urlquery - report: kaygater.online/ubfda4kobo

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
ocsp.digicert.com (2)	86	2012-05-21 07:02:23 UTC	2020-05-02 20:58:10 UTC	93.184.220.29
cdn-dimi.akamaized.net (35)	0	No data	No data	184.31.15.107	Domain (akamaized.net) ranked at: 280
fonts.googleapis.com (2)	8877	2013-06-10 20:14:26 UTC	2022-11-27 20:00:35 UTC	142.250.74.10
img-getpocket.cdn.mozilla.net (6)	1631	2018-06-21 23:36:00 UTC	2020-02-19 04:43:25 UTC	34.120.237.76
kaygater.online (2)	0	2022-11-27 20:41:43 UTC	2022-11-27 20:41:43 UTC	65.109.26.202	Unknown ranking
hittmeel.co.uk (1)	0	2022-09-27 12:40:44 UTC	2022-11-27 16:28:51 UTC	23.106.66.242	Unknown ranking
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2020-05-03 10:09:39 UTC	52.35.167.249
www.youtube.com (1)	90	2013-05-30 23:21:49 UTC	2020-03-26 16:38:49 UTC	216.58.207.238
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-11-27 05:29:56 UTC	34.102.187.140
content-signature-2.cdn.mozilla.net (1)	1152	No data	No data	34.160.144.191
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-11-27 05:29:57 UTC	34.117.237.239
fonts.gstatic.com (3)	0	2014-09-09 00:40:21 UTC	2022-11-27 20:01:14 UTC	216.58.207.195	Domain (gstatic.com) ranked at: 540
www.gstatic.com (2)	0	2016-07-26 09:37:06 UTC	2022-11-27 17:16:20 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
ddnzje.prodlgiousdates.com (5)	0	No data	No data	52.19.101.114	Unknown ranking
r3.o.lencr.org (6)	344	No data	No data	23.36.77.32
ocsp.pki.goog (9)	175	2018-07-01 06:43:07 UTC	2020-05-02 20:58:16 UTC	142.250.74.3

Scan Date	Severity	Indicator	Comment
2022-11-27	2	ddnzje.prodlgiousdates.com/ortb	Phishing
2022-11-27	2	ddnzje.prodlgiousdates.com/js/pushjs/1.0.0/utils.js	Phishing
2022-11-27	2	ddnzje.prodlgiousdates.com/js/pushjs/1.0.0/subscriber.js	Phishing
2022-11-27	2	ddnzje.prodlgiousdates.com/js/service-worker.js	Phishing

Date	UQ / IDS / BL	URL	IP
2022-12-24 09:42:47 +0000	0 - 0 - 5	filmmart.xyz/	65.109.26.202
2022-12-16 07:05:48 +0000	0 - 0 - 10	toptrendings.xyz/	65.109.26.202
2022-11-27 22:12:09 +0000	0 - 0 - 4	kaygater.online/vz60d2zvn4	65.109.26.202
2022-11-27 21:59:38 +0000	0 - 0 - 4	kaygater.online/ubfda4kobo	65.109.26.202
2022-11-26 10:03:33 +0000	0 - 0 - 2	doinondinbazar.com/	65.109.26.202

Date	UQ / IDS / BL	URL	IP
2023-02-07 07:57:48 +0000	0 - 0 - 28	nifamesa.gr/	5.9.8.16
2023-02-07 07:53:48 +0000	0 - 3 - 1	www.animeflv.one/	167.235.158.104
2023-02-07 07:38:31 +0000	0 - 0 - 1	energysavingledlighting.com/mailwizz/campaign (...)	95.217.37.113
2023-02-07 07:36:29 +0000	0 - 0 - 3	energysavingledlighting.com/mailwizz/campaign (...)	95.217.37.113
2023-02-07 07:26:04 +0000	0 - 2 - 0	joxi.ru/E2p5XWQHv5MMPA	78.47.21.152

Date	UQ / IDS / BL	URL	IP
2022-11-27 22:12:09 +0000	0 - 0 - 4	kaygater.online/vz60d2zvn4	65.109.26.202
2022-11-27 21:59:38 +0000	0 - 0 - 4	kaygater.online/ubfda4kobo	65.109.26.202

Date	UQ / IDS / BL	URL	IP
2022-11-29 10:58:48 +0000	0 - 0 - 4	l.wl.co/l?u=h7mhl.app.link/DkoTp2RUgvb	31.13.72.8
2022-11-29 04:16:41 +0000	0 - 0 - 4	jouwbedrijf.eu/	104.21.54.180
2022-11-29 01:31:27 +0000	0 - 0 - 1	deoseasr.org/dau/news/news/news/1513260978-DE (...)	67.227.226.240
2022-11-28 09:16:35 +0000	0 - 0 - 4	regenbogen-karriere.de/tutorial/26058/28246739.php	172.67.212.221
2022-11-27 22:12:09 +0000	0 - 0 - 4	kaygater.online/vz60d2zvn4	65.109.26.202

Request	Response
GET /ubfda4kobo HTTP/1.1 Host: kaygater.online User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: kaygater.online/ubfda4kobo FQDN: kaygater.online IP: 65.109.26.202 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 65.109.26.202 HTTP/1.1 302 Found content-type: text/html; charset=UTF-8 Connection: Keep-Alive Keep-Alive: timeout=5, max=100 x-powered-by: PHP/7.4.33 set-cookie: PHPSESSID=738adb6ed75167e77fcc01bb7351cf75; path=/ expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache location: https://www.youtube.com/redirect?event=comments&redir_token=QUFFLUhqbU9ZZlNwV0R1NlctalpnMzdHOU8ya2w0ZG5oQXxBQ3Jtc0ttX0habVgxMlJNOFlLZUhnck04bUl3RFVXeHRZc3k2Nmd6VmMxbFZiRWZvREF1bDlKU0V3U2I5RnU4SjZ6cmRfdlp1RW9GMGgtaXYwUUFvR0pWeTNUYUpySnBCY3B3TUduWU5RWWNwMEN1RmxUUWJsTQ&q=http%3A%2F%2Fkaygater.online%2Fc%2Fubfda4kobo&html_redirect=1 content-length: 0 date: Sun, 27 Nov 2022 21:59:26 GMT server: LiteSpeed --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1" Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12749 Expires: Mon, 28 Nov 2022 01:31:55 GMT Date: Sun, 27 Nov 2022 21:59:26 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: cdbad2434b7d127a4fc769807a9dc3e7 Sha1: fa98cd9fc2309ab4423f33f683d17bdb17d76713 Sha256: 560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5812 Cache-Control: 'max-age=158059' Date: Sun, 27 Nov 2022 21:59:27 GMT Last-Modified: Sun, 27 Nov 2022 20:22:35 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 64b2a23eab6e5ae8c010ec7242be930c Sha1: 0673e4385ba01a5a245711bab96cafc34f765793 Sha256: 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11567 Expires: Mon, 28 Nov 2022 01:12:14 GMT Date: Sun, 27 Nov 2022 21:59:27 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 3b56944f0e5716fd4fad2ec18994d4be Sha1: 61cafa4de31ba960d1145ec37272f6f6b6944e0c Sha256: 4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sun, 27 Nov 2022 21:17:42 GMT cache-control: public,max-age=3600 age: 2505 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 4d7e4eed097b9c4e5d509419f1cfc85a Sha1: 290bb3d428a7c6330e2e3d73a952b16f820896c8 Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: q/rj1f+3YEnIPkB/eqtbIy5/6Idgu9spLcCkA5Qcg32pMoK4DaEVtflAK1eUBSX8GB5CJrQVrIk= x-amz-request-id: FH7P99Z9RQ4FHKQK content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sun, 27 Nov 2022 21:41:48 GMT age: 1059 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 21:59:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 88e42375d2172305f819b892225cf877 Sha1: 674324641f82700172e72fe259ee2241361e2ea1 Sha256: 6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Sun, 27 Nov 2022 21:59:27 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 21:59:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 88e42375d2172305f819b892225cf877 Sha1: 674324641f82700172e72fe259ee2241361e2ea1 Sha256: 6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
GET /c/ubfda4kobo HTTP/1.1 Host: kaygater.online User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Cookie: PHPSESSID=738adb6ed75167e77fcc01bb7351cf75 Upgrade-Insecure-Requests: 1	URL: kaygater.online/c/ubfda4kobo FQDN: kaygater.online IP: 65.109.26.202 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 65.109.26.202 HTTP/1.1 302 Found content-type: text/html; charset=UTF-8 Connection: Keep-Alive Keep-Alive: timeout=5, max=100 x-powered-by: PHP/7.4.33 expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache location: http://hittmeel.co.uk/oUD3j content-length: 0 date: Sun, 27 Nov 2022 21:59:27 GMT server: LiteSpeed --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sun, 27 Nov 2022 21:08:54 GMT cache-control: public,max-age=3600 age: 3033 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4240 Cache-Control: 'max-age=158059' Date: Sun, 27 Nov 2022 21:59:27 GMT Last-Modified: Sun, 27 Nov 2022 20:48:47 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: a6fee11dfe1b88cd768a0ca3e2bd0c89 Sha1: 59cec9a44a4a92467678afe65f347f68641a2174 Sha256: 50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
GET /oUD3j HTTP/1.1 Host: hittmeel.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: hittmeel.co.uk/oUD3j FQDN: hittmeel.co.uk IP: 23.106.66.242 HASH: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2 23.106.66.242 HTTP/1.1 301 Moved Permanently content-type: text/html; charset=UTF-8 Connection: Keep-Alive Keep-Alive: timeout=5, max=100 expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache set-cookie: PHPSESSID=cc5e07ff99ae250c85c0506f6635f696; path=/ short_oUD3j=1; expires=Sun, 27-Nov-2022 22:29:27 GMT; Max-Age=1800; path=/; HttpOnly location: https://ddnzje.prodlgiousdates.com?utm_source=da57dc555e50572d&s1=144163&s2=1677385&s3=Akkk_16&j1=1 vary: Accept-Encoding,User-Agent content-length: 20 content-encoding: gzip date: Sun, 27 Nov 2022 21:59:27 GMT server: LiteSpeed --- Additional Info --- Magic: data Size: 20 Md5: 7029066c27ac6f5ef18d660d5741979a Sha1: 46c6643f07aa7f6bfe7118de926b86defc5087c4 Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: c1e03fdad1d40b5d5b7be44aa0afa62f06cca3cb55a658f266dbe6879e449763 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C1E03FDAD1D40B5D5B7BE44AA0AFA62F06CCA3CB55A658F266DBE6879E449763" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8785 Expires: Mon, 28 Nov 2022 00:25:53 GMT Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 11ad36086b637fba72445c75643e01de Sha1: 10f7333c8eb8833d95e51ed22db678ffae744c1f Sha256: c1e03fdad1d40b5d5b7be44aa0afa62f06cca3cb55a658f266dbe6879e449763
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: AirWrndyH0uDGXO60QmSgQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 52.35.167.249 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.35.167.249 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: bwBfAgpqRoYxOPFHnH/MP05yweA= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /landings/277110/1669380007/css/popup.css?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/css/p (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: bcc5d06c7b102eed1477b062020dc4414e4f6c4f9e390e3e67fa675a5f0fa363 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: fnuzZFtuTvJ0ZxLX9Eb6aKCMSlZ0Pg/9WX8sJfWNzP3xGvjcNIsu3Q9YC/UgpabJ/vUmtGCLEw8= x-amz-request-id: MSXTC4EQ3BNFMX7E Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "5a61d45142ce5764a2b36dc75343fcd5" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 21:59:28 GMT Content-Length: 635 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: assembler source, ASCII text Size: 635 Md5: 4ed05a608a8ec589e8aa5b040f7bb878 Sha1: c58649a707ba64aed8b285d3be9f6b06a85ea6cb Sha256: bcc5d06c7b102eed1477b062020dc4414e4f6c4f9e390e3e67fa675a5f0fa363
GET /landings/277110/1669380007/css/style.css?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/css/s (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 18981907b9c80ad776ca328ba2adeee36fcf7a41427c4df9aa09c6122c34afad 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: 3qLxix7l4P3EkMPQ+ivdSfI3CC4kvyQTfqna30VUsPPpURiEUOs0GUf606oz+6axD93rQMFyHk4= x-amz-request-id: YHWH4A3SWBAA1TV6 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "85d49a96dad18822746f4cf9e8a3dab6" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 21:59:28 GMT Content-Length: 3194 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 3194 Md5: 0386c4a4ad6de8521e98853da12e8219 Sha1: 06cae44ddea3f3ae94d4806e43a8163eb657228b Sha256: 18981907b9c80ad776ca328ba2adeee36fcf7a41427c4df9aa09c6122c34afad
GET /landings/277110/1669380007/css/safety-block.css?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/css/s (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: e07a2aa384841da50892bc7f5d92b1675d291c498ffbe88a89197e9b3f884bf1 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: Q4UKoP3RH+IoQKg7vu/xPLCAnxkYZ9FK9wPdsOvvcjLU/HB1npe867Y1vAyupdjj7O243zeBmiA= x-amz-request-id: SE3AV5V17Q2XXGQ6 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "ccfc3e7113030d2214cc5a04295fbaec" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 21:59:28 GMT Content-Length: 474 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 474 Md5: e38fd88cdc96e7cecbe4ec577e08b70e Sha1: 8da300538dd2b191464fc932c74fe5ebbed418b7 Sha256: e07a2aa384841da50892bc7f5d92b1675d291c498ffbe88a89197e9b3f884bf1
GET /landings/277110/1669380007/css/comments.css?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/css/c (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: cd29c00865da17361d05c5d9eccee2c855687d57dc167273bfe4569f805dffa4 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: KxkWKsklUnjzX5kPbQirybnNBbWs7cIjNdA/zdPLruUzvBDWUbfb2D6do3OkfEVTjvJ4sk1ZDvAToj4fANA00A== x-amz-request-id: SE3F8JA1BZYZ5P8M Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "d06dc5b29b4de4943cdaa75696ff7c2f" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 21:59:28 GMT Content-Length: 985 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 985 Md5: e39ffe6a97a52915c4e8a0a451a9b3a9 Sha1: 836d52a2eefd9178898417c92ad53c6f716bdc17 Sha256: cd29c00865da17361d05c5d9eccee2c855687d57dc167273bfe4569f805dffa4
GET /landings/277110/1669380007/js/vegas.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/ve (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 657aac4fd9cd122e452b9da290c486d115af6b8fe8d409f39ab1d1d3dff44144 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: rZXZ+X6E8VbZX75uL9nrT0rRNje9gHHGsBncz0i4XPbgt1NdtQe0qkC9PD3OgZjmpjKMxRip7BQ= x-amz-request-id: YHWQY9B6YRTSJJKK Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "9acc66fdf18dea05bd75165eb5a96259" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 21:59:28 GMT Content-Length: 3401 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with very long lines (11568), with CRLF line terminators Size: 3401 Md5: 156c4046496d16408b06eb605ce1ab09 Sha1: 0dde2c6bbb3cf64132989866bdc1161be62474e3 Sha256: 657aac4fd9cd122e452b9da290c486d115af6b8fe8d409f39ab1d1d3dff44144
GET /landings/277110/1669380007/js/jquery-2.2.4.min.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/jq (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: hA8E0YW8mwo6To7la5raHy1SkF41I2Ljw8eext4bdrxVFbg6y/6v08ew2rpw5VlaORk9AGy5v0Y= x-amz-request-id: SE3CG9YYWR15EZY5 Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "2f6b11a7e914718e0290410e85366fe9" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 21:59:28 GMT Content-Length: 29855 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with very long lines (32065) Size: 29855 Md5: 2fa28552f1ee4e1382ee43930b53afb8 Sha1: 803670da6a35378bf4eb73acc8e72fe4feb5ca30 Sha256: ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494
GET /landings/277110/1669380007/js/function.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/fu (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 303187afb2cbbbf6095724df7eaf8c7967bb019dc17e1224d9e2366ac7f381c5 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: 4R2GE0IBTjKI9xriIaw6R0Hm+vaN03/2T5t0d1qNbE0YwrDZ9mdm36Tx8rYVoBfTLndoMU4got4= x-amz-request-id: YHWHMDS3XPGSSX7T Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "5da2c51949f2a873bf0091a104658e72" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 21:59:28 GMT Content-Length: 688 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 688 Md5: ba7deda1bcbc1e2d5c127678e05b71a1 Sha1: 4707fef7ab43a522b3cf7f5c0db4c148c5a43701 Sha256: 303187afb2cbbbf6095724df7eaf8c7967bb019dc17e1224d9e2366ac7f381c5
GET /landings/277110/1669380007/js/tn_pHash.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/tn (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 9804b1c7443db74b2d7fe81cf11d84c8f0d9a7dee281b4fe8c15552bdc7eed69 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: l24II4je276eDM3kgUQPWR30kPx/oD56tIlmVlUFPfdsJjV+y8vTad6IIGIbUajDuulRqA2F+IQ= x-amz-request-id: YHWRJCHJWMMN929M Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "3544c08851825a863747a126548d6993" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 252 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 252 Md5: 3544c08851825a863747a126548d6993 Sha1: 01882998e61b9f93d5f346386fa633f6b8d95b2d Sha256: 9804b1c7443db74b2d7fe81cf11d84c8f0d9a7dee281b4fe8c15552bdc7eed69
GET /landings/277110/1669380007/js/translates.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 73c4aa8abb0450fbb7eef37c3afc3d6f11f0c2bc3f0a101323364b59298e4e2f 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: /g98RDsOtRjUZZ8I2jryTVTZxkzDrfHYsda9vDch/cgfOVBQr5JcDtsqeDtBsXHNWw9CyMFRg8M= x-amz-request-id: YHWXQMA277E8BBYM Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "07cee83d1be10af1ca991d1c60abd6e2" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 21:59:28 GMT Content-Length: 10048 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 10048 Md5: f54e5331f7d782d475a884cce1db33fd Sha1: d5145e3ebcab1a21d4cdff8632c9901db93b962f Sha256: 73c4aa8abb0450fbb7eef37c3afc3d6f11f0c2bc3f0a101323364b59298e4e2f
GET /landings/277110/1669380007/js/translates-review.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 5f7d54f2a3e32dea4d98b026e24552def3b8eb2c6971cbf453613fc65e7468ae 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: TUwNMEorlVhmmQRTvZ4PtKvXYpQ8TiSuIyrxEGkaKPfCGqbDvjUX3Yu9ffd2yHzolZR17YcL9i0= x-amz-request-id: HXP25N7MQS75YACF Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "fe0aae6f9135f4ae6b865596d5536572" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 21:59:28 GMT Content-Length: 14009 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 14009 Md5: c7fe64ab27fa6636d47e268eb6097573 Sha1: 4095663454037fe276f45bd45c88f3742cc8618d Sha256: 5f7d54f2a3e32dea4d98b026e24552def3b8eb2c6971cbf453613fc65e7468ae
GET /landings/277110/1669380007/js/translate-secure.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: b597b9c82f67d2e16043004ffe9bb0a225f9346fb7170f29f22a32de36e09491 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: Hyr7G2TOv+K+Kh2v6Q2rV+xRZ3UnYzAI+QIneslvaSMknijo8Um/MfdbKm5es3VP06UxbdQp5fM= x-amz-request-id: RB0D4N5N58VMQ67E Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "8c7421ebb0b50165c5dac2e577203585" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 21:59:28 GMT Content-Length: 1671 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text, with CRLF line terminators Size: 1671 Md5: 41c1e8df3c88e802b717f466ca9ab1fa Sha1: a368c67215e488869ec65ecddf2ed58c7362c800 Sha256: b597b9c82f67d2e16043004ffe9bb0a225f9346fb7170f29f22a32de36e09491
GET /landings/277110/1669380007/js/title_tanslate.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/ti (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: rO3DS8dPWpXnbLvoejmdK1dbs3OuzNIBF/qiBa3OBhVpKo5oCPbq2/Q9l255o3Nxjgdi7BNJTgo= x-amz-request-id: RB06MYEFKZQ8GNV4 Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "5f373fa5bf21c44b9ad23b70ef96e73d" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 21:59:28 GMT Content-Length: 1298 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text, with CRLF line terminators Size: 1298 Md5: 0e212ad4454c941c45c2e57df42c2b4f Sha1: fe9d7c484c2c0d7a6475692ef984c53a06c95406 Sha256: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 21:59:28 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 5af61422c4eaa1b995ec63e463abda26 Sha1: db75634681ed688840773ce828c169ac9da7d131 Sha256: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 21:59:28 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 5af61422c4eaa1b995ec63e463abda26 Sha1: db75634681ed688840773ce828c169ac9da7d131 Sha256: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
GET /landings/277110/1669380007/images/110010_2.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 8f700ae9dd68bd1130d528b77e1de92b4945e036060fdb01a02ccc148ab24ab3 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: ynLFmknXLsvmknVGhqo8d0GKw9keAElWb/bh3s11Ub4YAokV7eMLDCK/y+t8qC2pOjIrW4J00xU= x-amz-request-id: M1E9GH3THM1Q6GWX Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "2b8ac4e50a5bbbe4e6ea964bec7f3086" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 29319 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 682x388, components 3\012- data Size: 29319 Md5: 2b8ac4e50a5bbbe4e6ea964bec7f3086 Sha1: 5486267315a7cd9eca01fa2fc6007060189c8b4f Sha256: 8f700ae9dd68bd1130d528b77e1de92b4945e036060fdb01a02ccc148ab24ab3
GET /landings/277110/1669380007/images/5-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: a2K4LJJYSCMlfkpdi7XYV4YxqqmNrySXxPzHJRPUWKWgf50MnGtJWoxvXiEXZ5AG+GAVRZcig0w= x-amz-request-id: M1E8E3SXYSEQ0EA2 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "27109a247208262e6293950ca8f5450d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2879 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2879 Md5: 27109a247208262e6293950ca8f5450d Sha1: cea89616d15ad45a0f2b04082dff608abd96b800 Sha256: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96
GET /landings/277110/1669380007/images/6-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: gDkfNqzfF0VuoA/PUPrrC3TAHfAkT1jcbvXqT4U+ZTfqb1nzuZ5Wv1Vn/oyBFQlQ4j+nUAFOAZA= x-amz-request-id: 6S4VWG7RHN8T71Y4 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "9a6870069cb979e16b239f9ed485fb3c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 3256 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 3256 Md5: 9a6870069cb979e16b239f9ed485fb3c Sha1: c1dc7f3620c8cc391648c550f91b269b04d3c612 Sha256: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818
GET /landings/277110/1669380007/images/1.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: e0d65a21b743f7fe6de2f4bd57316546e7f30c7810740d68322a44dfe3004373 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: IP39waPnZRmPQYSxiMQ3R7r+ER/ouey24ZCI2ectFX7zeNMJwQkULHSb3JK6deLne6wq4/5kWkE= x-amz-request-id: HXPDAM29RWPPJPC6 Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT ETag: "765620bf3d6dcdb5495b70409b6b4ba8" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 62164 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 900x1280, components 3\012- data Size: 62164 Md5: 765620bf3d6dcdb5495b70409b6b4ba8 Sha1: f4a00a38ca93130e5e0398deea0ba2f928e2172b Sha256: e0d65a21b743f7fe6de2f4bd57316546e7f30c7810740d68322a44dfe3004373
GET /landings/277110/1669380007/images/logo.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 1d4ad487984a8f689c904f3c2532f034b03d361c081dae581752cdc20d983037 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: WhhpH74LdQNbuUGdziBofeKi7jOdx6xPL3ENXQX5qXAukg1OTNNZ/0Z7rV9phODnRQaJZU3vGBE= x-amz-request-id: M1E3KG10VSMHC5YY Last-Modified: Fri, 25 Nov 2022 12:40:09 GMT ETag: "c0647e470e90e4e76c886ef3f4c651ac" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 40774 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 1024 x 256, 8-bit/color RGBA, non-interlaced\012- data Size: 40774 Md5: c0647e470e90e4e76c886ef3f4c651ac Sha1: fe1dd72ac0432bd8f261672c7c336cf902503d3c Sha256: 1d4ad487984a8f689c904f3c2532f034b03d361c081dae581752cdc20d983037
GET /landings/277110/1669380007/images/logo-white.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 7afbc6f7cb728a9b4dfd7791a8207c60bdd255ea2f00ba12880bee15f7fbdff0 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: 0hnTOMjaLTEcee6jvhffHOUAVV+6wuHj7snluSjlJDrrvjUYE6vmNQY6i3mHcaQwOxeFjpx0sVQ= x-amz-request-id: KJC2M7FG6P8NF19M Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT ETag: "27a8fdccc08741c52422bd4852f87c3a" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 9461 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 300 x 124, 8-bit colormap, non-interlaced\012- data Size: 9461 Md5: 27a8fdccc08741c52422bd4852f87c3a Sha1: b103730d95829f64c0746b97a85e0ada4f6c18a2 Sha256: 7afbc6f7cb728a9b4dfd7791a8207c60bdd255ea2f00ba12880bee15f7fbdff0
GET /landings/277110/1669380007/images/shutterstock_745475197.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: cd99a78c0d74febf0c5c4915318b04a5a315508453f1dc456e821c3d6469729f 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: ZqCY5lud+RR54imKua/XG7FGzQcNK/3FKnN1bypyb8KvKFTkl3/30Q2+DuS6dxAOt1B/n4OCmzs= x-amz-request-id: M1EBWBFNP1JJAYW4 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "13efb7d3bebedd1070118ff26ef75f0e" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 99417 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 1920 x 363, 8-bit colormap, non-interlaced\012- data Size: 99417 Md5: 13efb7d3bebedd1070118ff26ef75f0e Sha1: 5468d7a02606ddbef66a356fa0b68804a8821f0b Sha256: cd99a78c0d74febf0c5c4915318b04a5a315508453f1dc456e821c3d6469729f
GET /landings/277110/1669380007/images/shield.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: InmWGGtJz/XQ98t1JAeohiMuTlJ68ZQnVArn6+3DgSaePSKh2X/I9GPw/cnRlcu8xz8Bp8c3e0s= x-amz-request-id: KJCA28RWFTHW9SXT Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1539 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310) Size: 1539 Md5: 0c7a0dfd64cf020cd8a6dc0c3df1dbdf Sha1: f705635388aebebae1223d828c38233067f28ab1 Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888
GET /landings/277110/1669380007/images/8-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: ebHJnUW9OQynVlfVfc5upD9XgOsodCkggKEk07o9WeB5SmFM87tyICuWsgs3ugcumJ9BL235Vec= x-amz-request-id: SPW2ABQ9XMXC4J3S Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "41bbda91cef3f22db1d45d66f7ca0961" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2458 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2458 Md5: 41bbda91cef3f22db1d45d66f7ca0961 Sha1: e2f8f56674e0180063a4f8287931dc0b273baf8e Sha256: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e
GET /landings/277110/1669380007/images/1-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: RMdnqkOTJpdONvTLBYvlaVP+FLsUf5YdfV9XrXcemmHORTZX6ZzgAS9hHjfK9qFfnGQnRw8WNrg= x-amz-request-id: 6S4T86B48KSRTRSC Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "6e6d0b84c81d847e24671a711115a781" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 4292 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 4292 Md5: 6e6d0b84c81d847e24671a711115a781 Sha1: 20dc2d359e437dc10ceefea4d3c7b5189c2e58d0 Sha256: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553
GET /landings/277110/1669380007/images/unlock.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: XK7/ZJO+fKOMyrNyLwoCRmx3LI5uT7tmN7V2LDucg4jdALTC75dZQdsq8AcPN9CTJc9HS+64hPk= x-amz-request-id: 6S4HCY8J28HEJFM1 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "a732e1e06affb4575c050fdb0131e5ca" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2378 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944) Size: 2378 Md5: a732e1e06affb4575c050fdb0131e5ca Sha1: da4f4f204a4d22c7424274a91520e0ea993c48c7 Sha256: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f
GET /landings/277110/1669380007/images/password.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: S3QKCYrVfXLOPatQoEsuzKWreDpdH2pXAeAZjqiLuW6WSrQEcQlaDc/An6BtrU9jqLlUIUK/v70= x-amz-request-id: AD6BFCVABJEZ35K3 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "f42aef7f97d4c9bdb074673081f38ac7" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1339 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (330) Size: 1339 Md5: f42aef7f97d4c9bdb074673081f38ac7 Sha1: 0231df782e371d139c826e091279acd9a07e691c Sha256: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac
GET /landings/277110/1669380007/images/4-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: XDaBZ7Twy/yMLwL7PQWJnmLepJvl0qcnAXn/Akb8vaOUcWBFN9EyOFQNGu+ZUE/KSIHbMFRuTD4= x-amz-request-id: 6S4H66PBNGD58VGN Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "cb3aff7c886e4f72a98172b873b5e62d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2586 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2586 Md5: cb3aff7c886e4f72a98172b873b5e62d Sha1: 33de244dcb4db4abe54b6508ae8d1546eb279aa5 Sha256: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e
GET /landings/277110/1669380007/images/3-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 9WwZn7602znhUl3mmGALpZ2HVOc129bj/vYplRa403TxJVwi4SbzGXPvD1q5i6idPWyzwozmWdg= x-amz-request-id: 6S4SAGRW9Q40ZQQ9 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "1dc512dcb0850f22cfa72c789578085c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 3946 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 80x80, components 3\012- data Size: 3946 Md5: 1dc512dcb0850f22cfa72c789578085c Sha1: 933e9c5648e782c9f9a1504d2248f0acb4b9950b Sha256: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00
GET /landings/277110/1669380007/images/7-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: dJTxFgCe1D5Hjh/iDcl9FvMPp+SKYz53rnoP6jF0PAQCBVeEo2tH0gmtMpQvswLw54gmtu1wjHg= x-amz-request-id: 6S4QB2JNDJC2VTVX Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "8155d8ecc7dc2d9b29cf99ab85c3d2a8" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2282 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2282 Md5: 8155d8ecc7dc2d9b29cf99ab85c3d2a8 Sha1: ba784563c7787760b318af24ea274ad6df2c5b89 Sha256: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27
GET /landings/277110/1669380007/images/2-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 94B+qg44bfwckEWeh/+FXoD0JuETZNY2gkuV45MB6Wux/V7D90illuhFfcsY9TOtFhQEl5/uUFA= x-amz-request-id: 6S4WJE4RA6GX4PCE Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "66b6dc51bd19c799dcadf1dbeb628d9c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2009 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2009 Md5: 66b6dc51bd19c799dcadf1dbeb628d9c Sha1: ff7fe6049e944186764bfc5041d624ec11f8d362 Sha256: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0
GET /css2?family=Ubuntu:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Ubuntu:wght@400;700&di (...) FQDN: fonts.googleapis.com IP: 142.250.74.10 HASH: f1f60944a55f4049f803b02fd3c2edd2c92737b9d3d213ea6045956fabbfa875 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 27 Nov 2022 21:59:28 GMT date: Sun, 27 Nov 2022 21:59:28 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 1013 Md5: c701ed014b0d896ab3a9556b001d6e3e Sha1: b57c3458d4c13f0703b52d557c9a681e7c106b70 Sha256: f1f60944a55f4049f803b02fd3c2edd2c92737b9d3d213ea6045956fabbfa875
GET /landings/277110/1669380007/images/action_icons_20px_2x.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277110/1669380007/css/comments.css?1669380007 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: n0JrO/Dcp5bv4kj739clPJZtLl2z6zFl4iFa9ByEtIH2m0pyfO+XmspHHiOoapNjpwjSOlEGR6I= x-amz-request-id: M1E03VDK0MDFGEGQ Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "b699975b5fe73b087e711a33ff24ee1e" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1726 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data Size: 1726 Md5: b699975b5fe73b087e711a33ff24ee1e Sha1: 0e33cc5c32a5e7d18440751e3946076664caaf53 Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
GET /landings/277110/1669380007/images/shutterstock_573865690_web_b.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277110/1669380007/css/comments.css?1669380007 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: da39a37f32440fb074d58320f676132e84efdfec267bd899d9b9ffad5e554faa 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: FDD9qjYbKoTbaMxsh9tVKeq0saXg4GOz5ID4VrW5mOmG8Amlyc7r95hn7uP6xYwBxY+EVzrATxQ= x-amz-request-id: SPWDQZN2XPRHZMDV Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "1cdde30f2b7ab4cca657e99f0fb65ed3" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 84727 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced\012- data Size: 84727 Md5: 1cdde30f2b7ab4cca657e99f0fb65ed3 Sha1: a3a606c66ea29bcba25b0ed96d0d3eed75d7e3cb Sha256: da39a37f32440fb074d58320f676132e84efdfec267bd899d9b9ffad5e554faa
GET /landings/277110/1669380007/images/shutterstock_1769158304_web.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277110/1669380007/css/style.css?1669380007 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 92e2e82e49518b2aec5178e8a9f4dc707953d9f345df4e6fbe94cf6b58d4a1cf 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: JPDlVh+JBvFsOF6H4OkSlIp+fUffISZ6TaWiMkRo4srkCSonkNLUbWBBA5wx724DRntA3mAKUjA= x-amz-request-id: M1E5S96R90KA40HB Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "ac6e0136f9f9e5a7d548072ed5c43b8d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 151084 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data Size: 151084 Md5: ac6e0136f9f9e5a7d548072ed5c43b8d Sha1: a74aee9e6d1dd0ba9d8ff1200b5eb4e29e0e342d Sha256: 92e2e82e49518b2aec5178e8a9f4dc707953d9f345df4e6fbe94cf6b58d4a1cf
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 21:59:28 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e9895464b828d538dc654c678c82b181 Sha1: af5791cd48761cb3f3f979b481c23e1508692823 Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 21:59:28 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e9895464b828d538dc654c678c82b181 Sha1: af5791cd48761cb3f3f979b481c23e1508692823 Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://ddnzje.prodlgiousdates.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4 (...) FQDN: fonts.gstatic.com IP: 216.58.207.195 HASH: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 216.58.207.195 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 18:53:49 GMT expires: Thu, 23 Nov 2023 18:53:49 GMT cache-control: public, max-age=31536000 age: 356739 last-modified: Wed, 11 May 2022 19:24:42 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size: 15860 Md5: e9f5aaf547f165386cd313b995dddd8e Sha1: acdef5603c2387b0e5bffd744b679a24a8bc1968 Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 21:59:28 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e9895464b828d538dc654c678c82b181 Sha1: af5791cd48761cb3f3f979b481c23e1508692823 Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 21:59:28 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e9895464b828d538dc654c678c82b181 Sha1: af5791cd48761cb3f3f979b481c23e1508692823 Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://ddnzje.prodlgiousdates.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 FQDN: fonts.gstatic.com IP: 216.58.207.195 HASH: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 216.58.207.195 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 19:34:08 GMT expires: Thu, 23 Nov 2023 19:34:08 GMT cache-control: public, max-age=31536000 age: 354320 last-modified: Wed, 11 May 2022 19:24:48 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size: 15744 Md5: 15d9f621c3bd1599f0169dcf0bd5e63e Sha1: 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://ddnzje.prodlgiousdates.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 FQDN: fonts.gstatic.com IP: 216.58.207.195 HASH: 495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9 216.58.207.195 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 9628 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 24 Nov 2022 06:19:49 GMT expires: Fri, 24 Nov 2023 06:19:49 GMT cache-control: public, max-age=31536000 age: 315579 last-modified: Wed, 11 May 2022 19:24:42 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data Size: 9628 Md5: d9ac47c7e500fb7083b8d595eaf6fe12 Sha1: 112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933 Sha256: 495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /css2?family=Roboto:wght@300;400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Roboto:wght@300;400;70 (...) FQDN: fonts.googleapis.com IP: 142.250.74.10 HASH: d8f3c454949995e6e5d1386b1e12dcf911c2a80bd972b12e0061cd8578f465a7 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 27 Nov 2022 21:59:28 GMT date: Sun, 27 Nov 2022 21:59:28 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 10304 Md5: dfe0ccb70e823d9ba5b33c96bed296ef Sha1: a854a28e0d5b085a0c3d88eb2d1afc7ce85aff7d Sha256: d8f3c454949995e6e5d1386b1e12dcf911c2a80bd972b12e0061cd8578f465a7
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 21:59:28 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e9895464b828d538dc654c678c82b181 Sha1: af5791cd48761cb3f3f979b481c23e1508692823 Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
GET /landings/277110/1669380007/images/favicon.png?t=20221127215928 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 39b439471019cb16f819e05166d23492593310fd55cce8471062d8f2dc5de423 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: 2pebgRNohFTDEF97cw553QwwUbgCpYAJBzmU6zyD2ANRqpR0khVU0lj1L3lcJ7nkCZMB7i7vL0c= x-amz-request-id: F5CBPDDNQSZQ8E4G Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "40a54c3ecf143b64096b063ff793fdbb" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 4093 Date: Sun, 27 Nov 2022 21:59:28 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size: 4093 Md5: 40a54c3ecf143b64096b063ff793fdbb Sha1: 017eafffc5e55226a2aec0dd3c03f1b6130a6bab Sha256: 39b439471019cb16f819e05166d23492593310fd55cce8471062d8f2dc5de423
GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.gstatic.com/firebasejs/5.0.2/firebase-app.js FQDN: www.gstatic.com IP: 142.250.74.163 HASH: b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5 142.250.74.163 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 8604 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 18:32:45 GMT expires: Thu, 23 Nov 2023 18:32:45 GMT cache-control: public, max-age=31536000 age: 358003 last-modified: Thu, 10 May 2018 20:35:51 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (25088) Size: 8604 Md5: 73069e532b7039778d3a7128c997c61a Sha1: c523bbf1ac7f4e612c8ade75434c42fbca885adc Sha256: b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5
GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js FQDN: www.gstatic.com IP: 142.250.74.163 HASH: 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7 142.250.74.163 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 10017 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 21 Nov 2022 18:29:53 GMT expires: Tue, 21 Nov 2023 18:29:53 GMT cache-control: public, max-age=31536000 age: 530975 last-modified: Thu, 10 May 2018 20:35:52 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (35547) Size: 10017 Md5: fa9987a23f5a9d865766e952511baa30 Sha1: f2e620b99ee61a01671ba6a9e22ca75d58a1b52d Sha256: 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7
POST /ortb HTTP/1.1 Host: ddnzje.prodlgiousdates.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 294 Origin: https://ddnzje.prodlgiousdates.com Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/?s1=144163&s2=1677385&s3=Akkk_16&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d Cookie: unique_id=6383a5d9000038c4; unique_id2=6383d4bf000f889a; 6383d4bf000f889a_c=1; ref_token=178740_142414_160484_50714_25282_144163; 6383d4bf000f889a_sl=[277110] Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	URL: ddnzje.prodlgiousdates.com/ortb FQDN: ddnzje.prodlgiousdates.com IP: 52.19.101.114 HASH: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208 52.19.101.114 HTTP/2 200 OK content-type: text/plain; charset=utf-8 server: nginx date: Sun, 27 Nov 2022 21:59:28 GMT content-length: 13 X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 13 Md5: 1031bf08481e45e42ceb3fd978c3d379 Sha1: 3d6d43df4c45f09f5d68593646fd83352323a5ea Sha256: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208 Alerts: Blocklists: - fortinet: Phishing
GET /?utm_source=da57dc555e50572d&s1=144163&s2=1677385&s3=Akkk_16&j1=1 HTTP/1.1 Host: ddnzje.prodlgiousdates.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site	URL: ddnzje.prodlgiousdates.com/?utm_source=da57dc555e50572d (...) FQDN: ddnzje.prodlgiousdates.com IP: 52.19.101.114 HASH: 54ff6a63d714219ef4018b1975e64b1096130ac6f9d98cd40ded533a4370a11c 52.19.101.114 HTTP/2 200 OK content-type: text/html; charset=utf-8 server: nginx date: Sun, 27 Nov 2022 21:59:28 GMT set-cookie: unique_id=6383a5d9000038c4; Path=/; Expires=Thu, 26 Jan 2023 21:59:28 GMT; Secure; SameSite=None unique_id2=6383d4bf000f889a; Path=/; Expires=Sat, 25 Feb 2023 21:59:28 GMT; Secure; SameSite=None 6383d4bf000f889a_c=1; Path=/; Expires=Sat, 25 Feb 2023 21:59:28 GMT; Secure; SameSite=None ref_token=178740_142414_160484_50714_25282_144163; Path=/; Expires=Tue, 27 Dec 2022 21:59:28 GMT; Secure; SameSite=None impression=; Path=/; Expires=Sun, 27 Nov 2022 21:59:28 GMT; Secure; SameSite=None 6383d4bf000f889a_sl=[277110]; Path=/; Expires=Sun, 11 Dec 2022 21:59:28 GMT; Secure; SameSite=None content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 8398 Md5: 657083b5f45c41e978a78dbef358273a Sha1: 3d01d7ed0d06f8cf8085837fc086ee92acccaf51 Sha256: 54ff6a63d714219ef4018b1975e64b1096130ac6f9d98cd40ded533a4370a11c
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3391 Expires: Sun, 27 Nov 2022 22:56:00 GMT Date: Sun, 27 Nov 2022 21:59:29 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: aebda342a81ad83f60d2523f54ccda67 Sha1: e590d9326e4a283e0929a8ffccb13cc4308af0e6 Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3391 Expires: Sun, 27 Nov 2022 22:56:00 GMT Date: Sun, 27 Nov 2022 21:59:29 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: aebda342a81ad83f60d2523f54ccda67 Sha1: e590d9326e4a283e0929a8ffccb13cc4308af0e6 Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10199 x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cOo4iF1VIAMF09g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 21:51:43 GMT age: 466 etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10199 Md5: 2cd887044e91d7ed0f1a8d7119ff7dd0 Sha1: ae8aa4ce6ddaccba771fe65446926b60fc5628da Sha256: bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3391 Expires: Sun, 27 Nov 2022 22:56:00 GMT Date: Sun, 27 Nov 2022 21:59:29 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: aebda342a81ad83f60d2523f54ccda67 Sha1: e590d9326e4a283e0929a8ffccb13cc4308af0e6 Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4309 x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: blE0hGNioAMF_Tg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0 x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 02:31:24 GMT age: 70085 etag: "126771b86638108050cf57c0d12faa27f80f0edb" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4309 Md5: 841a4b110022a99ddea6f7bf66df0fa1 Sha1: 126771b86638108050cf57c0d12faa27f80f0edb Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8817 x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-krGE6AIAMF2Kg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0 x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: I6egDH0h7D08HhaoQHQ0vgghBhPfje2lGIbnWD-t7p4txzHsFxmZfg== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 16:15:23 GMT age: 20646 etag: "308c08784ce4a0757cbd112807555b83e17a1d56" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8817 Md5: 741ddfb19764ac9a77509e7e87cfbfb2 Sha1: 308c08784ce4a0757cbd112807555b83e17a1d56 Sha256: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5099 x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cOo4jFBvoAMFl1w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 2MivUtjkRrGptomWw4_3dksjedPBulWv_eXN1zKxTKxa4mi0l8TjxA== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 21:51:44 GMT age: 465 etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5099 Md5: 433875a1b1fef34e45f2d8ac344c07e3 Sha1: f2129466436cbbdd58abe42a47fb7af19eba58e6 Sha256: ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8387 x-amzn-requestid: e4ce369f-7654-4c1a-94c2-70c913eb1a01 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cFL0tEcqIAMFXHw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637ec01d-37bd969f4cdfe220096b8c1f;Sampled=0 x-amzn-remapped-date: Thu, 24 Nov 2022 00:51:41 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: __2hrJIdzCKzhuJ_YfbSSfz-WwyIqnPugk7P6SuYSjn6b2wwm0otCw== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 20:58:19 GMT age: 3670 etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8387 Md5: 4e97baa4851785eac92c719abf481c64 Sha1: c32a57038d3cdbc514c9081c9938eca6a04fb481 Sha256: adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 4224287ba765da59c877ac4f1dec65accc5bec934b7598d9cbbee669ba4ab12e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6883 x-amzn-requestid: 9e3878c9-1817-427e-b121-969a8cbc7ad8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cL1ySF0tIAMFY4Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638169a8-5143ffea77b70cf67ef60ad7;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 01:19:36 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: GT3Futv4Ztnl2Og2TQFk5311m92Mv_jfvkIZYJXpjJMdkxSB6MI06g== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 06:42:16 GMT age: 55033 etag: "590c34be54c9889eec4ff7993e070fda836f711f" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6883 Md5: f7f16c0f8a8e710210ce77c0e4c1c2a2 Sha1: 590c34be54c9889eec4ff7993e070fda836f711f Sha256: 4224287ba765da59c877ac4f1dec65accc5bec934b7598d9cbbee669ba4ab12e
GET /landings/277110/1669380007/images/2.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: c8d05f7eda85f68f0a08307eeee4e481282fda95570dd53f300b8aadd4f504f6 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 2SS0ccQiImX7GK6Z2uPJiu1s3NQUjgFcnDfwC3OpNZqfeFxGwnDCnvQbEA9NIax5M9HT1+9madA= x-amz-request-id: XEPYD4CV3JPFPJGT Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT ETag: "3b8b455b24c71ae1f928266241e9517e" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 102832 Date: Sun, 27 Nov 2022 21:59:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 960x1280, components 3\012- data Size: 102832 Md5: 3b8b455b24c71ae1f928266241e9517e Sha1: 8b98ca60c92b83e039c3b996f090883ed8b7ca75 Sha256: c8d05f7eda85f68f0a08307eeee4e481282fda95570dd53f300b8aadd4f504f6
GET /landings/277110/1669380007/images/3.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 10dedae19a11a0cf1cea2db4646bde720e63e35140f38ae3453fa2a4e4649e1c 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: mujQkU5bBZxk2esbQzkJw8R2YF+eM2odlv+AwUGp4LhSGFsVJsBE6mUyaQiQTARWACoIOhF7hWM= x-amz-request-id: XEPRXN6QMY0CFMNK Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT ETag: "8ff03d86c53d978e5527374b5bcd5114" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 149812 Date: Sun, 27 Nov 2022 21:59:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1108x1280, components 3\012- data Size: 149812 Md5: 8ff03d86c53d978e5527374b5bcd5114 Sha1: 2b63b0853d74e24d74d26dbf9622c407e3c74ea9 Sha256: 10dedae19a11a0cf1cea2db4646bde720e63e35140f38ae3453fa2a4e4649e1c
GET /landings/277110/1669380007/images/1.mp4 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: video/webm,video/ogg,video/;q=0.9,application/ogg;q=0.7,audio/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/ Sec-Fetch-Dest: video Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 5635dd2c6c23dfdc3e4eb82afc4231a27e8522ec332b8568a3fc7ae8755fec94 184.31.15.107 HTTP/1.1 206 Partial Content Content-Type: video/mp4 x-amz-id-2: PbeNqnv1aqRlWQmB6KNWzh8Rvru2G8OhIH8n6BdwcBEP05Y53X9D7/xXHaogL4NZf20cWNbP+FE= x-amz-request-id: XCHWYJP04CJXDZED Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT ETag: "379ddec6d7d6e118bd7565d1c83dbb90" Accept-Ranges: bytes Server: AmazonS3 Date: Sun, 27 Nov 2022 21:59:30 GMT Content-Range: bytes 0-1560163/1560164 Content-Length: 1560164 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data Size: 1560164 Md5: 379ddec6d7d6e118bd7565d1c83dbb90 Sha1: 16becb1b44f3f35b0fa239668901338cba6eff06 Sha256: 5635dd2c6c23dfdc3e4eb82afc4231a27e8522ec332b8568a3fc7ae8755fec94
GET /js/pushjs/1.0.0/utils.js HTTP/1.1 Host: ddnzje.prodlgiousdates.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/?s1=144163&s2=1677385&s3=Akkk_16&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d Cookie: unique_id=6383a5d9000038c4; unique_id2=6383d4bf000f889a; 6383d4bf000f889a_c=1; ref_token=178740_142414_160484_50714_25282_144163; 6383d4bf000f889a_sl=[277110] Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: ddnzje.prodlgiousdates.com/js/pushjs/1.0.0/utils.js FQDN: ddnzje.prodlgiousdates.com IP: 52.19.101.114 52.19.101.114 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sun, 27 Nov 2022 21:59:28 GMT expires: Sun, 04 Dec 2022 21:59:28 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Alerts: Blocklists: - fortinet: Phishing
GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1 Host: ddnzje.prodlgiousdates.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ddnzje.prodlgiousdates.com/?s1=144163&s2=1677385&s3=Akkk_16&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d Cookie: unique_id=6383a5d9000038c4; unique_id2=6383d4bf000f889a; 6383d4bf000f889a_c=1; ref_token=178740_142414_160484_50714_25282_144163; 6383d4bf000f889a_sl=[277110] Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: ddnzje.prodlgiousdates.com/js/pushjs/1.0.0/subscriber.js FQDN: ddnzje.prodlgiousdates.com IP: 52.19.101.114 52.19.101.114 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sun, 27 Nov 2022 21:59:28 GMT expires: Sun, 04 Dec 2022 21:59:28 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Alerts: Blocklists: - fortinet: Phishing
GET /js/service-worker.js HTTP/1.1 Host: ddnzje.prodlgiousdates.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Service-Worker: script Connection: keep-alive Cookie: unique_id=6383a5d9000038c4; unique_id2=6383d4bf000f889a; 6383d4bf000f889a_c=1; ref_token=178740_142414_160484_50714_25282_144163; 6383d4bf000f889a_sl=[277110] Sec-Fetch-Dest: serviceworker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers	URL: ddnzje.prodlgiousdates.com/js/service-worker.js FQDN: ddnzje.prodlgiousdates.com IP: 52.19.101.114 52.19.101.114 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sun, 27 Nov 2022 21:59:28 GMT expires: Sun, 04 Dec 2022 21:59:28 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Alerts: Blocklists: - fortinet: Phishing
GET /redirect?event=comments&redir_token=QUFFLUhqbU9ZZlNwV0R1NlctalpnMzdHOU8ya2w0ZG5oQXxBQ3Jtc0ttX0habVgxMlJNOFlLZUhnck04bUl3RFVXeHRZc3k2Nmd6VmMxbFZiRWZvREF1bDlKU0V3U2I5RnU4SjZ6cmRfdlp1RW9GMGgtaXYwUUFvR0pWeTNUYUpySnBCY3B3TUduWU5RWWNwMEN1RmxUUWJsTQ&q=http%3A%2F%2Fkaygater.online%2Fc%2Fubfda4kobo&html_redirect=1 HTTP/1.1 Host: www.youtube.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: www.youtube.com/redirect?event=comments&redir_token=QUF (...) FQDN: www.youtube.com IP: 216.58.207.238 216.58.207.238 HTTP/2 200 OK content-type: text/html; charset=utf-8 x-content-type-options: nosniff cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Sun, 27 Nov 2022 21:59:27 GMT x-frame-options: SAMEORIGIN strict-transport-security: max-age=31536000 cross-origin-opener-policy-report-only: unsafe-none; report-to="youtube_main" report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]} permissions-policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-platform=, ch-ua-platform-version= p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info." content-encoding: br server: ESF x-xss-protection: 0 set-cookie: YSC=BiM7hbBrHTA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none VISITOR_INFO1_LIVE=; Domain=.youtube.com; Expires=Mon, 02-Mar-2020 21:59:27 GMT; Path=/; Secure; HttpOnly; SameSite=none CONSENT=PENDING+238; expires=Tue, 26-Nov-2024 21:59:27 GMT; path=/; domain=.youtube.com; Secure alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---

                                        
                                            GET /ubfda4kobo HTTP/1.1 

                                        
                                            
Host: kaygater.online

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         65.109.26.202

                                        
                                            HTTP/1.1 302 Found 

                                        
                                            
content-type: text/html; charset=UTF-8

                                        

                                        
                                            
Connection: Keep-Alive 

                                        
                                            
Keep-Alive: timeout=5, max=100 

                                        
                                            
x-powered-by: PHP/7.4.33 

                                        
                                            
set-cookie: PHPSESSID=738adb6ed75167e77fcc01bb7351cf75; path=/ 

                                        
                                            
expires: Thu, 19 Nov 1981 08:52:00 GMT 

                                        
                                            
cache-control: no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
pragma: no-cache 

                                        
                                            
location: https://www.youtube.com/redirect?event=comments&redir_token=QUFFLUhqbU9ZZlNwV0R1NlctalpnMzdHOU8ya2w0ZG5oQXxBQ3Jtc0ttX0habVgxMlJNOFlLZUhnck04bUl3RFVXeHRZc3k2Nmd6VmMxbFZiRWZvREF1bDlKU0V3U2I5RnU4SjZ6cmRfdlp1RW9GMGgtaXYwUUFvR0pWeTNUYUpySnBCY3B3TUduWU5RWWNwMEN1RmxUUWJsTQ&q=http%3A%2F%2Fkaygater.online%2Fc%2Fubfda4kobo&html_redirect=1 

                                        
                                            
content-length: 0 

                                        
                                            
date: Sun, 27 Nov 2022 21:59:26 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 5812 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:27 GMT 

                                        
                                            
Last-Modified: Sun, 27 Nov 2022 20:22:35 GMT 

                                        
                                            
Server: ECS (ska/F71B) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    64b2a23eab6e5ae8c010ec7242be930c

                                                Sha1:   0673e4385ba01a5a245711bab96cafc34f765793

                                                Sha256: 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 939 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 21:17:42 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 2505 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    4d7e4eed097b9c4e5d509419f1cfc85a

                                                Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8

                                                Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:27 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    88e42375d2172305f819b892225cf877

                                                Sha1:   674324641f82700172e72fe259ee2241361e2ea1

                                                Sha256: 6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:27 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    88e42375d2172305f819b892225cf877

                                                Sha1:   674324641f82700172e72fe259ee2241361e2ea1

                                                Sha256: 6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 329 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 21:08:54 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 3033 

                                        
                                            
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
etag: "1648230346554" 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        
                                            GET /oUD3j HTTP/1.1 

                                        
                                            
Host: hittmeel.co.uk

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         23.106.66.242

                                        
                                            HTTP/1.1 301 Moved Permanently 

                                        
                                            
content-type: text/html; charset=UTF-8

                                        

                                        
                                            
Connection: Keep-Alive 

                                        
                                            
Keep-Alive: timeout=5, max=100 

                                        
                                            
expires: Thu, 19 Nov 1981 08:52:00 GMT 

                                        
                                            
cache-control: no-store, no-cache, must-revalidate 

                                        
                                            
pragma: no-cache 

                                        
                                            
set-cookie: PHPSESSID=cc5e07ff99ae250c85c0506f6635f696; path=/
short_oUD3j=1; expires=Sun, 27-Nov-2022 22:29:27 GMT; Max-Age=1800; path=/; HttpOnly 

                                        
                                            
location: https://ddnzje.prodlgiousdates.com?utm_source=da57dc555e50572d&s1=144163&s2=1677385&s3=Akkk_16&j1=1 

                                        
                                            
vary: Accept-Encoding,User-Agent 

                                        
                                            
content-length: 20 

                                        
                                            
content-encoding: gzip 

                                        
                                            
date: Sun, 27 Nov 2022 21:59:27 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   20

                                                Md5:    7029066c27ac6f5ef18d660d5741979a

                                                Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4

                                                Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: AirWrndyH0uDGXO60QmSgQ== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket

                                         52.35.167.249

                                        
                                            HTTP/1.1 101 Switching Protocols

                                        

                                        
                                            
Connection: Upgrade 

                                        
                                            
Upgrade: websocket 

                                        
                                            
Sec-WebSocket-Accept: bwBfAgpqRoYxOPFHnH/MP05yweA= 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /landings/277110/1669380007/css/style.css?1669380007 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
x-amz-id-2: 3qLxix7l4P3EkMPQ+ivdSfI3CC4kvyQTfqna30VUsPPpURiEUOs0GUf606oz+6axD93rQMFyHk4= 

                                        
                                            
x-amz-request-id: YHWH4A3SWBAA1TV6 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "85d49a96dad18822746f4cf9e8a3dab6" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Content-Length: 3194 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   3194

                                                Md5:    0386c4a4ad6de8521e98853da12e8219

                                                Sha1:   06cae44ddea3f3ae94d4806e43a8163eb657228b

                                                Sha256: 18981907b9c80ad776ca328ba2adeee36fcf7a41427c4df9aa09c6122c34afad

                                        
                                            GET /landings/277110/1669380007/css/comments.css?1669380007 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
x-amz-id-2: KxkWKsklUnjzX5kPbQirybnNBbWs7cIjNdA/zdPLruUzvBDWUbfb2D6do3OkfEVTjvJ4sk1ZDvAToj4fANA00A== 

                                        
                                            
x-amz-request-id: SE3F8JA1BZYZ5P8M 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "d06dc5b29b4de4943cdaa75696ff7c2f" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Content-Length: 985 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with CRLF line terminators

                                                Size:   985

                                                Md5:    e39ffe6a97a52915c4e8a0a451a9b3a9

                                                Sha1:   836d52a2eefd9178898417c92ad53c6f716bdc17

                                                Sha256: cd29c00865da17361d05c5d9eccee2c855687d57dc167273bfe4569f805dffa4

                                        
                                            GET /landings/277110/1669380007/js/jquery-2.2.4.min.js?1669380007 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: hA8E0YW8mwo6To7la5raHy1SkF41I2Ljw8eext4bdrxVFbg6y/6v08ew2rpw5VlaORk9AGy5v0Y= 

                                        
                                            
x-amz-request-id: SE3CG9YYWR15EZY5 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT 

                                        
                                            
ETag: "2f6b11a7e914718e0290410e85366fe9" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Content-Length: 29855 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (32065)

                                                Size:   29855

                                                Md5:    2fa28552f1ee4e1382ee43930b53afb8

                                                Sha1:   803670da6a35378bf4eb73acc8e72fe4feb5ca30

                                                Sha256: ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494

                                        
                                            GET /landings/277110/1669380007/js/tn_pHash.js?1669380007 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: l24II4je276eDM3kgUQPWR30kPx/oD56tIlmVlUFPfdsJjV+y8vTad6IIGIbUajDuulRqA2F+IQ= 

                                        
                                            
x-amz-request-id: YHWRJCHJWMMN929M 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT 

                                        
                                            
ETag: "3544c08851825a863747a126548d6993" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 252 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   252

                                                Md5:    3544c08851825a863747a126548d6993

                                                Sha1:   01882998e61b9f93d5f346386fa633f6b8d95b2d

                                                Sha256: 9804b1c7443db74b2d7fe81cf11d84c8f0d9a7dee281b4fe8c15552bdc7eed69

                                        
                                            GET /landings/277110/1669380007/js/translates-review.js?1669380007 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: TUwNMEorlVhmmQRTvZ4PtKvXYpQ8TiSuIyrxEGkaKPfCGqbDvjUX3Yu9ffd2yHzolZR17YcL9i0= 

                                        
                                            
x-amz-request-id: HXP25N7MQS75YACF 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT 

                                        
                                            
ETag: "fe0aae6f9135f4ae6b865596d5536572" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Content-Length: 14009 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text

                                                Size:   14009

                                                Md5:    c7fe64ab27fa6636d47e268eb6097573

                                                Sha1:   4095663454037fe276f45bd45c88f3742cc8618d

                                                Sha256: 5f7d54f2a3e32dea4d98b026e24552def3b8eb2c6971cbf453613fc65e7468ae

                                        
                                            GET /landings/277110/1669380007/js/title_tanslate.js?1669380007 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: rO3DS8dPWpXnbLvoejmdK1dbs3OuzNIBF/qiBa3OBhVpKo5oCPbq2/Q9l255o3Nxjgdi7BNJTgo= 

                                        
                                            
x-amz-request-id: RB06MYEFKZQ8GNV4 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT 

                                        
                                            
ETag: "5f373fa5bf21c44b9ad23b70ef96e73d" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Content-Length: 1298 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text, with CRLF line terminators

                                                Size:   1298

                                                Md5:    0e212ad4454c941c45c2e57df42c2b4f

                                                Sha1:   fe9d7c484c2c0d7a6475692ef984c53a06c95406

                                                Sha256: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    5af61422c4eaa1b995ec63e463abda26

                                                Sha1:   db75634681ed688840773ce828c169ac9da7d131

                                                Sha256: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895

                                        
                                            GET /landings/277110/1669380007/images/5-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: a2K4LJJYSCMlfkpdi7XYV4YxqqmNrySXxPzHJRPUWKWgf50MnGtJWoxvXiEXZ5AG+GAVRZcig0w= 

                                        
                                            
x-amz-request-id: M1E8E3SXYSEQ0EA2 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "27109a247208262e6293950ca8f5450d" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2879 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   2879

                                                Md5:    27109a247208262e6293950ca8f5450d

                                                Sha1:   cea89616d15ad45a0f2b04082dff608abd96b800

                                                Sha256: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96

                                        
                                            GET /landings/277110/1669380007/images/1.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: IP39waPnZRmPQYSxiMQ3R7r+ER/ouey24ZCI2ectFX7zeNMJwQkULHSb3JK6deLne6wq4/5kWkE= 

                                        
                                            
x-amz-request-id: HXPDAM29RWPPJPC6 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT 

                                        
                                            
ETag: "765620bf3d6dcdb5495b70409b6b4ba8" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 62164 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 900x1280, components 3\012- data

                                                Size:   62164

                                                Md5:    765620bf3d6dcdb5495b70409b6b4ba8

                                                Sha1:   f4a00a38ca93130e5e0398deea0ba2f928e2172b

                                                Sha256: e0d65a21b743f7fe6de2f4bd57316546e7f30c7810740d68322a44dfe3004373

                                        
                                            GET /landings/277110/1669380007/images/logo-white.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: 0hnTOMjaLTEcee6jvhffHOUAVV+6wuHj7snluSjlJDrrvjUYE6vmNQY6i3mHcaQwOxeFjpx0sVQ= 

                                        
                                            
x-amz-request-id: KJC2M7FG6P8NF19M 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT 

                                        
                                            
ETag: "27a8fdccc08741c52422bd4852f87c3a" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 9461 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 300 x 124, 8-bit colormap, non-interlaced\012- data

                                                Size:   9461

                                                Md5:    27a8fdccc08741c52422bd4852f87c3a

                                                Sha1:   b103730d95829f64c0746b97a85e0ada4f6c18a2

                                                Sha256: 7afbc6f7cb728a9b4dfd7791a8207c60bdd255ea2f00ba12880bee15f7fbdff0

                                        
                                            GET /landings/277110/1669380007/images/shield.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: InmWGGtJz/XQ98t1JAeohiMuTlJ68ZQnVArn6+3DgSaePSKh2X/I9GPw/cnRlcu8xz8Bp8c3e0s= 

                                        
                                            
x-amz-request-id: KJCA28RWFTHW9SXT 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1539 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310)

                                                Size:   1539

                                                Md5:    0c7a0dfd64cf020cd8a6dc0c3df1dbdf

                                                Sha1:   f705635388aebebae1223d828c38233067f28ab1

                                                Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888

                                        
                                            GET /landings/277110/1669380007/images/1-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: RMdnqkOTJpdONvTLBYvlaVP+FLsUf5YdfV9XrXcemmHORTZX6ZzgAS9hHjfK9qFfnGQnRw8WNrg= 

                                        
                                            
x-amz-request-id: 6S4T86B48KSRTRSC 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "6e6d0b84c81d847e24671a711115a781" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 4292 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   4292

                                                Md5:    6e6d0b84c81d847e24671a711115a781

                                                Sha1:   20dc2d359e437dc10ceefea4d3c7b5189c2e58d0

                                                Sha256: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553

                                        
                                            GET /landings/277110/1669380007/images/password.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: S3QKCYrVfXLOPatQoEsuzKWreDpdH2pXAeAZjqiLuW6WSrQEcQlaDc/An6BtrU9jqLlUIUK/v70= 

                                        
                                            
x-amz-request-id: AD6BFCVABJEZ35K3 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "f42aef7f97d4c9bdb074673081f38ac7" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1339 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (330)

                                                Size:   1339

                                                Md5:    f42aef7f97d4c9bdb074673081f38ac7

                                                Sha1:   0231df782e371d139c826e091279acd9a07e691c

                                                Sha256: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac

                                        
                                            GET /landings/277110/1669380007/images/3-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: 9WwZn7602znhUl3mmGALpZ2HVOc129bj/vYplRa403TxJVwi4SbzGXPvD1q5i6idPWyzwozmWdg= 

                                        
                                            
x-amz-request-id: 6S4SAGRW9Q40ZQQ9 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "1dc512dcb0850f22cfa72c789578085c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 3946 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 80x80, components 3\012- data

                                                Size:   3946

                                                Md5:    1dc512dcb0850f22cfa72c789578085c

                                                Sha1:   933e9c5648e782c9f9a1504d2248f0acb4b9950b

                                                Sha256: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00

                                        
                                            GET /landings/277110/1669380007/images/2-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: 94B+qg44bfwckEWeh/+FXoD0JuETZNY2gkuV45MB6Wux/V7D90illuhFfcsY9TOtFhQEl5/uUFA= 

                                        
                                            
x-amz-request-id: 6S4WJE4RA6GX4PCE 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "66b6dc51bd19c799dcadf1dbeb628d9c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2009 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   2009

                                                Md5:    66b6dc51bd19c799dcadf1dbeb628d9c

                                                Sha1:   ff7fe6049e944186764bfc5041d624ec11f8d362

                                                Sha256: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0

                                        
                                            GET /landings/277110/1669380007/images/action_icons_20px_2x.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/landings/277110/1669380007/css/comments.css?1669380007 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: n0JrO/Dcp5bv4kj739clPJZtLl2z6zFl4iFa9ByEtIH2m0pyfO+XmspHHiOoapNjpwjSOlEGR6I= 

                                        
                                            
x-amz-request-id: M1E03VDK0MDFGEGQ 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "b699975b5fe73b087e711a33ff24ee1e" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1726 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data

                                                Size:   1726

                                                Md5:    b699975b5fe73b087e711a33ff24ee1e

                                                Sha1:   0e33cc5c32a5e7d18440751e3946076664caaf53

                                                Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e

                                        
                                            GET /landings/277110/1669380007/images/shutterstock_1769158304_web.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/landings/277110/1669380007/css/style.css?1669380007 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: JPDlVh+JBvFsOF6H4OkSlIp+fUffISZ6TaWiMkRo4srkCSonkNLUbWBBA5wx724DRntA3mAKUjA= 

                                        
                                            
x-amz-request-id: M1E5S96R90KA40HB 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "ac6e0136f9f9e5a7d548072ed5c43b8d" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 151084 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data

                                                Size:   151084

                                                Md5:    ac6e0136f9f9e5a7d548072ed5c43b8d

                                                Sha1:   a74aee9e6d1dd0ba9d8ff1200b5eb4e29e0e342d

                                                Sha256: 92e2e82e49518b2aec5178e8a9f4dc707953d9f345df4e6fbe94cf6b58d4a1cf

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    e9895464b828d538dc654c678c82b181

                                                Sha1:   af5791cd48761cb3f3f979b481c23e1508692823

                                                Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    e9895464b828d538dc654c678c82b181

                                                Sha1:   af5791cd48761cb3f3f979b481c23e1508692823

                                                Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://ddnzje.prodlgiousdates.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://fonts.googleapis.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         216.58.207.195

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 15744 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Wed, 23 Nov 2022 19:34:08 GMT 

                                        
                                            
expires: Thu, 23 Nov 2023 19:34:08 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 354320 

                                        
                                            
last-modified: Wed, 11 May 2022 19:24:48 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data

                                                Size:   15744

                                                Md5:    15d9f621c3bd1599f0169dcf0bd5e63e

                                                Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52

                                                Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

                                        
                                            GET /css2?family=Roboto:wght@300;400;700&display=swap HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.10

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
expires: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
cache-control: private, max-age=86400 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   10304

                                                Md5:    dfe0ccb70e823d9ba5b33c96bed296ef

                                                Sha1:   a854a28e0d5b085a0c3d88eb2d1afc7ce85aff7d

                                                Sha256: d8f3c454949995e6e5d1386b1e12dcf911c2a80bd972b12e0061cd8578f465a7

                                        
                                            GET /landings/277110/1669380007/images/favicon.png?t=20221127215928 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: 2pebgRNohFTDEF97cw553QwwUbgCpYAJBzmU6zyD2ANRqpR0khVU0lj1L3lcJ7nkCZMB7i7vL0c= 

                                        
                                            
x-amz-request-id: F5CBPDDNQSZQ8E4G 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "40a54c3ecf143b64096b063ff793fdbb" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 4093 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   4093

                                                Md5:    40a54c3ecf143b64096b063ff793fdbb

                                                Sha1:   017eafffc5e55226a2aec0dd3c03f1b6130a6bab

                                                Sha256: 39b439471019cb16f819e05166d23492593310fd55cce8471062d8f2dc5de423

                                        
                                            GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1 

                                        
                                            
Host: www.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript; charset=UTF-8

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="firebase-js" 

                                        
                                            
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} 

                                        
                                            
content-length: 10017 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Mon, 21 Nov 2022 18:29:53 GMT 

                                        
                                            
expires: Tue, 21 Nov 2023 18:29:53 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 530975 

                                        
                                            
last-modified: Thu, 10 May 2018 20:35:52 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (35547)

                                                Size:   10017

                                                Md5:    fa9987a23f5a9d865766e952511baa30

                                                Sha1:   f2e620b99ee61a01671ba6a9e22ca75d58a1b52d

                                                Sha256: 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7

                                        
                                            GET /?utm_source=da57dc555e50572d&s1=144163&s2=1677385&s3=Akkk_16&j1=1 HTTP/1.1 

                                        
                                            
Host: ddnzje.prodlgiousdates.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         52.19.101.114

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=utf-8

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 27 Nov 2022 21:59:28 GMT 

                                        
                                            
set-cookie: unique_id=6383a5d9000038c4; Path=/; Expires=Thu, 26 Jan 2023 21:59:28 GMT; Secure; SameSite=None
unique_id2=6383d4bf000f889a; Path=/; Expires=Sat, 25 Feb 2023 21:59:28 GMT; Secure; SameSite=None
6383d4bf000f889a_c=1; Path=/; Expires=Sat, 25 Feb 2023 21:59:28 GMT; Secure; SameSite=None
ref_token=178740_142414_160484_50714_25282_144163; Path=/; Expires=Tue, 27 Dec 2022 21:59:28 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Sun, 27 Nov 2022 21:59:28 GMT; Secure; SameSite=None
6383d4bf000f889a_sl=[277110]; Path=/; Expires=Sun, 11 Dec 2022 21:59:28 GMT; Secure; SameSite=None 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   8398

                                                Md5:    657083b5f45c41e978a78dbef358273a

                                                Sha1:   3d01d7ed0d06f8cf8085837fc086ee92acccaf51

                                                Sha256: 54ff6a63d714219ef4018b1975e64b1096130ac6f9d98cd40ded533a4370a11c

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" 

                                        
                                            
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3391 

                                        
                                            
Expires: Sun, 27 Nov 2022 22:56:00 GMT 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:29 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    aebda342a81ad83f60d2523f54ccda67

                                                Sha1:   e590d9326e4a283e0929a8ffccb13cc4308af0e6

                                                Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" 

                                        
                                            
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3391 

                                        
                                            
Expires: Sun, 27 Nov 2022 22:56:00 GMT 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:29 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    aebda342a81ad83f60d2523f54ccda67

                                                Sha1:   e590d9326e4a283e0929a8ffccb13cc4308af0e6

                                                Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8817 

                                        
                                            
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: b-krGE6AIAMF2Kg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: I6egDH0h7D08HhaoQHQ0vgghBhPfje2lGIbnWD-t7p4txzHsFxmZfg== 

                                        
                                            
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 16:15:23 GMT 

                                        
                                            
age: 20646 

                                        
                                            
etag: "308c08784ce4a0757cbd112807555b83e17a1d56" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8817

                                                Md5:    741ddfb19764ac9a77509e7e87cfbfb2

                                                Sha1:   308c08784ce4a0757cbd112807555b83e17a1d56

                                                Sha256: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8387 

                                        
                                            
x-amzn-requestid: e4ce369f-7654-4c1a-94c2-70c913eb1a01 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cFL0tEcqIAMFXHw= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-637ec01d-37bd969f4cdfe220096b8c1f;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Thu, 24 Nov 2022 00:51:41 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: __2hrJIdzCKzhuJ_YfbSSfz-WwyIqnPugk7P6SuYSjn6b2wwm0otCw== 

                                        
                                            
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 20:58:19 GMT 

                                        
                                            
age: 3670 

                                        
                                            
etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8387

                                                Md5:    4e97baa4851785eac92c719abf481c64

                                                Sha1:   c32a57038d3cdbc514c9081c9938eca6a04fb481

                                                Sha256: adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22

                                        
                                            GET /landings/277110/1669380007/images/2.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: 2SS0ccQiImX7GK6Z2uPJiu1s3NQUjgFcnDfwC3OpNZqfeFxGwnDCnvQbEA9NIax5M9HT1+9madA= 

                                        
                                            
x-amz-request-id: XEPYD4CV3JPFPJGT 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT 

                                        
                                            
ETag: "3b8b455b24c71ae1f928266241e9517e" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 102832 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 960x1280, components 3\012- data

                                                Size:   102832

                                                Md5:    3b8b455b24c71ae1f928266241e9517e

                                                Sha1:   8b98ca60c92b83e039c3b996f090883ed8b7ca75

                                                Sha256: c8d05f7eda85f68f0a08307eeee4e481282fda95570dd53f300b8aadd4f504f6

                                        
                                            GET /landings/277110/1669380007/images/1.mp4 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Range: bytes=0- 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://ddnzje.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: video 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 206 Partial Content 

                                        
                                            
Content-Type: video/mp4

                                        

                                        
                                            
x-amz-id-2: PbeNqnv1aqRlWQmB6KNWzh8Rvru2G8OhIH8n6BdwcBEP05Y53X9D7/xXHaogL4NZf20cWNbP+FE= 

                                        
                                            
x-amz-request-id: XCHWYJP04CJXDZED 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT 

                                        
                                            
ETag: "379ddec6d7d6e118bd7565d1c83dbb90" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Date: Sun, 27 Nov 2022 21:59:30 GMT 

                                        
                                            
Content-Range: bytes 0-1560163/1560164 

                                        
                                            
Content-Length: 1560164 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data

                                                Size:   1560164

                                                Md5:    379ddec6d7d6e118bd7565d1c83dbb90

                                                Sha1:   16becb1b44f3f35b0fa239668901338cba6eff06

                                                Sha256: 5635dd2c6c23dfdc3e4eb82afc4231a27e8522ec332b8568a3fc7ae8755fec94

                                        
                                            GET /redirect?event=comments&redir_token=QUFFLUhqbU9ZZlNwV0R1NlctalpnMzdHOU8ya2w0ZG5oQXxBQ3Jtc0ttX0habVgxMlJNOFlLZUhnck04bUl3RFVXeHRZc3k2Nmd6VmMxbFZiRWZvREF1bDlKU0V3U2I5RnU4SjZ6cmRfdlp1RW9GMGgtaXYwUUFvR0pWeTNUYUpySnBCY3B3TUduWU5RWWNwMEN1RmxUUWJsTQ&q=http%3A%2F%2Fkaygater.online%2Fc%2Fubfda4kobo&html_redirect=1 HTTP/1.1 

                                        
                                            
Host: www.youtube.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1

                                         216.58.207.238

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=utf-8

                                        

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
cache-control: no-cache, no-store, max-age=0, must-revalidate 

                                        
                                            
pragma: no-cache 

                                        
                                            
expires: Mon, 01 Jan 1990 00:00:00 GMT 

                                        
                                            
date: Sun, 27 Nov 2022 21:59:27 GMT 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
cross-origin-opener-policy-report-only: unsafe-none; report-to="youtube_main" 

                                        
                                            
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]} 

                                        
                                            
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=* 

                                        
                                            
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info." 

                                        
                                            
content-encoding: br 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
set-cookie: YSC=BiM7hbBrHTA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=; Domain=.youtube.com; Expires=Mon, 02-Mar-2020 21:59:27 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+238; expires=Tue, 26-Nov-2024 21:59:27 GMT; path=/; domain=.youtube.com; Secure 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	kaygater.online/ubfda4kobo
IP	65.109.26.202 (Germany)
ASN	#24940 Hetzner Online GmbH
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-11-27 21:59:38 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	4
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (16)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 65.109.26.202

Last 5 reports on ASN: Hetzner Online GmbH

Last 2 reports on domain: kaygater.online

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (22)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (79)

Overview

Domain Summary (16)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 65.109.26.202

Last 5 reports on ASN: Hetzner Online GmbH

Last 2 reports on domain: kaygater.online

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (22)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (79)

Network Intrusion Detection Systems