5.9 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2559)
Hash a9498555eb80254f1365048a8f0d55a2
7650d23dcd061757fe2e772c06636358e9c33714
684b1250cf06f954012145ebc8e407d85ddc401206a4e9cf0917e740979522c2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: 217.61.97.224
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 10:34:48 GMT
Server: Apache/2.4.56 (Debian)
Set-Cookie: tid=c33cce4034a0b5a87f57; expires=Thu, 04-Jan-2024 10:34:48 GMT; Max-Age=2592000
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5905
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
5.9 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2559)
Hash fd6f5d083c7721915787ea2f36e0bcd3
1e3bb2eba54cd216b23a7a05e559e31f1495669a
8bbe832e3ca11fb926b404a6f744219aae5c8cfec28c2ab6ccadff4fc1324e0b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: 217.61.97.224
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 10:34:48 GMT
Server: Apache/2.4.56 (Debian)
Set-Cookie: tid=c33cce4034a0b5a87f57; expires=Thu, 04-Jan-2024 10:34:49 GMT; Max-Age=2592000
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5905
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
assetslp.link/assets/js/landend/jquery-3-6-0.min.js
301 Moved Permanently 167 B URL GET HTTP/1.1 assetslp.link/assets/js/landend/jquery-3-6-0.min.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /assets/js/landend/jquery-3-6-0.min.js HTTP/1.1
Host: assetslp.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 05 Dec 2023 10:34:49 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://assetslp.link/assets/js/landend/jquery-3-6-0.min.js
X-Cache: Redirect from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -MrMmOxhrZUfOlTshagIajnDoLLIe2UtiRFUWvlik1ARtMm-lZoKlQ==
Cache-Control: max-age=31536000
assetslp.link/assets/js/landend/lazysizes.min.js
301 Moved Permanently 167 B URL GET HTTP/1.1 assetslp.link/assets/js/landend/lazysizes.min.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /assets/js/landend/lazysizes.min.js HTTP/1.1
Host: assetslp.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 05 Dec 2023 10:34:49 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://assetslp.link/assets/js/landend/lazysizes.min.js
X-Cache: Redirect from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UGbuzjxej3z-Y1K-BehxZONxH3fQComnDFQI1X7U3NPF2gIXaDQ9bA==
ucarecdn.com/libs/blinkloader/3.x/blinkloader.min.js
200 OK 3.4 kB URL GET HTTP/2 ucarecdn.com/libs/blinkloader/3.x/blinkloader.min.js
IP
ASN #20940 Akamai International B.V.
Certificate IssuerLet's Encrypt
Subjectcps3.ucarecdn.com
Fingerprint7A:34:28:F8:32:49:96:26:85:46:A8:B5:F4:76:95:81:37:8C:46:C5
ValidityMon, 13 Nov 2023 09:12:11 GMT - Sun, 11 Feb 2024 09:12:10 GMT
File type ASCII text, with very long lines (539)
Hash 810637653b8b6681622cbbfa20307826
40d3c471af908bbfe4a9c7ed43a287df8ba9fb9c
46ef20c3bf16f3011c2c15cfd31558eedc534b0969264691d6ab0ca887f5303f
GET /libs/blinkloader/3.x/blinkloader.min.js HTTP/1.1
Host: ucarecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
accept-ranges: bytes
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
last-modified: Tue, 03 Nov 2020 14:31:31 GMT
server: Uploadcare
etag: "810637653b8b6681622cbbfa20307826"
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=1456
date: Tue, 05 Dec 2023 10:34:49 GMT
content-length: 3372
X-Firefox-Spdy: h2
landingistats.com/assets/js/landend/frodo.js
200 OK 8.3 kB URL GET HTTP/2 landingistats.com/assets/js/landend/frodo.js
IP
ASN #63911 NetActuate, Inc
Certificate IssuerLet's Encrypt
Subjectlandingistats.com
Fingerprint1F:F8:DD:87:8E:FE:58:B0:15:96:1F:FD:C8:7D:BF:05:F6:15:E8:F5
ValidityMon, 30 Oct 2023 14:38:42 GMT - Sun, 28 Jan 2024 14:38:41 GMT
File type ASCII text, with very long lines (17721)
Hash 14270263da6a4960ec5d4daa25278483
6dd6e52a81e1c10a81d39480da401e50d00fa406
01bb73d3d1aad786bb60c17b6756a44d995a28d2ad7dbd7e44f747ef9481dd9d
GET /assets/js/landend/frodo.js HTTP/1.1
Host: landingistats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/javascript
content-length: 8327
last-modified: Mon, 04 Dec 2023 06:29:05 GMT
vary: Accept-Encoding
etag: "656d71b1-2087"
content-encoding: gzip
cache-control: public, max-age=43200
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: deny
strict-transport-security: max-age=7776000; includeSubdomains; preload
X-Firefox-Spdy: h2
images.assets-landingi.com/HncwxfUc/04_03.png
200 OK 7.9 kB URL GET HTTP/2 images.assets-landingi.com/HncwxfUc/04_03.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type PNG image data, 162 x 173, 8-bit/color RGBA, non-interlaced\012- data
Hash d2f23b39574811a2481da1e63803c7bd
ce5ef145753c7d1e277cda7db8f9eccd578d6aa6
60d5aea8aeda573a3708f2b686e1c1412011fb06d7054ffa7081e7f4e01715aa
GET /HncwxfUc/04_03.png HTTP/1.1
Host: images.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: image/png
content-length: 7946
x-amz-id-2: pqlgHnsanPpHras86VU22GFTkSIQs7mCdYgqnRRwGRDaBYZYgTV28XuKh1maybXpPrGh1Yuq7rLCOnWFGEvxFA==
x-amz-request-id: 3XDFP65W84PDJNXT
last-modified: Fri, 30 Mar 2018 09:58:22 GMT
etag: "d2f23b39574811a2481da1e63803c7bd"
x-amz-version-id: null
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=066A4hbKw6FbWQBoz%2Fz%2BeAOazuIGvunRvSMSgEcifjUX8KL7eFs%2FOV9%2BaZUoMjmmiPvO3i%2Fjlenz0EkUkz7czWuPGepu1pSPr1KEH9Ym2h%2FYBtnWlx2jKMZCfOT8oIqK37qMQ0KLCh42j%2BUP5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38bff46712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
images.assets-landingi.com/PcD4r8pT/15_01.jpg
200 OK 150 kB URL GET HTTP/2 images.assets-landingi.com/PcD4r8pT/15_01.jpg
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x765, components 3\012- data
Size 150 kB (149920 bytes)
Hash 8b3929e63d21de3c8ba5b22250919314
bdf7389274be060c2e9e5a780b47ca7d9a7f7fd3
e2afb1fb68375e2947152b81fb30f8f50f4d073f8351630ed9887c1ec3a96eeb
GET /PcD4r8pT/15_01.jpg HTTP/1.1
Host: images.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: image/jpeg
content-length: 149920
x-amz-id-2: 05R4J0TbTOISxJjqSXbrwblMQD4syDojT6aBY6+E50ApGWSO74As+pIXgVfOfdRsoh5w9+sQAAA=
x-amz-request-id: KN4DVH289DEAQJ30
last-modified: Fri, 30 Mar 2018 10:50:30 GMT
etag: "8b3929e63d21de3c8ba5b22250919314"
x-amz-version-id: null
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cnWedyJHfCzMQZn9%2FOmK%2FTTSFddP0RpuyUDabolLu55lfn3m5AlWQUxrCpmcN0Dxw1Sn6EztIVT%2Fv3BA59ewD3tMlKBV9aZHCs3D0roWnevrC%2Fqtc%2FeifpKq5vKX%2FMrxR5Qv1CccewHf3kjYzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38bff48712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scripts.assets-landingi.com/lightboxes/lightbox-render.js?v=1701772489
200 OK 5.7 kB URL GET HTTP/2 scripts.assets-landingi.com/lightboxes/lightbox-render.js?v=1701772489
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (14246)
Hash 69ade48097846ea794898b2ff4c8001b
63ee74f29f9fd92555dbd8ba8cea57796d965892
f62a7337b2af077e515c4c7c5a391428720243dfdb77d64703f03f8e4a8672cc
GET /lightboxes/lightbox-render.js?v=1701772489 HTTP/1.1
Host: scripts.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/javascript
x-amz-id-2: EiRUDgpvYuLo0FzxhbAnIvybgIPidfRbA5zBEaoL96P6d7U6u0d36Zr5segi+aHTGg3m3mGXUns=
x-amz-request-id: KN4DMA6RJ2NJYHYH
last-modified: Tue, 07 Feb 2023 08:14:53 GMT
etag: W/"69ade48097846ea794898b2ff4c8001b"
x-amz-server-side-encryption: AES256
x-amz-version-id: NATdxgybph4Nrnmil2Qo4bKGgPqvmN7B
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zgi1EwQ7fAC83hmn55y99btDO%2BadKK9esmLUcmY%2Fn8%2B%2B1UirCkC0qbYh%2FvfJK2nn88ddr3ID444xsNQJAoqdaIq0oUuRL4Byhnw2cMiFQXezdabLaCFOLMWP2tMRO8QAEd8zTDoGaRfucdUvHCQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c5fbb712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
popups.landingi.com/api/v3/landing/install-code?apikey=4af4a39c-6dbc-4be6-91c3-93a716d939ee&landing=c33cce4034a0b5a87f57
200 OK 48 kB URL GET HTTP/2 popups.landingi.com/api/v3/landing/install-code?apikey=4af4a39c-6dbc-4be6-91c3-93a716d939ee&landing=c33cce4034a0b5a87f57
IP
Certificate IssuerUnizeto Technologies S.A.
Subject*.landingi.com
Fingerprint43:6E:CE:6D:51:14:D8:2E:99:19:7F:89:DF:8D:A0:B7:57:72:6B:EE
ValidityWed, 16 Aug 2023 09:07:53 GMT - Thu, 15 Aug 2024 09:07:52 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash d5b2af8bb908a73814f0b31472a80805
4b298a80d55cc70681c2c03dbc35cd496f4378e6
8cbd6775f5d52e0865e77e2ccb8ebf93feee7f39b5d586a21e090a7f7950e3be
GET /api/v3/landing/install-code?apikey=4af4a39c-6dbc-4be6-91c3-93a716d939ee&landing=c33cce4034a0b5a87f57 HTTP/1.1
Host: popups.landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: text/javascript; charset=UTF-8
server: nginx
vary: Accept-Encoding
x-powered-by: PHP/7.4.3
cache-control: no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://217.61.97.224
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:58 GMT
expires: Fri, 29 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 452032
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Hash dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://217.61.97.224
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:36:49 GMT
expires: Thu, 28 Nov 2024 21:36:49 GMT
cache-control: public, max-age=31536000
age: 478681
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Hash dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://217.61.97.224
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:36:49 GMT
expires: Thu, 28 Nov 2024 21:36:49 GMT
cache-control: public, max-age=31536000
age: 478681
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
scripts.assets-landingi.com/landend/160721/files.js
200 OK 105 kB URL GET HTTP/2 scripts.assets-landingi.com/landend/160721/files.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (784), with no line terminators
Size 105 kB (104879 bytes)
Hash e48522cea4e18d818a7222d782aa9932
97c502a3d845ac1a1ca829bd8d898c4eb297e429
46bad547480f9d36f1fae5c9e78baa33c70341dbe827afca68a5202c2cb2f7f3
GET /landend/160721/files.js HTTP/1.1
Host: scripts.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"e48522cea4e18d818a7222d782aa9932"
last-modified: Fri, 16 Jul 2021 09:36:11 GMT
x-amz-id-2: OCOhmNgzuHoYGkG+vzFT1utmyblxPS8xumZaq0RDnejxfQA1FVWq+ThuvbI9peMcUJ6/7hfBXYY=
x-amz-request-id: 1CWD3FCSASZ8E3C2
x-amz-version-id: 5RfD6jWYtaqjAriJk5H8sq5paP.4RgmJ
cache-control: max-age=31536000
cf-cache-status: HIT
age: 274
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sebp77VYFluoPUWZL20rHTgfC%2FHnkVXFVSuluUt11YGtKJtb5NdDgwVyb9mssl%2BCpgLK9OJqY%2F2ZSNRN4G3YeF%2F0u4CrVXw%2BpgA06KYMFivyYRNmfsbnORz2fA%2B8td5hEc4UlA%2F4zeFbEuFdbl8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c2f8d712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
old.assets-landingi.com/assets/js/landend/260820/validation.js
200 OK 65 kB URL GET HTTP/2 old.assets-landingi.com/assets/js/landend/260820/validation.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (2583), with no line terminators
Hash 04525baaa773e84bc814af97fe0a0798
6cfefd41a3d89af5307505878f13870ff2dcbc4c
222b64d1120f080670366757751a6e01b1a06c4e3b2f04c6fc21b0fd37b8007b
GET /assets/js/landend/260820/validation.js HTTP/1.1
Host: old.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"04525baaa773e84bc814af97fe0a0798"
last-modified: Wed, 26 Aug 2020 09:55:21 GMT
x-amz-id-2: 25xS46OPt/L+hj4qrfOucOML1JnKVQmj6WmuWj6Z0M3+GoBdKOcBwMNS5b3KuSXG3hGpNOFauH4=
x-amz-request-id: C9V6RSGW2K3T4S81
cache-control: max-age=31536000
cf-cache-status: HIT
age: 274
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B84E%2FhUYEWB1LRPnSTkMhXGx0hGhz%2FWCmhzDIRJEHbdCc2T0tMmahksWQ2Tvha6%2Fm1H9yf%2BgKKYLFrYAPG4FtIReN0ThwVDrkUO%2FXSXGTxCi7PIgijGYbfzi3C8g606uvWOoszfrhupz%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c4fb1712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
217.61.97.224/favicon.ico
404 Not Found 275 B URL GET HTTP/1.1 217.61.97.224/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 81eb13be0ac7210dbe54983fff6d70e6
d268f285d624294f51d3fee4058437ff4368fb2b
c143d66c666d8139e432a3dcfcb9dddeb92dc17ff30cd3cf27baa7495d82c8a7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: 217.61.97.224
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Cookie: tid=c33cce4034a0b5a87f57
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Tue, 05 Dec 2023 10:34:50 GMT
Server: Apache/2.4.56 (Debian)
Content-Length: 275
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
lightboxes.landingi.com/api/v1/render?apikey=4af4a39c-6dbc-4be6-91c3-93a716d939ee&landing_id=474860&aaf=/
200 OK 2 B URL GET HTTP/2 lightboxes.landingi.com/api/v1/render?apikey=4af4a39c-6dbc-4be6-91c3-93a716d939ee&landing_id=474860&aaf=/
IP
Certificate IssuerUnizeto Technologies S.A.
Subject*.landingi.com
Fingerprint43:6E:CE:6D:51:14:D8:2E:99:19:7F:89:DF:8D:A0:B7:57:72:6B:EE
ValidityWed, 16 Aug 2023 09:07:53 GMT - Thu, 15 Aug 2024 09:07:52 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /api/v1/render?apikey=4af4a39c-6dbc-4be6-91c3-93a716d939ee&landing_id=474860&aaf=/ HTTP/1.1
Host: lightboxes.landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://217.61.97.224
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:50 GMT
content-type: application/json
server: nginx
x-powered-by: PHP/7.4.3
access-control-allow-origin: *
cache-control: no-cache, private
X-Firefox-Spdy: h2
old.assets-landingi.com/bootstrap/js/landend.bootstrap.min.js
200 OK 5.0 kB URL GET HTTP/2 old.assets-landingi.com/bootstrap/js/landend.bootstrap.min.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (5094), with no line terminators
Hash 12c7f02faa98f484e414360f7d31e002
8b27265eb874cd0a4089a22a8e8d38a2bec04660
3ff6781f5afaa89c9e52a6df9765cc07d608473088f9455597c271e0c3a3f6c4
GET /bootstrap/js/landend.bootstrap.min.js HTTP/1.1
Host: old.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/x-javascript
x-amz-id-2: IPir+GV+6KPsfCa2drbwJrxemstjRbiHYDDmvalDZ2RkwZUbmEcsrviRLpJxvrVvUJHP5czz1nk0PfGkl4NDEQ==
x-amz-request-id: BJNA383CR0Q5QBXV
last-modified: Mon, 04 Jul 2016 09:10:55 GMT
etag: W/"caae3dfb363221461dc59ab8dca8497b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 274
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OM3VJjb11UsW7pk6tisUPzhEwXkDqGv6j8zWZwDd7CsrBq6YgwmU4zVeO3SqfymPn7%2FwvCdXHL1ifJsdBOTyFLuWtiPYhfKIYU%2BUsVEbbu00S%2FdVKyPrMQ%2BB0pNnTNo9CVkuEsr3TB%2BlZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c1f74712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
old.assets-landingi.com/assets/js/dist/landend/300123/landend.js
200 OK 8.1 kB URL GET HTTP/2 old.assets-landingi.com/assets/js/dist/landend/300123/landend.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (8350), with no line terminators
Hash 99abe8b685f0c79e60decd58c399f0d7
196865a5f1bb23779d210b48063c7888ac593009
de647c0b9efb80bc109ba1bf0be6b38eacb5e17a61ecb6a7fe73372d0cd97c53
GET /assets/js/dist/landend/300123/landend.js HTTP/1.1
Host: old.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"097871546aae1cb5ff3acd53967ffe5a"
last-modified: Mon, 30 Jan 2023 13:28:57 GMT
x-amz-id-2: bHqvBP+qloWJYGp3ksGq5WE8f5g93rDyFL8Wp0/W8q1KFdfIUn/i/qdQS+OosuKUDit0hX4jkuY=
x-amz-request-id: 8D5DRET3KM3ZVZHV
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
cf-cache-status: HIT
age: 275
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lvIaWv3t90Sp%2Bkp8Mlo5MZ4kDBMUxk13eFa1mWZwxXtRW97IxuwUwWJBZCbC9It5GO%2BYhEcLn6%2FFdmPQuFRprG19vd%2BP1cy3RtYpOBYLAh16c3QLPjoM1M6jRgeDYQUs8lUBXL8xUpeJWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c0f5b712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scripts.assets-landingi.com/landend/250423/landend.min.js
200 OK 16 kB URL GET HTTP/2 scripts.assets-landingi.com/landend/250423/landend.min.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (2330)
Hash 2f549fbc642f1ae9f4d69ed73934a5c2
96367de188be3ca252fc7f8b09d5a63e65892cd5
76471bf2d72c7add773294aa348dd9e6185e05adb1129936e15d460e79100130
GET /landend/250423/landend.min.js HTTP/1.1
Host: scripts.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/javascript
x-amz-id-2: yU1WWy3wmiFMtfqIifBH1Z7W8+u/Hz+q972KElsbUE4qviRY+yrgleZ6AVYV4L1Kr16hzI+0/CY=
x-amz-request-id: X75PWZMPJDYX7ADK
last-modified: Wed, 26 Apr 2023 07:49:01 GMT
etag: W/"2f549fbc642f1ae9f4d69ed73934a5c2"
x-amz-server-side-encryption: AES256
x-amz-version-id: eBtQ90OxNqQpy6AhwSo5ssSLvWBdbrjv
cache-control: max-age=31536000
cf-cache-status: HIT
age: 275
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xQo6OEUnhrOebl%2FDtriwzCYByhL2KzSu%2BIsVitfjnsHtcytNGXurji6u9e1hSkUZZqAiJa%2B3H0f6tlbV0gsjz7V6Da1jBm0i5uOlZaj9bGnLP5z7ZhWYyQKjjSpBpJRNR%2Fp%2FLtW5ZjXTx69g0ew%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c2f84712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,300italic,400,400italic,700,700italic&subset=latin,latin-ext&display=swap
200 OK 18 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,300italic,400,400italic,700,700italic&subset=latin,latin-ext&display=swap
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash 6de27337e0d385b599c0377a44504ad9
da9847e0f7fac6cd25b520992b62d32d36e4549b
7a3559fa8d164e7279677a90638bd6e7bfae41b1dcbb359163a3854f70ee16ba
GET /css?family=Open+Sans:300,300italic,400,400italic,700,700italic&subset=latin,latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 10:34:49 GMT
date: Tue, 05 Dec 2023 10:34:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.landingi.com/visit/474860
200 OK 0 B URL OPTIONS HTTP/2 stats.landingi.com/visit/474860
IP
Certificate IssuerUnizeto Technologies S.A.
Subject*.landingi.com
Fingerprint43:6E:CE:6D:51:14:D8:2E:99:19:7F:89:DF:8D:A0:B7:57:72:6B:EE
ValidityWed, 16 Aug 2023 09:07:53 GMT - Thu, 15 Aug 2024 09:07:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /visit/474860 HTTP/1.1
Host: stats.landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://217.61.97.224/
Origin: http://217.61.97.224
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:50 GMT
content-type: text/html; charset=UTF-8
server: nginx
x-powered-by: PHP/8.1.2-1ubuntu2.10
cache-control: no-cache, private
vary: Origin
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 3600
access-control-allow-origin: http://217.61.97.224
X-Firefox-Spdy: h2
old.assets-landingi.com/assets/js/landend/anchors/v02.js
200 OK 843 B URL GET HTTP/2 old.assets-landingi.com/assets/js/landend/anchors/v02.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (849), with no line terminators
Hash 870f58079509a65abb1d20977f34c823
9082025593d35bc6854aaf63c09026c87af09864
c4799ac05edd5b0da087f7d9e6ae8fe5bbea19585041b0425892308d041620c3
GET /assets/js/landend/anchors/v02.js HTTP/1.1
Host: old.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1241
etag: W/"30d9f32d29a7f24ae5a2b999323aa424"
last-modified: Tue, 18 Sep 2018 10:58:34 GMT
x-amz-id-2: eiMqailJ6iyMRxXbeEAcjrkDg4ijq+w/ROTHF8dVpZsn/JmBgMEcYPOzE3Qr7kHqdNLSFhWCfbOHWNlamHa32g==
x-amz-request-id: K7RDRTQMAHR5MXP5
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4133
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jGsT6CcMKNGPzC7KLp0CEPenro%2FrGHYUMmzxGUOf1GtIxxhmgh6TzbcOpOYLs%2FcosnqbO7juBs%2FLy7SKh13KHQ5qyriwIWc3THW6FvhLE5%2BxXLkX2d0CnUmu80c42sDgizcnoMbevcThbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c6fd0712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
images.assets-landingi.com/Ir0UcsFa/13_02.jpg
200 OK 104 kB URL GET HTTP/3 images.assets-landingi.com/Ir0UcsFa/13_02.jpg
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x844, components 3\012- data
Size 104 kB (104489 bytes)
Hash 416507ff366d72de56e4fb74944983e9
a8c8d9d27f249995ba2afcd0874c3c5fdf09ff83
cf88aa86f0d3915abfac636c863f6485b0242174c301978510c945ab5d8bd618
GET /Ir0UcsFa/13_02.jpg HTTP/1.1
Host: images.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://styles.assets-landingi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 10:34:50 GMT
content-type: image/jpeg
content-length: 104489
x-amz-id-2: OPLkuxWU0h6f03bcksDv5rUPJYZo5ddopJgXVVlmviZag1+IQ7l5MUf2oLxmX33uKMrd2uM+PCc=
x-amz-request-id: 1AH8KB13KZZQFB63
last-modified: Fri, 30 Mar 2018 10:50:30 GMT
etag: "416507ff366d72de56e4fb74944983e9"
x-amz-version-id: null
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9vrARqlStebpSLsdJjC%2FZD3uHemlWSJlmnF1a26U6kFxLv5OYSqzE06xiIDm0HEHUdI7q9JS3PVVBnmfpZ6%2BLjN7hZ1XJbk8sFG%2BX4PF039jSR9%2FTN82E610gNR5irxuHHK4tdB2SI2OHExnMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba3909ee1712e-OSL
alt-svc: h3=":443"; ma=86400
styles.assets-landingi.com/aadaa24e/base.css
200 OK 65 kB URL GET HTTP/2 styles.assets-landingi.com/aadaa24e/base.css
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (804)
Hash 169fb06aa7cb1142d29401cf8f36b3a6
2bda9ba866d638660deedebf4052d4ce096dd545
4893ce8a2e6698abb4e041c07fc9caadb2712c1591e1acaf739124b720a4d565
GET /aadaa24e/base.css HTTP/1.1
Host: styles.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: text/css
x-amz-id-2: 15FGN/bmTJAaz0f4kLAOmjo6ZnoAzf5YlJGeDjhIoBtkN7UyDwp8yxU+LKfA7sM0zoNSgjwX7zE=
x-amz-request-id: KN4E8GYH55W76P09
last-modified: Wed, 10 Oct 2018 09:02:29 GMT
etag: W/"169fb06aa7cb1142d29401cf8f36b3a6"
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sWmB5zoATidsiIIj9hpePxHYtaPlgvctKHX%2BsByartVGpklZ3YI9dtxdUeDpzbTlaKw%2Bf8w42FoP7NHhvdF0qaodd%2Bg7Tui4cejYRcZjy4cj1zWHMPiuy5VonDx3LrBVZvEgKIQj%2B8hlusoi0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38bff50712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
old.assets-landingi.com/assets/vendor/bootstrap/2890/js/bootstrap-tooltips.min.js
200 OK 10 kB URL GET HTTP/2 old.assets-landingi.com/assets/vendor/bootstrap/2890/js/bootstrap-tooltips.min.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (10060)
Hash 59ade44562288bf4914d3f03cda35ed1
66c8b308ba7e09ae6e9e9a10ba6f10689b27aaf0
f69a6475b6c43417f2d66fd2db86fe91e0b61bb82d452dd7797ba1e90dea10a6
GET /assets/vendor/bootstrap/2890/js/bootstrap-tooltips.min.js HTTP/1.1
Host: old.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/x-javascript
x-amz-id-2: QjXToLwciz3H6hLItICrbPg73OoYMbKtonPVTvmghV8/H/YWd4upUHp07pon/RVZlrPRwq7n7CHwxNIRye4HCQ==
x-amz-request-id: QNM6TFT1DYAG0B6T
last-modified: Tue, 07 Feb 2017 14:45:42 GMT
etag: W/"59ade44562288bf4914d3f03cda35ed1"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6037
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6uKIaxV2C333oMWCfGmrXU67XPzryK3%2FXrNQZS%2Bj8trem5cQWiPVmZg8oVoRd%2F%2BqAp4v04tckRZVfIRWn%2FB%2B9iqOOpqurWODgtb271TKCbvMDtweilmbxRJFtNl5Z8hCINbuq9dLnDvFrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c0f53712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scripts.assets-landingi.com/webview/webview.1.0.2.js
200 OK 1.2 kB URL GET HTTP/2 scripts.assets-landingi.com/webview/webview.1.0.2.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (1182), with no line terminators
Hash 536b37b2fc467488fc32db6958c99632
09a87f3da541e1a886f759f9215c6fbab21ad895
3ca09d7017b9e4cfff55b7171ccafcc42be1ad9b09ff0672b786275425b41b48
GET /webview/webview.1.0.2.js HTTP/1.1
Host: scripts.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1165
etag: W/"fbaf9595c8a8597001ae91e065273844"
last-modified: Thu, 28 Sep 2023 11:29:50 GMT
x-amz-id-2: N3aRiF3xYaUta9DCF7feHrFMnwZrIKkqnPV3UXMYMSOVyu4c+gX8FKMIFGC3PFTBafpgkglD77E=
x-amz-request-id: VGGCDQBDBVA7PHZE
x-amz-server-side-encryption: AES256
x-amz-version-id: lo5KVTpkoLFNCaf2.3GQigsR3ZeISRAx
cache-control: max-age=31536000
cf-cache-status: HIT
age: 274
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3eaO5qpBPQQK0qZFpJWkgRKy12FvKYrWmfBgl7v1TRisk9x4CmgPEE7EsebQhXFz6eZzM53kfccHm0NVzyze7Xw3Uvh1FVcGX4mfdaXVCb8cWQHLGyBTS0RkawW70bfIW7E6tTALoRpERlgxRQ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c3f9c712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
tagmanager.landingi.io/account/5ede35de-5e7b-11e7-8b4a-02cbf204825c
200 OK 2 B URL GET HTTP/2 tagmanager.landingi.io/account/5ede35de-5e7b-11e7-8b4a-02cbf204825c
IP
Certificate IssuerAmazon
Subjecttagmanager.landingi.io
Fingerprint5B:9F:64:DD:48:E3:78:C9:0E:C6:BE:33:49:0B:BC:92:13:A2:FA:2A
ValidityMon, 31 Jul 2023 00:00:00 GMT - Wed, 28 Aug 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash c77974d03a46c1b6ce63ba45cc7df478
30fa5b2f8626174cc610e5288e2e95d7b6b9d97d
74eece59a3bfc010cf1681602d70864d05e31097224a5da3637e70bc6ebecc7e
GET /account/5ede35de-5e7b-11e7-8b4a-02cbf204825c HTTP/1.1
Host: tagmanager.landingi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://217.61.97.224/
Origin: http://217.61.97.224
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 2
date: Mon, 04 Dec 2023 12:53:16 GMT
x-amzn-requestid: cc1c31d0-5100-42fd-a63b-352b1ae8c2df
access-control-allow-origin: *
access-control-allow-headers: Content-Type
x-amz-apigw-id: PazFfGIsDoEEAQA=
access-control-allow-methods: GET
x-amzn-trace-id: Root=1-656dcbbc-732ecfda4088565c55458e3d
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: BLu-HLFt0cy61K57TrpXwA94JAfilLAmbA03_0dJWb_TByLQbNuukA==
age: 78094
X-Firefox-Spdy: h2
stats.landingi.com/visit/474860
200 OK 13 B URL POST HTTP/2 stats.landingi.com/visit/474860
IP
Certificate IssuerUnizeto Technologies S.A.
Subject*.landingi.com
Fingerprint43:6E:CE:6D:51:14:D8:2E:99:19:7F:89:DF:8D:A0:B7:57:72:6B:EE
ValidityWed, 16 Aug 2023 09:07:53 GMT - Thu, 15 Aug 2024 09:07:52 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ceff3e944a1ff58f6efc40c7de9c2e7b
f4fa2ac3b3c4ebfb0c8a473870a91f03bd3d1b2b
af4b8365b770b8dfb29718b527388d8db965c4aca48aa7eec91418c703c272cf
POST /visit/474860 HTTP/1.1
Host: stats.landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://217.61.97.224/
Content-Type: application/json;charset=UTF-8
Content-Length: 291
Origin: http://217.61.97.224
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:50 GMT
content-type: application/json
server: nginx
x-powered-by: PHP/8.1.2-1ubuntu2.10
cache-control: no-cache, private
access-control-allow-origin: http://217.61.97.224
X-Firefox-Spdy: h2
old.assets-landingi.com/assets/js/vendor/jquery-form/jquery.form.min.js
200 OK 17 kB URL GET HTTP/2 old.assets-landingi.com/assets/js/vendor/jquery-form/jquery.form.min.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (16246)
Hash 9e3333ab37cbd7849dc647669aa0ca12
6f676b2df2717b03559df71c149ac55b9ddd74ad
d8f8ebd4e96964c63aa9eb0933af2ddafdfdb7e94c2efc70a5af109518c9ae80
GET /assets/js/vendor/jquery-form/jquery.form.min.js HTTP/1.1
Host: old.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/javascript
x-amz-id-2: GeXQrCaOT7j8hRTBQi7a1ypS1BzkERxCEFoL0yoScun7EYvUQg+U+tdx+JmNOTIdC3eLghIYTLwfMiZOoF8hkw==
x-amz-request-id: ZXTN7C203Q41AT61
last-modified: Tue, 19 Dec 2017 12:43:57 GMT
etag: W/"9e3333ab37cbd7849dc647669aa0ca12"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 274
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q%2Fo620n8A%2Ffd%2F3EDtAm0Mwkb%2FS%2FRafLXJoCQT3ssEzHqmmQbxznj72wTo%2F4vMy5vYE2wax%2FS0eSW47dLwFdf%2Fa%2B3TDGJEmfGFYiST%2FTQlB2AFu67oY6HtjozkqLICflUyCMakXrJLJ6mSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c4fb2712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
styles.assets-landingi.com/assets/font-awesome/fontawesome-webfont.woff2?v=4.4.0
200 OK 64 kB URL GET HTTP/3 styles.assets-landingi.com/assets/font-awesome/fontawesome-webfont.woff2?v=4.4.0
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 64464, version 4.262\012- data
Hash 4b5a84aaf1c9485e060c503a0ff8cadb
574ea2698c03ae9477db2ea3baf460ee32f1a7ea
3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019
GET /assets/font-awesome/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1
Host: styles.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://217.61.97.224
DNT: 1
Connection: keep-alive
Referer: https://styles.assets-landingi.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 10:34:50 GMT
content-type: application/octet-stream
content-length: 64464
x-amz-id-2: ILD58OBizPAHURTQdBLYkX1bZVeJ4HTnIiB+qTJ2Rkzi5tUwpk/jtuGmMSAUGuwTnRcVbqJOkmY=
x-amz-request-id: XBV9N7PNZ4KVS2V1
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 24 Aug 2017 17:41:34 GMT
etag: "4b5a84aaf1c9485e060c503a0ff8cadb"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c%2BUNC8gP1sLzQA6%2FCI5tUs9lWGuLte%2F2dlf%2B4ow%2F39osfQXbESact87Nkd%2Fraa9utYCVhNMqc8V0JgfD6Vadal%2BRekuP4L%2FqLNs9X%2FafinfW%2FbxVO255Zk0TyUw736OejlEufclDWXxeuwMPgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830ba390aef1712e-OSL
alt-svc: h3=":443"; ma=86400
styles.assets-landingi.com/assets/css/2.14-landend-base.css
200 OK 73 kB URL GET HTTP/2 styles.assets-landingi.com/assets/css/2.14-landend-base.css
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (44747)
Hash 598830b2b24067dd816773546ee2990c
b2979c8328ab50bcdc25e93f60ef030b214b7918
1a9478dc265e8889151ba37d3fa17b14d6bc5921d37c4b084179d0ede6ce9fee
GET /assets/css/2.14-landend-base.css HTTP/1.1
Host: styles.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=72731
etag: W/"4bd6c0093cdc4a30726bdd4061b1b55c"
last-modified: Wed, 20 Oct 2021 12:28:03 GMT
x-amz-id-2: q9gWUUeZPavAedvlk6m9JOSQhFTXqZUEu+V8SF1emUW/XSzgRx6o53pIAgpemGrzSwx++pFr1az1paNH4h6yQQ==
x-amz-request-id: 0EEZHDPT85M200HH
cache-control: max-age=31536000
cf-cache-status: HIT
age: 275
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lN5zCkQoXqCVhfm2RLXwd1dRWo8tKRb5IcZAHsE3fwgO0HhJ6OAlpuyYJvx7nBU%2FX5grfpbnRmKEBCYGksMnYkt9fi5sKycoZYlwcSXXHb9zEOndYg1%2FA1wrGLjAlpWwgyzZGxaf%2BSXd2%2BEH0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38bff4e712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scripts.assets-landingi.com/lightboxes/lightbox-handler.min.js?v=20200804
200 OK 2.3 kB URL GET HTTP/2 scripts.assets-landingi.com/lightboxes/lightbox-handler.min.js?v=20200804
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (2297), with no line terminators
Hash c9a68bb3cdf106c20cb4d732e05c95f3
29400c361c3695ef9610b61c5b07f73e13e9a263
a05bca9495e50d2610378334f561bbc9e1b7872d90912d6a08ca9ead225df4d2
GET /lightboxes/lightbox-handler.min.js?v=20200804 HTTP/1.1
Host: scripts.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/javascript
x-amz-id-2: IxPRvX6kO1mENu/c2JoJ863KvoVygcUXMWirVqhd6ZnUuEReLdXJzYDy9muHijRWDFTebKUtMEI=
x-amz-request-id: 40VF4ZCVECK9ZBVE
last-modified: Tue, 04 Aug 2020 10:21:31 GMT
etag: W/"0da80230472d5972b885b057cedb5ddb"
x-amz-version-id: dM6LPWa8tPf3i_JzZho15uaJtAP.k8HP
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=joQt99WYR58LHpWLHJAXJH1Co0NZv6r93ZHcRQClnjHt8xJvtDyvTVxKlEopM1S%2FQ%2BbklfuFAwW0iNveZmVzeOHi6TiiiTIvxpSLQuPboVmVqdI8aq8rTNUTKQhPhMBm3HQWePjF5LQHLqwnHWI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c5fc6712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scripts.assets-landingi.com/landend/tooltips.js
200 OK 296 B URL GET HTTP/2 scripts.assets-landingi.com/landend/tooltips.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectassets-landingi.com
Fingerprint55:60:A4:19:4F:7D:8D:17:29:BD:AE:C8:13:C3:E7:87:17:7C:A0:4B
ValidityTue, 07 Nov 2023 15:31:02 GMT - Mon, 05 Feb 2024 15:31:01 GMT
File type ASCII text, with very long lines (304), with no line terminators
Hash 7c4d3d134e3268795b58913ce91d1a6c
2749a339ebf5b47e9829ca1bafc9a253de1145ee
5bf7c6ff40ed70c7444522f2cbbcebc6edf6fb533dfed93a8b76a568d62f18c3
GET /landend/tooltips.js HTTP/1.1
Host: scripts.assets-landingi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://217.61.97.224/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 10:34:49 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"1a4364dc29ff9e32907d436eada95593"
last-modified: Wed, 08 Apr 2020 11:04:22 GMT
x-amz-id-2: d0LXuT19v+1ArCO4PK+XtOmCcd7sVZAOUaruQXPOT8w0x1r83zettG4HiMMzHvBsiczyShHZx78=
x-amz-request-id: 948D22DXKKTCJRDQ
x-amz-version-id: null
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6037
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C%2FqSNx0sbqwkQ9NJCEFmsYVXK6UAuU936%2BqKSkLK%2FJkpiJzwTcPn1fQhEy9QCoqMdAEbhlPh%2FDTsO0wR4pGuFmSSytdkkF6Yaz1Okm%2FXD3dMR4AQgSauFdxAlm1C4q7Nby8VDaDxwBVT%2FYZdBXs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830ba38c2f89712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
217.61.97.224
188.114.97.1
34.246.41.88
54.230.111.105
23.36.76.122