbNOnwsByD8V7rDUhUCZxUTuOarZipmBbs6BhvyP1MKvWiaMM5e9dbqDodr3qEa7igbc8M28IMTQcSv6fvBlzDc9CoICHTkAiZsPLHNuHvnN2XmawNaRdyomykeUZf0UZZuWPKEUEpTGKjYZajjVXPG88TMA4KXZMIXB4ycydwqoJWEYJv6e-9sGetFxFRUKcHmk36WRoCRpk7iEGOi5EXyiVMsXrYcxmhNtkZoOtfhSpoC-K4B-q2GT4KKlWCSiXBGrQt1onSTIGStvPgq8z43DgE-O40Kv3ZcD8g1Homx-QFUhdZBXha-9HsBUnaQA6vzUJ_LR-waHWUXm4lTKB6GDM-yY3WjbfKYiwJVGvhQ-7W5CV_UbWLNlh5uO4eZJv4Zs54vJLC6MPBZa1vBSk1_OZsO7Jcn05W83PMxO-bROLOmqBD8uI-3JtKmDzSBEi-tC9bz7yH1rjMizZbKDbcTgdQmxYhl-Di0LUOLFiUfA-Yv4szUYyasw5sPyOGdS68eMmJiPtwCOzDqmwEgiYQSKdRhlk6hnoq-1cuJaBbg2YKQgIXzDTTrK-rTvuMIHUcSRSqx8MH9iJ-AckNfRzVOqHgHZYjkc-KXWJn-tz5AIyeRmf97HKI0Lp3gk-p_XkC9f96LVA7IsmlLv-MmrjrJvZVotYxHE2YwcUh4-OeVzEnW0dmp5VxsrvJ8Uch7e0Q5zK-gRt1lMJr3oTRnNfPr_omy3MurpbDYTFS_oRtrV-0J2i6cwaOqzM-exglaxJ6Jw5W97PgCVtgImV688tdRSsUoEv9I62E30Yu15H4YleNLO24oIu6TGHiCcneaBTuQdKGD6z7hBUgT8t515DZ-OXHQY6080Pmpij938iG0jP2gimeY7XQli3s10xzN8YFW8nXCJcM2PnbjHO3ykQJapYJLmz7gmaBLr3_VbD5B6GWgQjcpNSDsZLbkXRDDd85dHudh7IirOV3gu7HXUa9z3NcPatG-BgcpKQaN97bHJrmjlNLbNsop8DUj4WHAXYlFQpGyA5wELcaBb5SSQCGfYrjOTHDB90x9x2wLIj_P9s5Hc_i_566el0jGLcYk1WH7OoAvc-hqOV0PEeepNLZHoNew4SpVeJiFyxxmLWFg0s7HGZOMmqXPwg_aKjXEnB5zZ86RRBIhfMuWQldInvwRq5xWUXL_UPIFSTZUfRhPJYa48yyy06p6IaFn72TNYwA5qb6hcV8Agl7vYQAcHNI94dZPp6ap38NCxyZ3ZSriqNYyVUOVH0NMY4nkcTD8A-XvX8etEcwlnvdLPj5mfqklZkAnVwrqIK54lGKbfx2-koGhrIh0jDVUgLCsnPY-3wVhdEhzQIBwmwJYlrpFj6vVzYC74F2kHVCeG-9mepsRNZjBEM18_nNhEu1xS9qj0pWRCaQdI9xCVrjlEQxl3by09irh_YQsz1Y0RbtRqbPJrJQ6wBTQl3bl49UbgbQmN4XED3fgdxT8XI0hmq7MvK0ebYK-fGGuRqUO-fJKLazr3gweJ91PUoQvacETpgIxmeU0FZZj6IwIC96JzZqSly-uedvsr95IT7vscHI36_tGpId5fY8Eywunbef3OPOjD-K0JyY4jRKhK7GugPLFyvb-ei18uxyQNGZliXqielu2L7QQN0iiR6CXHZK6PxAlvm8OPfiS_3Qlr-UQmGEs5le8gwnWfXPshGmlxc_aN_GRSO2qRcoyVW6XHxfn2Z4WfPMTA9VXOIqsAVNpttZwT6SbkCusUQLoUbYA7TEB_PdcZMONg7_H0RjNZp8BC0gL3LHqWLGAtAB2S4HlZJGM2g18-h-Rv2fDRNSjMBWlRFYNBYiLCpVeZtwxcxS8x9r_Thj-2ERFK0gwhWCJRqRFEK6qWX165bFUrRS3yIAol1KOYABu__YB1sH3NMzYNjeVzMbCRmFxn3Fu0S1LiLpgOW87NUMQJbGs35gR0PG_19KS3cXp6Pb32YoL3U2hLdqbQTV3ybFmn5J1G9OboJLyRyXUVBzJEIRWx4uFXaEuYi-HVflba5VxuU8dxOole\u0026eventCounters=%5B%5D\u0026jsType=ch\u0026cid=.keep\u0026ddk=C992DCAFEE25FA95C6492C61EB3328\u0026Referer=https%253A%252F%252Fcom-elevarepay.web.id%252Fsignin%252F\u0026request=%252Fsignin%252F\u0026responsePage=origin\u0026ddv=5.5.1"}},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json;charset=utf-8\r\ncontent-length: 241\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nserver: DataDome\r\npragma: no-cache\r\ncache-control: no-cache, no-store, must-revalidate\r\nexpires: 0\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 193fe983778f7496cce206a132f2e55a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: xGRVqgEigsARNs_IgEHeN06ddZypIoOQ3S0Ung6v_X_xlWNmQqxCxg==\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"DataDome","description":"DataDome is a cybersecurity platform that specialises in bot protection and mitigation, offering advanced solutions to safeguard websites and mobile applications against malicious bot traffic, credential stuffing, scraping, and other automated threats.","website":"https://datadome.co","common_platform_enumeration":"","icon":"DataDome.svg","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":241,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"2963ade11c500baa2cf1d08786167eea","sha1":"7e15ec3646c37d0a7ca2aafa4f6b7f55e3836723","sha256":"030e9e17dcc543480c86a437ae2c04062d7b02f72d651116f6991752002904e9","sha512":"127d4e6495a77fd881a7eca03959a3b1dbda0809f59dbac27155a3e9b49a052afb47dfb8f50c3609187f4b75aa48e7c9a36a51f066ee4df2d481a714334d7e2b","ssdeep":"","tlshash":"36d09722ab1008b058800b4e3e8bf7b8b6ed7178e0da828c8c1ca52023934367891f2c","first_seen":"2026-03-28T02:42:47.234351Z","last_seen":"2026-03-28T02:42:47.234351Z","times_seen":1,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t.paypal.com/ts?v=1.10.0\u0026t=1774665731900\u0026g=0\u0026e=err\u0026page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A\u0026pgrp=main%3Aunifiedlogin%3A%3A%3Alogin\u0026comp=unifiedloginnodeweb\u0026erpg=Script%20error.\u0026error_type=WINDOW_ONERROR\u0026error_source=https%3A%2F%2Fwww.paypalobjects.com%2Fweb%2Fres%2F1ca%2F74b84302a7188814d86f420a45647%2Fjs%2Fsignin-split.js%200%3A0\u0026event_name=client_js_error_triggered\u00263p_vid=47d477e2599fce4e\u00263p_fpti=424e81f465ff2b34","fqdn":"t.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.67.1","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"t.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 20 Feb 2026 00:00:00 GMT","end":"Sun, 21 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EA:B8:DE:7E:92:A5:33:3B:95:2F:D2:B0:E6:9F:48:71:A6:33:F5:E8","sha256":"71:55:5A:84:D8:C8:D0:44:77:28:BE:C1:5D:4D:DC:A6:EB:DB:AE:58:D9:B8:D6:F1:1E:EC:35:2A:EE:11:63:39"}}},"request":{"raw":"GET /ts?v=1.10.0\u0026t=1774665731900\u0026g=0\u0026e=err\u0026page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A\u0026pgrp=main%3Aunifiedlogin%3A%3A%3Alogin\u0026comp=unifiedloginnodeweb\u0026erpg=Script%20error.\u0026error_type=WINDOW_ONERROR\u0026error_source=https%3A%2F%2Fwww.paypalobjects.com%2Fweb%2Fres%2F1ca%2F74b84302a7188814d86f420a45647%2Fjs%2Fsignin-split.js%200%3A0\u0026event_name=client_js_error_triggered\u00263p_vid=47d477e2599fce4e\u00263p_fpti=424e81f465ff2b34 HTTP/1.1\r\nHost: t.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncorrelation-id: 1a45a495be805\r\npaypal-debug-id: 1a45a495be805\r\ncache-control: max-age=0, no-cache, no-store, must-revalidate\r\naccess-control-expose-headers: Server-Timing\r\nset-cookie: ts=vreXpYrS%3D1806201732%26vteXpYrS%3D1774667532%26vr%3D424e81f465ff2b34%26vt%3D47d477e2599fce4e;Expires=Sun, 28 Mar 2027 02:42:12 GMT;domain=.paypal.com;path=/;secure;HttpOnly;\nts_c=vr%3D424e81f465ff2b34%26vt%3D47d477e2599fce4e;Expires=Sun, 28 Mar 2027 02:42:12 GMT;domain=.paypal.com;path=/;secure;\r\np3p: CP=\"CAO IND OUR SAM UNI STA COR COM\"\r\ncontent-type: image/gif\r\npragma: no-cache\r\nexpires: Sat, 28 Mar 2026 02:42:12 GMT\r\naccept-ranges: bytes\r\nvia: 1.1 varnish, 1.1 varnish\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-fra-eddf8230173-FRA, cache-fra-eddf8230173-FRA, cache-hel1410021-HEL\r\nx-cache: MISS, MISS, MISS\r\nx-cache-hits: 0, 0, 0\r\nx-timer: S1774665732.082513,VS0,VE210\r\nvary: Accept-Encoding\r\nserver-timing: \"traceparent;desc=\"00-00000000000000000001a45a495be805-9c22d97c515e8b90-01\"\";content-encoding;desc=\"\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"b4682377ddfbe4e7dabfddb2e543e842","sha1":"328e472721a93345801ed5533240eac2d1f8498c","sha256":"6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93","sha512":"202612457d9042fe853daab3ddcc1f0f960c5ffdbe8462fa435713e4d1d85ff0c3f197daf8dba15bda9f5266d7e1f9ecaeee045cbc156a4892d2f931fe6fa1bb","ssdeep":"","tlshash":"c2900023efc8c020c280c8380a2c0b0023baac200228030bc03c22e8ecaa3b38c22002","first_seen":"2023-04-06T23:21:37Z","last_seen":"2026-06-25T10:19:43.087197Z","times_seen":15872,"resource_available":true,"data":null}},"time_used":491,"timings":{"blocked":122,"dns":70,"connect":28,"send":0,"wait":237,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.paypal.com/v1/r/d/b/e?appId=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT\u0026correlationID=6b456f150e1440fc9b9489b69051b882\u0026ed=%5B%7B%22location%22%3A%22P1%22%2C%22field%22%3A%22tP1A%22%2C%22issue%22%3A%22e%3D0%3A%20Interrupted%26stack%3DP.prototype.onReadyStateChangeHandler%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A7957%5Cne.exports%2Fn.onreadystatechange%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18589%5CnEventHandlerNonNull*e.exports%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18475%5CnP.prototype.standardXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8423%5CnP.prototype.createXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8344%5CnP%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A6382%5CnMe%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A38620%5CnWn.asyncData.initAndCollect%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A62355%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70809%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70826%5Cn%26url%3Dhttps%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F%22%7D%5D\u0026rvr=3.14.0-FP\u0026ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:134.0)%20Gecko/20100101%20Firefox/134.0\u0026wv=false","fqdn":"c.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.193.21","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 05 Aug 2025 00:00:00 GMT","end":"Tue, 04 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"12:2E:F7:4B:EE:2D:15:15:4F:4E:DE:63:48:9F:DB:6C:A1:B4:A4:6D","sha256":"A6:C0:A2:30:F9:69:64:91:78:C1:B6:BD:F4:64:B7:8A:CF:17:D7:55:84:52:3F:43:97:56:68:51:CA:99:FD:6B"}}},"request":{"raw":"GET /v1/r/d/b/e?appId=UNIFIED_LOGIN_INPUT_PASSWORD_TRMT\u0026correlationID=6b456f150e1440fc9b9489b69051b882\u0026ed=%5B%7B%22location%22%3A%22P1%22%2C%22field%22%3A%22tP1A%22%2C%22issue%22%3A%22e%3D0%3A%20Interrupted%26stack%3DP.prototype.onReadyStateChangeHandler%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A7957%5Cne.exports%2Fn.onreadystatechange%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18589%5CnEventHandlerNonNull*e.exports%40https%3A%2F%2Fwww.paypalobjects.com%2Fwebcaptcha%2FngrlCaptcha.min.js%3A1%3A18475%5CnP.prototype.standardXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8423%5CnP.prototype.createXHR%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A8344%5CnP%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A6382%5CnMe%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A38620%5CnWn.asyncData.initAndCollect%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A62355%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70809%5Cn%40https%3A%2F%2Fc.paypal.com%2Fda%2Fr%2Ffb_fp.js%3A1%3A70826%5Cn%26url%3Dhttps%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F%22%7D%5D\u0026rvr=3.14.0-FP\u0026ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:134.0)%20Gecko/20100101%20Firefox/134.0\u0026wv=false HTTP/1.1\r\nHost: c.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\naccess-control-allow-origin: https://www.paypal.com\r\naccess-control-allow-credentials: true\r\nset-cookie: l7_az=dcg14.slc; Path=/; Domain=paypal.com; Expires=Sat, 28 Mar 2026 03:12:12 GMT; HttpOnly; Secure\r\ncorrelation-id: 2e993eb53280f\r\npaypal-debug-id: 2e993eb53280f\r\ncache-control: max-age=0, no-cache, no-store, must-revalidate\r\naccept-ranges: bytes\r\nvia: 1.1 varnish, 1.1 varnish\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-fra-etou8220167-FRA, cache-fra-etou8220167-FRA, cache-hel1410027-HEL\r\nx-cache: MISS, MISS, MISS\r\nx-cache-hits: 0, 0, 0\r\nx-timer: S1774665733.559114,VS0,VE358\r\nvary: Accept-Encoding, Origin\r\nserver-timing: content-encoding;desc=\"\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":372,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":372,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/rdaAssets/fraudnet/sync/fn-sync-telemetry-min.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.269Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /rdaAssets/fraudnet/sync/fn-sync-telemetry-min.js HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/javascript\r\ncf-ray: 9e3347b45d96569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 2839\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\ncontent-encoding: br\r\netag: W/\"6786ddcf-1e1f\"\r\nlast-modified: Tue, 14 Jan 2025 21:57:35 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg14bdrf5-1.ccg14.slc.paypalinc.com\r\npaypal-debug-id: d9ff806f42979\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\ntraceparent: 00-0000000000000000000d9ff806f42979-bde7f5124d9f4021-01\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7711,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (7710)","md5":"5f8559416a76c08741a246936c58f437","sha1":"aaa7f64104332a0f35a9f56f516eaf15d999a082","sha256":"4f3802a3a58d849d9b0950c807ac3705131bf34d647be4f61d5679b93402ca2d","sha512":"9823656876c6817ab821b5925950123e348fb1235d805bf1c8d014a52624018c682e016624a2da56b27d94997c997d8624af8bf3a66295cbbf7225f7036dca5b","ssdeep":"192:k1+hF5ptVRl3tu4f40IelTPbk9eC4E8ZtRY4KI0tRzkqsYb:8+hF5ptVRlY4AGVAgCxsRY4PKRzkJYb","tlshash":"b4f1a5aa7385707514f326a7662f9305723a62057c8d9088e237ecc07dec98a9377fb5","first_seen":"2025-01-16T04:18:16.004746Z","last_seen":"2026-06-18T02:20:24.776328Z","times_seen":309,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/cd/199f4dcf55b9dafd6ad41cbcfb237f87/9f89c84a559f573636a47ff8daed0d33/bootstrap.min.css","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"d.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 21 Nov 2025 00:00:00 GMT","end":"Thu, 21 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:95:B3:90:9B:31:9E:BC:57:35:3B:83:0F:11:A6:C1:B5:7B:AD:10","sha256":"D4:9C:0B:6F:12:3A:41:94:A5:60:6B:34:B5:61:2E:13:B0:A5:7C:15:B1:CE:68:6E:36:55:DB:32:79:6C:AF:BA"}}},"request":{"raw":"GET /cdn/cd/199f4dcf55b9dafd6ad41cbcfb237f87/9f89c84a559f573636a47ff8daed0d33/bootstrap.min.css HTTP/1.1\r\nHost: d.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\ncontent-length: 157\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\nstrict-transport-security: max-age=31536000\r\nserver: nginx\r\npragma: no-cache\r\nset-cookie: _ec080eef91390fd025dd0bb85cfbf60e__sb=Jp8RNTnTIPgjgOljsGdMburAyiYxsRurijX0zfTSxYtrWvTZDl; Max-Age=60; Expires=Sat, 28 Mar 2026 02:43:11 GMT; SameSite=None; Path=/; Secure\r\ncache-control: no-cache, pre-check=0, post-check=0, max-age=0, s-maxage=0, no-store, must-revalidate\r\nreferrer-policy: unsafe-url\r\nx-content-type-options: no-sniff\r\naccess-control-allow-credentials: true\r\nx-permitted-cross-domain-policies: master-only\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0dab08166aa7b915b2e3314728d79750.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: mpfXiQuHd6rlw-QaJ870LxtM6M__XaPB9bsFo-lAMwh8638pwArphw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":157,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"fae0f38cffff33ce5678f0f2b2dad360","sha1":"9048bfffb649985a01c7fbc3059ffee9f0f4acf3","sha256":"2bb67533bba1173c81c0ef20d0c19a0321dd952e7c5bb7fbe42a2f9385248077","sha512":"17b4104cb97677ef2b3d31bd0e9a29f458dbfd7b5a2386ec7602d826790ed6363e627fce2172b5e67bade5b1309f46d3ae51c259f0fafc66890c501b9d4a7044","ssdeep":"","tlshash":"d3c08c04693a812428211d8371e68453a13cf34b20e9b03eb4ac2db00fa0e282ac3230","first_seen":"2026-03-28T02:42:47.235841Z","last_seen":"2026-03-28T02:42:47.235841Z","times_seen":1,"resource_available":false,"data":null}},"time_used":618,"timings":{"blocked":81,"dns":80,"connect":1,"send":0,"wait":448,"receive":0,"ssl":6},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/ae/0.16.0/atomic-events-dom/index.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.335Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /ae/0.16.0/atomic-events-dom/index.js HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://com-elevarepay.web.id/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/javascript\r\ncf-ray: 9e3347b4ddc4569c-OSL\r\ncf-cache-status: HIT\r\nage: 2678504\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\ncontent-encoding: br\r\netag: \"67044f43-695c\"\r\nlast-modified: Mon, 07 Oct 2024 21:14:43 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg14bdrf5-3.ccg14.slc.paypalinc.com\r\npaypal-debug-id: 31944cd4ed063\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":26972,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (26971)","md5":"0cfbf0dfa4fad9557df4e3b9493dbae0","sha1":"ec927e269619d74d48ed05831ccade5caa580a3c","sha256":"7f083991dcd0f426a91fef258e7a1ce9a3b58c1ad459fb3a9a5cec584a06b1c7","sha512":"fe32e67032b6f63149aa98b92405ba7029c69e611c8f4e2a3222fe3b2864e5eba4f03f349fdeda3de34a07d926645bf48dde2fe14a702be8494b712790e86f59","ssdeep":"768:itXrcGGWoQyfKjEjysmEtPtqJNR0pRIhX0AuQqC6dXBM6kpeSbWV18ktPw:MASmpOhEI","tlshash":"e1c2faccf751b0612ae752a1947b1213e2307fa9708f4051e4698daa3eb15cfe23bb5d","first_seen":"2024-12-03T09:01:11.359963Z","last_seen":"2026-06-18T02:20:24.753789Z","times_seen":260,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/client-log","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.929Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/client-log HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 1038\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1038,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026currentUrl=https%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F\u0026logRecords=%5B%7B%22evt%22%3A%22transition_name%22%2C%22data%22%3A%22cpl_prepare_login_ul%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731890%7D%2C%7B%22evt%22%3A%22state_name%22%2C%22data%22%3A%22CPL_LATENCY_METRICS%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731890%7D%2C%7B%22evt%22%3A%22login_experience%22%2C%22data%22%3A%22Hybrid%20Login%20Cookied%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731890%7D%2C%7B%22evt%22%3A%22login_auth_time%22%2C%22data%22%3A%22%7B%5C%22start%5C%22%3A%5C%221774376682814%5C%22%2C%5C%22tt%5C%22%3A289049076%2C%5C%22t12%5C%22%3A2786%7D%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731890%7D%2C%7B%22evt%22%3A%22status%22%2C%22data%22%3A%22success%22%2C%22instrument%22%3Atrue%2C%22timestamp%22%3A1774665731890%7D%2C%7B%22evt%22%3A%22context_correlation_id%22%2C%22data%22%3A%22f3485341e6b9f%22%2C%22instrument%22%3Atrue%7D%5D\u0026intent=\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:11 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":321,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":321,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/client-log","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.934Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/client-log HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 530\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":530,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026currentUrl=https%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F\u0026logRecords=%5B%7B%22evt%22%3A%22HANDLE_AUTO_SEND%22%2C%22data%22%3A%22HANDLE_AUTO_SEND%22%2C%22calEvent%22%3Atrue%2C%22timestamp%22%3A1774665731896%7D%2C%7B%22evt%22%3A%22HANDLE_AUTO_SEND%22%2C%22data%22%3A%22NOT_AUTO_OTP%22%2C%22calEvent%22%3Atrue%2C%22timestamp%22%3A1774665731896%7D%2C%7B%22evt%22%3A%22context_correlation_id%22%2C%22data%22%3A%22f3485341e6b9f%22%2C%22instrument%22%3Atrue%7D%5D\u0026intent=\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:12 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":626,"timings":{"blocked":304,"dns":0,"connect":0,"send":0,"wait":321,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/js/lib/modernizr-2.6.1.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.055Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /web/res/1ca/74b84302a7188814d86f420a45647/js/lib/modernizr-2.6.1.js HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/javascript\r\ncf-ray: 9e3347b37d3d569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 1028877\r\ncache-control: max-age=31536000, s-maxage=31536000\r\ncontent-encoding: br\r\netag: W/\"69b3c298-edf\"\r\nexpires: Tue, 16 Mar 2027 04:54:14 GMT\r\nlast-modified: Fri, 13 Mar 2026 07:54:00 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-headers: x-csrf-token\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg13bdrf5-2.ccg13.slc.paypalinc.com\r\npaypal-debug-id: facde560e5a04\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3807,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3807), with no line terminators","md5":"a635a55ddb6339a3d0d01c641f670753","sha1":"a6dee4a1df6c51b82ce2e67323514e7de4e165d4","sha256":"a6c3bff965978df8093c3a29f7071c21d7439a212af41e7b40ce70d94d6bcc44","sha512":"2562ca35be37bfe0b984ec288e23678bc97ba7a881764044e65914ea013742a5310a5c12839cb8a501a464791bc67868fe6a02ae149df9329e40562569eba42d","ssdeep":"","tlshash":"a77175c474e1f15e539b20bb107fa34ef2b85a65596a8510e0a8c4bdbcb0c64867bf2d","first_seen":"2023-03-07T01:03:30Z","last_seen":"2026-06-18T02:20:24.735063Z","times_seen":1049,"resource_available":true,"data":null}},"time_used":150,"timings":{"blocked":62,"dns":47,"connect":1,"send":0,"wait":20,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/images/shared/glyph_alert_critical_big-2x.png","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.264Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /images/shared/glyph_alert_critical_big-2x.png HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: image/png\r\ncontent-length: 1435\r\ncf-ray: 9e3347b45d93569c-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\netag: \"cfego64KpYkzZCbcS4_hxL29eBK1VnHOdKHxTvMGKADQ:54130c54-16c4\"\r\nlast-modified: Fri, 12 Sep 2014 15:08:04 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\ncf-bgj: imgq:0,h2pri\r\nx-content-type-options: nosniff\r\ncf-resized: internal=ok/h q=0 n=53+3 c=0+3 v=2026.3.3 l=1435 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:; style-src 'unsafe-inline';\r\npriority: u=4;i=?0,cf-chb=(37;u=2;i=?0 193;u=5;i=?0)\r\nwarning: cf-images 299 \"original is 263B smaller\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1435,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 224 x 200, 8-bit colormap, non-interlaced","md5":"adb9b5199940d38b40c0cc91d780f6c6","sha1":"24aeeca14b1f78a193b181aab53d8405a999fb7b","sha256":"178af3c98c442c64fd3d14edd509ab96644228c649cd0be6728c56a5faf2a27e","sha512":"c7f49bde953a0f6c4f987c0b824c876e436a2c5f245c4369d55d95270478dd24c209744dc0b8ddc5e5220e9fa95cde18ce64dfd229eca33ad46272846515c25e","ssdeep":"","tlshash":"4221b6a2726e72a3241d1aafb7360c1245f14fe72386244329c50871af2dda88e721a3","first_seen":"2025-03-04T12:48:27.644665Z","last_seen":"2026-05-09T11:05:51.013125Z","times_seen":231,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/paypal-ui/fonts/PayPalOpen-Regular.woff2","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.686Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /paypal-ui/fonts/PayPalOpen-Regular.woff2 HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.paypalobjects.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/font-woff2\r\ncf-ray: 9e3347b70e55569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 4753\r\ncache-control: s-maxage=31536000, public,max-age=31536000\r\nx-content-type-options: nosniff\r\netag: W/\"6298f2c0-6b41\"\r\nlast-modified: Thu, 02 Jun 2022 17:26:24 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg01bdrf5-11.ccg01.phx.paypalinc.com\r\npaypal-debug-id: 24bbaa2742276\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27457,"size_decoded":0,"mime_type":"application/font-woff2","magic":"Web Open Font Format (Version 2), TrueType, length 27457, version 1.0","md5":"49d49974386dc725656bc1a2bf32ed44","sha1":"26139d3425422f233dfccb09fca2edb36f01e390","sha256":"9ae7b95f034d76b21aaf8fcc0cdd39f4ba7ba59dd9751348a32c7e5cfdfdb6df","sha512":"440a101dc681e69275ab9c2bfa2e436b9d3500debfcf5c84f47b9796f6879e1021b4a6e797ea3c4b45052f68cb066c1bcc75b4a6ac204a40848cb4eb6731f94a","ssdeep":"768:rs41ijgVewvJ0P+BvnbXzmX07uu/pmawwzQ8Mv:rsaijVwP1bXzmX077zQzv","tlshash":"9dc2e0f975cfa310c31d315cbce08a7a010579a8ece47799c368999f195bc8ad1db13a","first_seen":"2023-04-11T21:56:01Z","last_seen":"2026-06-25T10:19:43.073776Z","times_seen":1358,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/ca/lwsa.html","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.520Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"d.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 21 Nov 2025 00:00:00 GMT","end":"Thu, 21 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:95:B3:90:9B:31:9E:BC:57:35:3B:83:0F:11:A6:C1:B5:7B:AD:10","sha256":"D4:9C:0B:6F:12:3A:41:94:A5:60:6B:34:B5:61:2E:13:B0:A5:7C:15:B1:CE:68:6E:36:55:DB:32:79:6C:AF:BA"}}},"request":{"raw":"GET /cdn/ca/lwsa.html HTTP/1.1\r\nHost: d.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://com-elevarepay.web.id/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ec080eef91390fd025dd0bb85cfbf60e__sb=Jp8RNTnTIPgjgOljsGdMburAyiYxsRurijX0zfTSxYtrWvTZDl\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=utf-8\r\ndate: Fri, 27 Mar 2026 04:03:26 GMT\r\nlast-modified: Wed, 25 Mar 2026 18:13:49 GMT\r\ncontent-encoding: br\r\nserver: AmazonS3\r\netag: W/\"63115651eeb096dc7615e44565cb8579\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 0dab08166aa7b915b2e3314728d79750.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: qiCm96pLz1pEeKR-e2gdXMjoRXMhzNNZL5BWDroB8jhOjGJfjTNV7A==\r\nage: 81527\r\nvary: Accept-Encoding, Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1269,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (1269), with no line terminators","md5":"63115651eeb096dc7615e44565cb8579","sha1":"1c6608b4ac9caf047d2feadb81bf881b920c2cda","sha256":"f389ac64ee847c0071245c49f0add1981153c17da4c9e62c262f61cd4e37acb5","sha512":"55efebdd2db56ade879f385aed6c0ac71b93742a6e40e10044cfd051ad0f305ff4a58c03b38f5a3e82ed3d89b2d29bfd8539c6152d97da65a4716572dc314eec","ssdeep":"","tlshash":"4a2168f0abd0e12bbaad0717fc01eaf80136965e32a13903836c7a8e15e55c7c5a0484","first_seen":"2026-01-13T11:56:27.14933Z","last_seen":"2026-06-21T06:13:33.309176Z","times_seen":178,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/cd/l?e=v\u0026v=latest","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:13.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"d.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 21 Nov 2025 00:00:00 GMT","end":"Thu, 21 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:95:B3:90:9B:31:9E:BC:57:35:3B:83:0F:11:A6:C1:B5:7B:AD:10","sha256":"D4:9C:0B:6F:12:3A:41:94:A5:60:6B:34:B5:61:2E:13:B0:A5:7C:15:B1:CE:68:6E:36:55:DB:32:79:6C:AF:BA"}}},"request":{"raw":"POST /cdn/cd/l?e=v\u0026v=latest HTTP/1.1\r\nHost: d.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://com-elevarepay.web.id/\r\ncontent-type: application/x-www-form-urlencoded\r\nx-h-token: cuVYvJqCkZOp68KvRi4+BQFHTJ06StadWxoNiKf/B8g=\r\nContent-Length: 626\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ec080eef91390fd025dd0bb85cfbf60e__sb=Jp8RNTnTIPgjgOljsGdMburAyiYxsRurijX0zfTSxYtrWvTZDl\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":626,"data":"o=ZWMwODBlZWY5MTM5MGZkMDI1ZGQwYmI4NWNmYmY2MGU%3D\u0026m=cs1tJwxhG%2BmkCgDWIVVkUEHcDEOKmwaQufAmHigfscOhIHj7hUMTbCorrDSgoo3kOrFYfPiGBG%2F%2Fs9QPeNRq1agiY6auI3YiM0m3rOUyejVi%2BcfYKxUtdpVbB7b32jQiJpspkPvi8UXWEHLBAOamArVX3%2B1j0limHKoVeb4d5%2BeDIOntiW4YCB9wpcCJnRtUyoBydj5c81Do6tmlV9JhHAYqsmlFhfVtS9NHj%2BGuTiTRyUMZVHOxPLW%2FZ3JmA0FPv4HbXjtmV%2Bqb1CUi9hEfWKYxklxpf%2BrXk8aSdcLSiNgu9NqhP1xj6eVglLBzxMoIuEKmwxaaC9t3962Hv%2FjMrydsIlYUX%2FC5I38K1LIcdZtmy1%2BpNLhAV6henNL5kUHaWxVfTfxWnwkTYrHL6G8CaYm%2FdA68bH9dN0KGzUHiov3s%2Bwtleux5h%2Fdf391P5tg%3D\u0026s=slqX0IUH3abVnR7Ayhxfn9fNuD8NfWGeTaJc9OjPhuE%3D\u0026a=9f89c84a559f573636a47ff8daed0d33\u0026v=latest"}},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-length: 104\r\ndate: Sat, 28 Mar 2026 02:42:14 GMT\r\nstrict-transport-security: max-age=31536000\r\nserver: nginx\r\npragma: no-cache\r\ncache-control: no-cache, pre-check=0, post-check=0, max-age=0, s-maxage=0, no-store, must-revalidate\r\nreferrer-policy: unsafe-url\r\nx-content-type-options: no-sniff\r\naccess-control-allow-origin: https://com-elevarepay.web.id\r\naccess-control-allow-credentials: true\r\nx-permitted-cross-domain-policies: master-only\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0dab08166aa7b915b2e3314728d79750.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: AYadBaONrU1w0RXwE9dpx1tJSLzY0NWH1qasVn1N8bjFngt7uSX_uQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":104,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"2c54b85e7a4e61bf461e7178794685cc","sha1":"091e42d99f51888130fd549702385b49389e1693","sha256":"3b87699b0fe631006144abdb3b79ffbe355a655c48b4661e9df9574040edbd33","sha512":"c754bec72dc5b4652f29c73a3a9dfcf7584f6adf8a7d1bfdd14e56e727b6381dabf6cf6b9a425087c1c9f1b2444224f7e64bd9566f5d8d23d3601343581e9d2f","ssdeep":"","tlshash":"bab012e419c80a392534a517575324260060f371e33381237f6759533e47a986061916","first_seen":"2026-03-28T02:42:47.239536Z","last_seen":"2026-03-28T02:42:47.239536Z","times_seen":1,"resource_available":false,"data":null}},"time_used":758,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":757,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t.paypal.com/ts?v=1.10.0\u0026t=1774665733926\u0026g=0\u0026pgrp=main%3Aunifiedlogin%3A%3A%3Alogin\u0026page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A\u0026pgtf=Nodejs\u0026s=ci\u0026env=live\u0026transition_name=ss_prepare_pwd\u0026cookie_disabled_request=false\u0026userRedirected=true\u0026xe=101090%2C101735%2C101216%2C104200%2C109195%2C100644%2C106273%2C106057%2C110012%2C110718%2C110982%2C111217%2C110979%2C101820%2C101817%2C108076%2C109047\u0026xt=104050%2C105856%2C103864%2C127485%2C144027%2C101702%2C128593%2C127562%2C160815%2C152856%2C154506%2C162434%2C162442%2C106324%2C112768%2C138090%2C143343\u0026ctx_login_ot_content=0\u0026obex=signin\u0026landing_page=login\u0026browser_client_type=Browser\u0026state_name=begin_pwd\u0026ctx_login_ctxid_fetch=ctxid-not-exist\u0026ctx_login_content_fetch=success\u0026ctx_login_signup_btn=shown%7Cdefault\u0026ctx_login_intent=signin\u0026ctx_login_flow=Signin\u0026ctx_login_state_transition=login_loaded\u0026comp=unifiedloginnodeweb\u0026tsrce=privacynodeweb\u0026cu=0\u0026ef_policy=gdpr_v2.1\u0026c_prefs=T%3D0%2CP%3D1%2CF%3D1%2Ctype%3Dimplicit\u0026pxpguid=6ec5f65819c0ad119da254fefffc3587\u0026pgst=1774376682814\u0026calc=f3485341e6b9f\u0026csci=f781841fd5ca404c9625a7a57b822049\u0026nsid=tcKVcxqub3Dj_abRMVcGCXpOYbw0PxBD\u0026rsta=en_GB\u0026ccpg=SG\u0026securityContext_status=success\u0026post_login_redirect=default\u0026ret_url=%2F\u0026event_name=t_paypal_cpl\u0026t1=23\u0026t1c=0\u0026t1d=0\u0026t1s=0\u0026t2=256\u0026t3=0\u0026tt=279\u0026protocol=h2\u0026cdn=fastly\u0026tmpl=%2F%2Ft.paypal.\u0026view=%7B%22t10%22%3A23%2C%22t11%22%3A279%2C%22nt%22%3A%22res%22%7D\u0026e=pf\u00263p_vid=47d477e2599fce4e\u00263p_fpti=424e81f465ff2b34","fqdn":"t.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.67.1","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:13.930Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"t.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 20 Feb 2026 00:00:00 GMT","end":"Sun, 21 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EA:B8:DE:7E:92:A5:33:3B:95:2F:D2:B0:E6:9F:48:71:A6:33:F5:E8","sha256":"71:55:5A:84:D8:C8:D0:44:77:28:BE:C1:5D:4D:DC:A6:EB:DB:AE:58:D9:B8:D6:F1:1E:EC:35:2A:EE:11:63:39"}}},"request":{"raw":"GET /ts?v=1.10.0\u0026t=1774665733926\u0026g=0\u0026pgrp=main%3Aunifiedlogin%3A%3A%3Alogin\u0026page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A\u0026pgtf=Nodejs\u0026s=ci\u0026env=live\u0026transition_name=ss_prepare_pwd\u0026cookie_disabled_request=false\u0026userRedirected=true\u0026xe=101090%2C101735%2C101216%2C104200%2C109195%2C100644%2C106273%2C106057%2C110012%2C110718%2C110982%2C111217%2C110979%2C101820%2C101817%2C108076%2C109047\u0026xt=104050%2C105856%2C103864%2C127485%2C144027%2C101702%2C128593%2C127562%2C160815%2C152856%2C154506%2C162434%2C162442%2C106324%2C112768%2C138090%2C143343\u0026ctx_login_ot_content=0\u0026obex=signin\u0026landing_page=login\u0026browser_client_type=Browser\u0026state_name=begin_pwd\u0026ctx_login_ctxid_fetch=ctxid-not-exist\u0026ctx_login_content_fetch=success\u0026ctx_login_signup_btn=shown%7Cdefault\u0026ctx_login_intent=signin\u0026ctx_login_flow=Signin\u0026ctx_login_state_transition=login_loaded\u0026comp=unifiedloginnodeweb\u0026tsrce=privacynodeweb\u0026cu=0\u0026ef_policy=gdpr_v2.1\u0026c_prefs=T%3D0%2CP%3D1%2CF%3D1%2Ctype%3Dimplicit\u0026pxpguid=6ec5f65819c0ad119da254fefffc3587\u0026pgst=1774376682814\u0026calc=f3485341e6b9f\u0026csci=f781841fd5ca404c9625a7a57b822049\u0026nsid=tcKVcxqub3Dj_abRMVcGCXpOYbw0PxBD\u0026rsta=en_GB\u0026ccpg=SG\u0026securityContext_status=success\u0026post_login_redirect=default\u0026ret_url=%2F\u0026event_name=t_paypal_cpl\u0026t1=23\u0026t1c=0\u0026t1d=0\u0026t1s=0\u0026t2=256\u0026t3=0\u0026tt=279\u0026protocol=h2\u0026cdn=fastly\u0026tmpl=%2F%2Ft.paypal.\u0026view=%7B%22t10%22%3A23%2C%22t11%22%3A279%2C%22nt%22%3A%22res%22%7D\u0026e=pf\u00263p_vid=47d477e2599fce4e\u00263p_fpti=424e81f465ff2b34 HTTP/1.1\r\nHost: t.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=0, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\ncontent-type: image/gif\r\npaypal-debug-id: ca8bdc7c84780\r\nset-cookie: ts=vreXpYrS%3D1806201734%26vteXpYrS%3D1774667534%26vr%3D424e81f465ff2b34%26vt%3D47d477e2599fce4e;Expires=Sun, 28 Mar 2027 02:42:14 GMT;domain=.paypal.com;path=/;secure;HttpOnly;\nts_c=vr%3D424e81f465ff2b34%26vt%3D47d477e2599fce4e;Expires=Sun, 28 Mar 2027 02:42:14 GMT;domain=.paypal.com;path=/;secure;\r\ncorrelation-id: ca8bdc7c84780\r\nexpires: Sat, 28 Mar 2026 02:42:14 GMT\r\naccess-control-expose-headers: Server-Timing\r\np3p: CP=\"CAO IND OUR SAM UNI STA COR COM\"\r\naccept-ranges: bytes\r\nvia: 1.1 varnish, 1.1 varnish\r\ndate: Sat, 28 Mar 2026 02:42:14 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-fra-eddf8230167-FRA, cache-fra-eddf8230167-FRA, cache-hel1410021-HEL\r\nx-cache: MISS, MISS, MISS\r\nx-cache-hits: 0, 0, 0\r\nx-timer: S1774665734.949117,VS0,VE235\r\nvary: Accept-Encoding\r\nserver-timing: \"traceparent;desc=\"00-0000000000000000000ca8bdc7c84780-c55d2d29a3e57ecf-01\"\";content-encoding;desc=\"\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"b4682377ddfbe4e7dabfddb2e543e842","sha1":"328e472721a93345801ed5533240eac2d1f8498c","sha256":"6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93","sha512":"202612457d9042fe853daab3ddcc1f0f960c5ffdbe8462fa435713e4d1d85ff0c3f197daf8dba15bda9f5266d7e1f9ecaeee045cbc156a4892d2f931fe6fa1bb","ssdeep":"","tlshash":"c2900023efc8c020c280c8380a2c0b0023baac200228030bc03c22e8ecaa3b38c22002","first_seen":"2023-04-06T23:21:37Z","last_seen":"2026-06-25T10:19:43.087197Z","times_seen":15872,"resource_available":true,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-28T02:42:08.859Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nDate: Sat, 28 Mar 2026 02:42:09 GMT\r\nServer: Apache\r\nLocation: /signin\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":29495,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":2002,"timings":{"blocked":647,"dns":1,"connect":319,"send":0,"wait":708,"receive":0,"ssl":323},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"paypalobjects.com/ae/0.16.0/atomic-events-dom/index.js","fqdn":"paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"162.159.141.96","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.267Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 08 Jul 2025 00:00:00 GMT","end":"Tue, 07 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"49:55:65:80:F7:BA:D1:D2:F8:40:72:41:EF:92:56:AD:83:40:4F:9E","sha256":"C9:3E:5B:7B:18:FD:FA:6D:1D:CD:07:08:ED:F6:6D:BD:8E:6E:84:57:AE:E6:9C:B3:F7:DB:05:72:C1:CB:A9:0E"}}},"request":{"raw":"GET /ae/0.16.0/atomic-events-dom/index.js HTTP/1.1\r\nHost: paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-length: 0\r\nlocation: https://www.paypalobjects.com/ae/0.16.0/atomic-events-dom/index.js\r\nserver: cloudflare\r\ncf-ray: 9e3347b48b8c5699-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":26972,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":56,"timings":{"blocked":22,"dns":20,"connect":1,"send":0,"wait":3,"receive":0,"ssl":8},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/paypal-ui/logos/svg/paypal-wordmark-color.svg","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.676Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /paypal-ui/logos/svg/paypal-wordmark-color.svg HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.paypalobjects.com/web/res/1ca/74b84302a7188814d86f420a45647/css/contextualLoginElementalUIv5_1.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: image/svg+xml\r\ncf-ray: 9e3347b6fe51569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 2932\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\ncontent-encoding: br\r\netag: W/\"67da3cd6-8f3\"\r\nlast-modified: Wed, 19 Mar 2025 03:41:10 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg13bdrf5-1.ccg13.slc.paypalinc.com\r\npaypal-debug-id: 27ba7b540096d\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\ntraceparent: 00-000000000000000000027ba7b540096d-beadd3dd7c71825a-01\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2291,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b40b8498ed9de0b5cc68df968183c833","sha1":"276409ef0de6ff80af749877a5f650db78f7804a","sha256":"f766ba6d9471acc787c0808b8c30f38494d12b287ccfb2ff610fd617cfa2a432","sha512":"a79c51326b7c6bb1e694f5c85041b6ee014e8a7fb123996d070f8acd744529f06420d5d751bf1d808e40a833ed9b21c48e2a6ad8b9d340e46e9cf2a293915d45","ssdeep":"","tlshash":"c241f2e2a214e39829178a54ce7250e0165ff4fef7af33a191bf5b70a0425e0ca11e74","first_seen":"2024-09-19T18:53:11Z","last_seen":"2026-06-25T17:01:51.9098Z","times_seen":610,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d.paypal.com/cdn/cd/gpk?orgID=ec080eef91390fd025dd0bb85cfbf60e\u0026v=latest\u0026udevid=\u0026e=v\u0026v=latest","fqdn":"d.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"3.167.2.13","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"d.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 21 Nov 2025 00:00:00 GMT","end":"Thu, 21 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:95:B3:90:9B:31:9E:BC:57:35:3B:83:0F:11:A6:C1:B5:7B:AD:10","sha256":"D4:9C:0B:6F:12:3A:41:94:A5:60:6B:34:B5:61:2E:13:B0:A5:7C:15:B1:CE:68:6E:36:55:DB:32:79:6C:AF:BA"}}},"request":{"raw":"GET /cdn/cd/gpk?orgID=ec080eef91390fd025dd0bb85cfbf60e\u0026v=latest\u0026udevid=\u0026e=v\u0026v=latest HTTP/1.1\r\nHost: d.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://com-elevarepay.web.id/\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ec080eef91390fd025dd0bb85cfbf60e__sb=Jp8RNTnTIPgjgOljsGdMburAyiYxsRurijX0zfTSxYtrWvTZDl\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-length: 476\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nstrict-transport-security: max-age=31536000\r\nserver: nginx\r\npragma: no-cache\r\nx-k-comm: lwC5mz7F3/4RlzhO3aTTug==\r\ncache-control: no-cache, pre-check=0, post-check=0, max-age=0, s-maxage=0, no-store, must-revalidate\r\nreferrer-policy: unsafe-url\r\nx-content-type-options: no-sniff\r\naccess-control-allow-origin: https://com-elevarepay.web.id\r\naccess-control-expose-headers: X-K-Comm\r\naccess-control-allow-credentials: true\r\nx-permitted-cross-domain-policies: master-only\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0dab08166aa7b915b2e3314728d79750.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: VjnQHrzguI0AbKbclr_i_pZLbthF6qwfhbzxBqgGN8yWeo6vFQJzEw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":476,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (476), with no line terminators","md5":"2a153b8d6465fdea8eb319018790fd3a","sha1":"783a672f9e77f08d90a69e5153dce7eba0a65246","sha256":"8456601075ad8e0f690b8a3603fc617110b33565267cb1ca4432ff6597f556d4","sha512":"3f185b9bb73f5c19e2dd2769223db1c15aa68b6200817c6b6a0fb78875f125f4b49e56f0ec32405616a84b2c0539e2804c59f17e8f265072f2d56154a588f776","ssdeep":"","tlshash":"4df0d4c1591164c57c8d9a02bd80abcf5cf6ee00d10f1e11637d5ca363123583569994","first_seen":"2026-03-28T02:42:47.240788Z","last_seen":"2026-03-28T02:42:47.240788Z","times_seen":1,"resource_available":false,"data":null}},"time_used":322,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":322,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"com-elevarepay.web.id/signin/client-log","fqdn":"com-elevarepay.web.id","domain":"com-elevarepay.web.id","tld":"web.id"},"ip":{"addr":"210.79.190.69","port":443,"asn":136052,"as":"PT Cloud Hosting Indonesia","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:17.482Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.com-elevarepay.web.id","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 10:29:33 GMT","end":"Thu, 25 Jun 2026 10:29:32 GMT"},"fingerprint":{"sha1":"C1:CA:39:BB:E4:F4:7E:49:24:C3:78:2D:A4:5B:CB:27:F5:C8:07:9A","sha256":"39:93:3B:25:E6:FE:B8:39:85:57:5E:A7:2E:23:A4:09:C5:79:94:EC:93:65:C4:10:41:52:A4:36:1E:BA:6E:E1"}}},"request":{"raw":"POST /signin/client-log HTTP/1.1\r\nHost: com-elevarepay.web.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nContent-type: application/x-www-form-urlencoded\r\nContent-Length: 390\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/signin/\r\nCookie: _dd_s=rum=2\u0026id=19ce3815-a8ad-401c-b3db-37bc5647da64\u0026created=1774665731724\u0026expire=1774666631724; datadome=3Gb8RsK9yr4j_GSteTs4dlBN0kDK3ClwcYs1HCVjt6988UkTO_EbGQ9DJnRGGN7ydpv9E1fDID9gYPyIFbR8OxARL1roe5ZX5mx8yYpv7w1cBY7WAYZGO4LNlLQpyzvg\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":390,"data":"_csrf=acSpvh36coEL4FdLjIbUKlhvXpr2sI%2FbdMVKo%3D\u0026currentUrl=https%3A%2F%2Fcom-elevarepay.web.id%2Fsignin%2F\u0026logRecords=%5B%7B%22evt%22%3A%22XHR_STATUS_FAIL%22%2C%22data%22%3A%22status%20404%22%2C%22calEvent%22%3Atrue%2C%22timestamp%22%3A1774665737471%7D%2C%7B%22evt%22%3A%22context_correlation_id%22%2C%22data%22%3A%22f3485341e6b9f%22%2C%22instrument%22%3Atrue%7D%5D\u0026intent=\u0026_sessionID=null"}},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 28 Mar 2026 02:42:17 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-26T06:45:57.243672Z","times_seen":42006,"resource_available":true,"data":null}},"time_used":318,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":318,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"com-elevarepay.web.id","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"com-elevarepay.web.id","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - PayPal","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with PayPal phishing","tags":["paypal","phishing","financial"],"meta":null}]}},{"url":{"schema":"https","addr":"www.paypalobjects.com/pa/js/min/pa.js","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"172.64.153.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:11.271Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 17 Jun 2025 00:00:00 GMT","end":"Tue, 16 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D1:CC:8D:A7:79:AE:1A:09:18:36:29:8A:84:C5:9B:2E:0E:FB:CC:75","sha256":"B2:15:32:68:A9:52:EC:F4:53:30:4D:98:F6:AF:90:B7:AA:72:37:80:05:8A:96:71:BC:E8:9A:9F:05:01:C7:E9"}}},"request":{"raw":"GET /pa/js/min/pa.js HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 28 Mar 2026 02:42:11 GMT\r\ncontent-type: application/javascript\r\ncf-ray: 9e3347b46d98569c-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\nage: 50137\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\ncontent-encoding: br\r\netag: W/\"698c0d52-1169e\"\r\nlast-modified: Wed, 11 Feb 2026 05:02:10 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding, Accept-Encoding\r\naccess-control-allow-headers: x-csrf-token\r\naccess-control-allow-methods: GET\r\ndc: ccg11-origin-www-1.paypal.com\r\npp-border: ccg14bdrf5-6.ccg14.slc.paypalinc.com\r\npaypal-debug-id: 0cdf78906ce7b\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":71326,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65507)","md5":"bb25b10981a6333f135c2278afb179a4","sha1":"6503cdbda2039e13cd55d4ff0dc61235c92d4563","sha256":"fae4b858a4efba7ef920a6fda59d4207224ec488e49e16c73ec013b8daf89370","sha512":"dea76e445e48ff1fdaa036b93033da83c49e3307079640c5b3f64edb456c0a51aafa30807ac1bd56e7de5f67684af0f0375663ced815bb58ae70b95116d81e01","ssdeep":"1536:SM/FcQ1vmwdRWDp40xUKvVCceu8TFgAjhD/+xXatu+RJW:SDxpNI+z+RM","tlshash":"3963299c72d1b03747ab1071416f120bb2363d65780bc4d0d62ae5d47db8a8f92abfad","first_seen":"2025-05-28T18:02:03.444624Z","last_seen":"2026-04-20T23:47:32.76872Z","times_seen":940,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.paypal.com/v1/r/d/b/p2","fqdn":"c.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.193.21","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Tue, 05 Aug 2025 00:00:00 GMT","end":"Tue, 04 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"12:2E:F7:4B:EE:2D:15:15:4F:4E:DE:63:48:9F:DB:6C:A1:B4:A4:6D","sha256":"A6:C0:A2:30:F9:69:64:91:78:C1:B6:BD:F4:64:B7:8A:CF:17:D7:55:84:52:3F:43:97:56:68:51:CA:99:FD:6B"}}},"request":{"raw":"OPTIONS /v1/r/d/b/p2 HTTP/1.1\r\nHost: c.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,x-requested-with\r\nReferer: https://com-elevarepay.web.id/\r\nOrigin: https://com-elevarepay.web.id\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\npaypal-debug-id: 142537d73ab8b\r\naccess-control-allow-origin: https://www.paypal.com\r\ncorrelation-id: 142537d73ab8b\r\naccess-control-allow-credentials: true\r\ncache-control: max-age=0, no-cache, no-store, must-revalidate\r\naccess-control-allow-methods: POST\r\nset-cookie: l7_az=dcg16.slc; Path=/; Domain=paypal.com; Expires=Sat, 28 Mar 2026 03:12:12 GMT; HttpOnly; Secure\r\naccess-control-allow-headers: Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccept-ranges: bytes\r\nvia: 1.1 varnish, 1.1 varnish\r\ndate: Sat, 28 Mar 2026 02:42:12 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-fra-eddf8230224-FRA, cache-fra-eddf8230224-FRA, cache-hel1410028-HEL\r\nx-cache: MISS, MISS, MISS\r\nx-cache-hits: 0, 0, 0\r\nvary: Accept-Encoding, Origin\r\nserver-timing: content-encoding;desc=\"\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-26T06:55:03.618869Z","times_seen":16731264,"resource_available":true,"data":null}},"time_used":219,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":219,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t.paypal.com/ts?v=1.10.0\u0026t=1774665732923\u0026g=0\u0026pgrp=main%3Aunifiedlogin%3A%3A%3Alogin\u0026page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A\u0026pgtf=Nodejs\u0026s=ci\u0026env=live\u0026transition_name=ss_prepare_pwd\u0026cookie_disabled_request=false\u0026userRedirected=true\u0026xe=101090%2C101735%2C101216%2C104200%2C109195%2C100644%2C106273%2C106057%2C110012%2C110718%2C110982%2C111217%2C110979%2C101820%2C101817%2C108076%2C109047\u0026xt=104050%2C105856%2C103864%2C127485%2C144027%2C101702%2C128593%2C127562%2C160815%2C152856%2C154506%2C162434%2C162442%2C106324%2C112768%2C138090%2C143343\u0026ctx_login_ot_content=0\u0026obex=signin\u0026landing_page=login\u0026browser_client_type=Browser\u0026state_name=begin_pwd\u0026ctx_login_ctxid_fetch=ctxid-not-exist\u0026ctx_login_content_fetch=success\u0026ctx_login_signup_btn=shown%7Cdefault\u0026ctx_login_intent=signin\u0026ctx_login_flow=Signin\u0026ctx_login_state_transition=login_loaded\u0026comp=unifiedloginnodeweb\u0026tsrce=privacynodeweb\u0026cu=0\u0026ef_policy=gdpr_v2.1\u0026c_prefs=T%3D0%2CP%3D1%2CF%3D1%2Ctype%3Dimplicit\u0026pxpguid=6ec5f65819c0ad119da254fefffc3587\u0026pgst=1774376682814\u0026calc=f3485341e6b9f\u0026csci=f781841fd5ca404c9625a7a57b822049\u0026nsid=tcKVcxqub3Dj_abRMVcGCXpOYbw0PxBD\u0026rsta=en_GB\u0026ccpg=SG\u0026securityContext_status=success\u0026post_login_redirect=default\u0026ret_url=%2F\u0026e=im\u0026imsrc=setup\u0026view=%7B%22t10%22%3A2%2C%22t11%22%3A3657%2C%22tcp%22%3A2831%2C%22nt%22%3A%22navigate%22%2C%22bt%22%3A584%7D\u0026pt=Log%20in%20to%20your%20PayPal%20account\u0026cd=24\u0026sw=1280\u0026sh=1024\u0026dw=1280\u0026dh=1024\u0026bw=1280\u0026bh=1024\u0026ce=1\u0026t1=2\u0026t1c=0\u0026t1d=0\u0026t1s=0\u0026t2=322\u0026t3=0\u0026t4d=0\u0026t4=0\u0026t4e=3\u0026tt=3072\u0026rdc=0\u0026protocol=http%2F1.1\u0026res=%7B%7D\u0026t12=2786\u00263p_vid=47d477e2599fce4e\u00263p_fpti=424e81f465ff2b34","fqdn":"t.paypal.com","domain":"paypal.com","tld":"com"},"ip":{"addr":"151.101.67.1","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://com-elevarepay.web.id/signin/","date":"2026-03-28T02:42:12.947Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"t.paypal.com","organization":"PayPal, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 20 Feb 2026 00:00:00 GMT","end":"Sun, 21 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"EA:B8:DE:7E:92:A5:33:3B:95:2F:D2:B0:E6:9F:48:71:A6:33:F5:E8","sha256":"71:55:5A:84:D8:C8:D0:44:77:28:BE:C1:5D:4D:DC:A6:EB:DB:AE:58:D9:B8:D6:F1:1E:EC:35:2A:EE:11:63:39"}}},"request":{"raw":"GET /ts?v=1.10.0\u0026t=1774665732923\u0026g=0\u0026pgrp=main%3Aunifiedlogin%3A%3A%3Alogin\u0026page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A\u0026pgtf=Nodejs\u0026s=ci\u0026env=live\u0026transition_name=ss_prepare_pwd\u0026cookie_disabled_request=false\u0026userRedirected=true\u0026xe=101090%2C101735%2C101216%2C104200%2C109195%2C100644%2C106273%2C106057%2C110012%2C110718%2C110982%2C111217%2C110979%2C101820%2C101817%2C108076%2C109047\u0026xt=104050%2C105856%2C103864%2C127485%2C144027%2C101702%2C128593%2C127562%2C160815%2C152856%2C154506%2C162434%2C162442%2C106324%2C112768%2C138090%2C143343\u0026ctx_login_ot_content=0\u0026obex=signin\u0026landing_page=login\u0026browser_client_type=Browser\u0026state_name=begin_pwd\u0026ctx_login_ctxid_fetch=ctxid-not-exist\u0026ctx_login_content_fetch=success\u0026ctx_login_signup_btn=shown%7Cdefault\u0026ctx_login_intent=signin\u0026ctx_login_flow=Signin\u0026ctx_login_state_transition=login_loaded\u0026comp=unifiedloginnodeweb\u0026tsrce=privacynodeweb\u0026cu=0\u0026ef_policy=gdpr_v2.1\u0026c_prefs=T%3D0%2CP%3D1%2CF%3D1%2Ctype%3Dimplicit\u0026pxpguid=6ec5f65819c0ad119da254fefffc3587\u0026pgst=1774376682814\u0026calc=f3485341e6b9f\u0026csci=f781841fd5ca404c9625a7a57b822049\u0026nsid=tcKVcxqub3Dj_abRMVcGCXpOYbw0PxBD\u0026rsta=en_GB\u0026ccpg=SG\u0026securityContext_status=success\u0026post_login_redirect=default\u0026ret_url=%2F\u0026e=im\u0026imsrc=setup\u0026view=%7B%22t10%22%3A2%2C%22t11%22%3A3657%2C%22tcp%22%3A2831%2C%22nt%22%3A%22navigate%22%2C%22bt%22%3A584%7D\u0026pt=Log%20in%20to%20your%20PayPal%20account\u0026cd=24\u0026sw=1280\u0026sh=1024\u0026dw=1280\u0026dh=1024\u0026bw=1280\u0026bh=1024\u0026ce=1\u0026t1=2\u0026t1c=0\u0026t1d=0\u0026t1s=0\u0026t2=322\u0026t3=0\u0026t4d=0\u0026t4=0\u0026t4e=3\u0026tt=3072\u0026rdc=0\u0026protocol=http%2F1.1\u0026res=%7B%7D\u0026t12=2786\u00263p_vid=47d477e2599fce4e\u00263p_fpti=424e81f465ff2b34 HTTP/1.1\r\nHost: t.paypal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://com-elevarepay.web.id/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncorrelation-id: 0661f05d21a78\r\np3p: CP=\"CAO IND OUR SAM UNI STA COR COM\"\r\npaypal-debug-id: 0661f05d21a78\r\naccess-control-expose-headers: Server-Timing\r\ncontent-type: image/gif\r\nexpires: Sat, 28 Mar 2026 02:42:13 GMT\r\npragma: no-cache\r\nset-cookie: ts=vreXpYrS%3D1806201733%26vteXpYrS%3D1774667533%26vr%3D424e81f465ff2b34%26vt%3D47d477e2599fce4e;Expires=Sun, 28 Mar 2027 02:42:13 GMT;domain=.paypal.com;path=/;secure;HttpOnly;\nts_c=vr%3D424e81f465ff2b34%26vt%3D47d477e2599fce4e;Expires=Sun, 28 Mar 2027 02:42:13 GMT;domain=.paypal.com;path=/;secure;\r\ncache-control: max-age=0, no-cache, no-store, must-revalidate\r\naccept-ranges: bytes\r\nvia: 1.1 varnish, 1.1 varnish\r\ndate: Sat, 28 Mar 2026 02:42:13 GMT\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-served-by: cache-fra-etou8220077-FRA, cache-fra-etou8220077-FRA, cache-hel1410021-HEL\r\nx-cache: MISS, MISS, MISS\r\nx-cache-hits: 0, 0, 0\r\nx-timer: S1774665733.965394,VS0,VE230\r\nvary: Accept-Encoding\r\nserver-timing: \"traceparent;desc=\"00-00000000000000000000661f05d21a78-24916f4f14e30176-01\"\";content-encoding;desc=\"\",x-cdn;desc=\"fastly\"\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"b4682377ddfbe4e7dabfddb2e543e842","sha1":"328e472721a93345801ed5533240eac2d1f8498c","sha256":"6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93","sha512":"202612457d9042fe853daab3ddcc1f0f960c5ffdbe8462fa435713e4d1d85ff0c3f197daf8dba15bda9f5266d7e1f9ecaeee045cbc156a4892d2f931fe6fa1bb","ssdeep":"","tlshash":"c2900023efc8c020c280c8380a2c0b0023baac200228030bc03c22e8ecaa3b38c22002","first_seen":"2023-04-06T23:21:37Z","last_seen":"2026-06-25T10:19:43.087197Z","times_seen":15872,"resource_available":true,"data":null}},"time_used":256,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}