Overview

URLit.gratissesso.me/click?o=195&a=2951
IP 18.194.62.185 (Germany)
ASN#16509 AMAZON-02
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-27 17:36:41 UTC
StatusLoading report..
IDS alerts0
Blocklist alert4
urlquery alerts No alerts detected
Tags None

Domain Summary (17)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
lavavq.amazlngdate.com (5) 0 No data No data 52.19.101.114 Unknown ranking
img-getpocket.cdn.mozilla.net (7) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
it.gratissesso.me (2) 0 No data No data 18.194.62.185 Unknown ranking
r3.o.lencr.org (8) 344 No data No data 23.36.77.32
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-27 05:29:57 UTC 34.117.237.239
ocsp.sca1b.amazontrust.com (2) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.88
ssl.scaletrk.com (2) 0 2022-06-02 21:36:10 UTC 2022-11-27 15:50:50 UTC 18.194.62.185 Domain (scaletrk.com) ranked at: 645511
cdn-dimi.akamaized.net (42) 0 No data No data 184.31.15.107 Domain (akamaized.net) ranked at: 280
ocsp.pki.goog (6) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-27 05:33:29 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
it.gratissesso.me (2) 0 No data No data 18.195.157.163 Unknown ranking
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.161.136.21
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-27 05:34:18 UTC 142.250.74.10
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-27 05:29:56 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-11-27 05:33:29 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-27 2 lavavq.amazlngdate.com/ortb Phishing
2022-11-27 2 lavavq.amazlngdate.com/js/pushjs/1.0.0/utils.js Phishing
2022-11-27 2 lavavq.amazlngdate.com/js/pushjs/1.0.0/subscriber.js Phishing
2022-11-27 2 lavavq.amazlngdate.com/js/service-worker.js Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 18.194.62.185
Date UQ / IDS / BL URL IP
2022-11-27 17:36:41 +0000 0 - 0 - 4 it.gratissesso.me/click?o=195&a=2951 18.194.62.185
2022-11-27 15:51:06 +0000 0 - 0 - 2 it.gratissesso.me/click?a=1686&o=135 18.194.62.185
2022-11-22 11:01:38 +0000 0 - 0 - 4 v2.trckguardlnk.com/click 18.194.62.185
2022-11-18 12:29:43 +0000 0 - 0 - 1 cpttrcklnk.com/ 18.194.62.185
2022-11-18 12:24:38 +0000 0 - 0 - 1 cpttrcklnk.com/ 18.194.62.185


Last 5 reports on ASN: AMAZON-02
Date UQ / IDS / BL URL IP
2023-02-05 11:50:44 +0000 0 - 6 - 0 stylewe.com/?irclickid=w0iRRQWlTxyNWFMwXdRA53 (...) 54.192.99.114
2023-02-05 11:49:46 +0000 0 - 6 - 0 www.rebatesme.com/stores/paw?c2=218315&key=3f (...) 52.198.37.191
2023-02-05 11:46:16 +0000 0 - 2 - 0 wddashboarddownloads.wdc.com/wdDashboard/Dash (...) 54.230.111.75
2023-02-05 11:42:49 +0000 0 - 0 - 2 pratodamulher.net/ 75.2.18.233
2023-02-05 11:42:43 +0000 0 - 0 - 1 scided-mington.com/482c1de4-3f8d-47c4-aa7a-80 (...) 18.195.174.160


Last 5 reports on domain: gratissesso.me
Date UQ / IDS / BL URL IP
2023-01-29 04:37:11 +0000 0 - 0 - 2 it.gratissesso.me/ 3.122.58.94
2023-01-22 02:04:38 +0000 0 - 0 - 4 it.gratissesso.me/click?o=281&a=4393 3.122.58.94
2022-12-05 01:48:38 +0000 0 - 0 - 4 it.gratissesso.me/click?o=262&a=4197 3.66.74.238
2022-11-27 17:36:41 +0000 0 - 0 - 4 it.gratissesso.me/click?o=195&a=2951 18.194.62.185
2022-11-27 15:51:06 +0000 0 - 0 - 2 it.gratissesso.me/click?a=1686&o=135 18.194.62.185


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-11-28 13:53:17 +0000 0 - 0 - 3 lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...) 52.19.101.114
2022-11-27 15:51:06 +0000 0 - 0 - 2 it.gratissesso.me/click?a=1686&o=135 18.194.62.185
2022-11-26 14:46:52 +0000 0 - 0 - 4 eileen.erikschultz.xyz/_meetups/?click_id=war (...) 70.32.23.110
2022-11-26 07:57:54 +0000 0 - 0 - 3 qvznmz.impresslvedate.com/c/1e3a4e532f1c7040? (...) 52.19.101.114
2022-11-24 13:23:37 +0000 0 - 0 - 2 lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...) 52.19.101.114

JavaScript

Executed Scripts (22)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (84)


Request Response
                                        
                                            GET /click?o=195&a=2951 HTTP/1.1 
Host: it.gratissesso.me
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         18.195.157.163
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: awselb/2.0
Date: Sun, 27 Nov 2022 17:36:29 GMT
Content-Length: 134
Connection: keep-alive
Location: https://it.gratissesso.me:443/click?o=195&a=2951


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   134
Md5:    4aa7a432bb447f094408f1bd6229c605
Sha1:   1965c4952cc8c082a6307ed67061a57aab6632fa
Sha256: 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8984
Expires: Sun, 27 Nov 2022 20:06:13 GMT
Date: Sun, 27 Nov 2022 17:36:29 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5023
Cache-Control: max-age=152307
Date: Sun, 27 Nov 2022 17:36:29 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:54:56 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 17:17:40 GMT
cache-control: public,max-age=3600
age: 1129
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14582
Expires: Sun, 27 Nov 2022 21:39:31 GMT
Date: Sun, 27 Nov 2022 17:36:29 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: Qd+067DqQK3kGaSn9IOWZMxDo+/Mt39n/Puppvsc6+eOuzdToMR7p66l22U+qITWIwVfD+qamr8=
x-amz-request-id: 9XXEHHG0GKNTKRX5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 16:44:42 GMT
age: 3107
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 27 Nov 2022 17:36:29 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=96158
Date: Sun, 27 Nov 2022 17:36:29 GMT
Etag: "638274bb-1d7"
Expires: Mon, 28 Nov 2022 20:19:07 GMT
Last-Modified: Sat, 26 Nov 2022 20:19:07 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: APbFzTk_XQtlD6uuFXKqKJlY7lGNhppfy7TWrg8hdLQiR-96cNaXdw==

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 17:11:12 GMT
cache-control: public,max-age=3600
age: 1518
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5852
Cache-Control: max-age=148074
Date: Sun, 27 Nov 2022 17:36:30 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:44:24 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=116672
Date: Sun, 27 Nov 2022 17:36:30 GMT
Etag: "6382c4de-1d7"
Expires: Tue, 29 Nov 2022 02:01:02 GMT
Last-Modified: Sun, 27 Nov 2022 02:01:02 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: d-ToYcekR8ZYr-Ao7wWzG2HMNFO1uiT7NFTNxoLrb3d1Is0hCicwEg==

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MdlR93GGSEvis7v5v4BE6Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.161.136.21
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 34TjEa8GvhcsZw7fnzfJsmF1NIs=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8989827157959E4FD7134E9C2176EDD99D0ED00DAB686DF1CBFB82DB8E3DF5BB"
Last-Modified: Sat, 26 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15271
Expires: Sun, 27 Nov 2022 21:51:01 GMT
Date: Sun, 27 Nov 2022 17:36:30 GMT
Connection: keep-alive

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ssl.scaletrk.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: U-0a09c8844ba8f0936c20bd791130d6b6=unique; o_0a09c8844ba8f0936c20bd791130d6b6=cbaaddf5-58ca-422e-b169-95cb4f197b54
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         18.194.62.185
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Sun, 27 Nov 2022 17:36:30 GMT
content-length: 318
server: nginx/1.20.0
last-modified: Tue, 04 May 2021 06:35:26 GMT
etag: "6090eb2e-13e"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 16 colors, 4 bits/pixel\012- data
Size:   318
Md5:    a976d227e5d1dcf62f5f7e623211dd1b
Sha1:   a2a9dc1abdd3d888484678663928cb024c359ee6
Sha256: 66332859bd8e3441a019e073a318b62a47014ba244121301034b510dc7532271
                                        
                                            GET /landings/277102/1669380390/css/style.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: fMP/tLbcMEiHN4MqoAHpI2PgOzMhAFbCruE1ljwGCo3Fnqcg775pXRXLYdLhfOFukkD/MYu3/E8=
x-amz-request-id: JCSNZ0H63XQARYKM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "2d96fbf9ec06f2fff854c8b5bce34c4a"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 17:36:31 GMT
Content-Length: 5068
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text
Size:   5068
Md5:    b453429d3795c3f23b9997af593bd88f
Sha1:   28f61e808eb92d9b30d0ea31a8c621bdda81fbd6
Sha256: 41d21332f95e1a56a71acec80af7d7975b6b336d3955ca8f751bb31f6345252d
                                        
                                            GET /landings/277102/1669380390/css/swiper.min.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: /MH4gjIu4cWUcyYSfTYKgx/EpLe70de48x9c504jMoW6mUvKYMpKygoCZy/tS9fEryPa4x9LZnE=
x-amz-request-id: JCSM61FVDFX2J1FT
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "0290288128c98d0d598dfe514d95f138"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 17:36:31 GMT
Content-Length: 4127
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (13419)
Size:   4127
Md5:    6bef01d7afe09be2c610f0a7f329bcab
Sha1:   7dade81a732f80a283afe4df7af93adb3ff07d7a
Sha256: 8ec6b92ec87d87752bf8e86285de3b7d25e360971b324af8ea4e6dc8f5bd5ae2
                                        
                                            GET /landings/277102/1669380390/css/popup.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: n6lUB+2+IHHvTVZrwZp/lRm/9Z1X8LJNtcWI0Zj+eCuApt+fFYYDL9pp99hxFyGY5ofKutsv0YY=
x-amz-request-id: JCSPT67HN3CE0JVM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "e43bad8a7da8b62b8eb981230df1c042"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 17:36:31 GMT
Content-Length: 573
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   573
Md5:    49fd3d42563c4535cbdd6f95c11016d5
Sha1:   40606364ce01c442ba79daa01c4db5f7c8f57020
Sha256: c19c9920be6d3f5d0d09047d20a5ec3ae01bae5008a0e3cc930594ca4520aaf9
                                        
                                            GET /landings/277102/1669380390/css/reviews.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: auTBFL4rmJIr/fbgcUf1UXDaHTBoxsTVWS7g5mVxHftUNgaik+qm6veGPV0P4QRRuPuKjtM6E0M=
x-amz-request-id: JCSX08RXN0789N4C
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "ea4bfe4dc6b6ecec85d2817514238d7d"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 17:36:31 GMT
Content-Length: 1226
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text
Size:   1226
Md5:    4601f862c9729d2c7d93cfce724d0ccb
Sha1:   dc15bfcf310ecc2ca5ff8a6f0a873ec5f1ac28e5
Sha256: 0d9bedbbd7155e1dabc76c812dacaee922c372e6479ce17dc72f80e977033104
                                        
                                            GET /landings/277102/1669380390/js/trls.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: +Fg9OWUa0WuZnL63xR9sw79VOmUwqDClcKQFP1BoVTl+OZcX5KCV6uhVlRk3VAudBlgmOGqEVm4=
x-amz-request-id: JCSZN4TY06QCJYZV
Last-Modified: Fri, 25 Nov 2022 12:46:37 GMT
ETag: "dca4f0b0f022c4c8bf1a754b77d78d58"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 17:36:31 GMT
Content-Length: 12801
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   12801
Md5:    d86262927ea09f3e261df1719c5b3778
Sha1:   670644bb22041350ea46f31e6051df60f470b834
Sha256: 3657d88d817d44dddc645f1979f76f91aa5d36d540bc4c9be2a5b16e6402213d
                                        
                                            GET /landings/277102/1669380390/js/jquery.min.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: HBCzh5ACSKlt7uGHV9+YfwczV2ch3mCf0Tf1ciAEfLJfz3HtPGRgoXxZGGy9Qo3KTUkvan6qz1k=
x-amz-request-id: JCSN3QZ9Z9CW6512
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "b091a47f6b91e26c93a848092c6f3788"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 17:36:31 GMT
Content-Length: 33315
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (32038)
Size:   33315
Md5:    f32bc3ff91b7d8e3cee993d93ba616bc
Sha1:   70902bada7722edb4e6be6f90453d6c2c03bbad8
Sha256: fbdef831016761a2ad211333df4d830aae94cc768f440af5546f78677379fc2e
                                        
                                            GET /landings/277102/1669380390/js/transl-sb.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: 5a1z0B8qh0v0csZgc8XPhbObOZ2K/Jqajh/TINzo2aektrE0GqGEJJ7d8+QRWqAHB/G8ajOIPCg=
x-amz-request-id: JCSJS4M2JGFE6P62
Last-Modified: Fri, 25 Nov 2022 12:46:37 GMT
ETag: "2873c50f584a0ecc0e878c84ca22a67a"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 17:36:31 GMT
Content-Length: 1998
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   1998
Md5:    1e0d2c655db08220da06f5ceb7222ef8
Sha1:   83232c5ecc575b33d52ae60eb2a0279f993839b9
Sha256: e1be7226ec934304e5ca5b783aaf06b1f3fe497308c46613e2962eaed7e81c3c
                                        
                                            GET /landings/277102/1669380390/js/main_alt.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: hAPT4miCwtjvVincYE1KEAhuATKfI2bnRCticHblkzjDAtYD5Nz6suhe9AN3cHim276JM5NOrzk=
x-amz-request-id: JCSW5M6KENNGME45
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "949590b2dcd7b3f095730a16debf6842"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 17:36:31 GMT
Content-Length: 6169
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (332)
Size:   6169
Md5:    699888c7e0d1d6a922ad6a031605e45e
Sha1:   f455bc5c0ee3b386bf54855bc73a34739598eeb5
Sha256: edb4d84f456e601b25bd25e0ff5b3402925aa1fa24bee95573473033fb38e835
                                        
                                            GET /landings/277102/1669380390/js/translates-review.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: FiCI5FX21Kui3NwdZqIDJ+HC9ZMTkaTIaGnaD4jgEok1qWO9oGNCqJsRBa0YLOf5NpJleeBYHVM=
x-amz-request-id: JCSYSH1TQW6HQ0KY
Last-Modified: Fri, 25 Nov 2022 12:46:37 GMT
ETag: "09cf03d0a77b07d6c8969b853e74ee80"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 17:36:31 GMT
Content-Length: 16602
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   16602
Md5:    d708297aefc5b8d49a3bfd335b775806
Sha1:   964ff9e651d4dc26bf81c4d34d9a586e1983ea62
Sha256: 06a439afe49b086cebf4a654afea5b654170953bcef987f7229b6c01071f977d
                                        
                                            GET /landings/277102/1669380390/js/swiper.min.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: JsS0dnoc8Qg8x4AGz+D9aRLFXWeRCSF4ffDxKhnisIm5+S1WF8h7sRG/y3zvaC7Jyg/RIHn82iA=
x-amz-request-id: JCSWMJT0NXBSHFYM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "70610853eb13bcedd94269762ff7e9fd"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 17:36:31 GMT
Content-Length: 38997
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (790)
Size:   38997
Md5:    2ba7c48fe2c5ab2343d8666220ef1bd7
Sha1:   cec8c61c7abc2f3fb3405182938963ada4c1eb0e
Sha256: 6a00e257157534430b71a24e695822885ab0ad33b3460ad96519ee7353d75ed9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 17:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /landings/277102/1669380390/images/logo.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: n5zIFivvIOWSv1RVAzcJnTKI9Kkf0a5X3pQ1soikOyjNIPTTyH99ub0k7HghawWSPdTbJo/Sq5w=
x-amz-request-id: QG3G4BTNS26JBESJ
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "8c7ac40cbb3b09d628f0e04da43a597e"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 7208
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4317)
Size:   7208
Md5:    8c7ac40cbb3b09d628f0e04da43a597e
Sha1:   8a3bd6042a1ce39c2bc59f90299894b0e5c2d64c
Sha256: 29b773e1e21f12741ab91bf1550e128ba699284a81350329ecacc38e9875e3d1
                                        
                                            GET /landings/277102/1669380390/images/card-4.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 8qFwZT1glzkI0CybqbCnmEFlMUJUuQLd6RL4c/ITDvt3x0JapboHHSFPJA281rkSs/8EjqO6EhA=
x-amz-request-id: N7YZ4NZF4GABT28S
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "2c064aae31305ad28aec8cd38499d9de"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8321
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8321
Md5:    2c064aae31305ad28aec8cd38499d9de
Sha1:   c0e3e307a3fbfc0b8072fa625e80e9ccf6e90320
Sha256: f1abc5e31c804b10bcabdeddd2f4d4147e4727e9fdfe264654e87aabb6a031a6
                                        
                                            GET /landings/277102/1669380390/images/card-8.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: wxYRUAxsBpAmcshKrNRPQRfuLYhJBnnl0J/ipWj0B6ZKRsrum3Dzy8MDH9mVVvtRqhjAg0snEDU=
x-amz-request-id: N7YS639AX5D547HX
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "40de263f2f3e4ff12149f2e93a668533"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8400
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8400
Md5:    40de263f2f3e4ff12149f2e93a668533
Sha1:   aa4e908ffaf7ed99c52d8af0e46690cf4df8a1d3
Sha256: a5518dda847b7093a2c72b207f3143cc0198f5e4e52c37d74ab32e90c6f29aa5
                                        
                                            GET /landings/277102/1669380390/images/blocked-icon.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 9VYKTge6rw999zVaBnTDbG1fhuUFUbj3JaVPDQOzLbCvgYwdXEco63zOvoYnYRZhSgIZBIPEJDA=
x-amz-request-id: 66C80DKA1MKJJTW7
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "dd7797e823529164e0f6fc39efd2376a"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 303
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 22 x 28, 8-bit colormap, non-interlaced\012- data
Size:   303
Md5:    dd7797e823529164e0f6fc39efd2376a
Sha1:   d6c98e421a97f34945f94861eeba4a9f00376b50
Sha256: c8eef62a31b18850097e892dc99ce4af5a795f451f424148f8463bd6b0162521
                                        
                                            GET /landings/277102/1669380390/images/card-5.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 8a9VIPKuZWt8MpsKt6df1GJ8+p5QkNNz/CZu8/WC7q0M9zLqdSQHdonqaWNssChUHQkXqWkYH/Y=
x-amz-request-id: N7YMT185T00XH2FZ
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "40de263f2f3e4ff12149f2e93a668533"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8400
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8400
Md5:    40de263f2f3e4ff12149f2e93a668533
Sha1:   aa4e908ffaf7ed99c52d8af0e46690cf4df8a1d3
Sha256: a5518dda847b7093a2c72b207f3143cc0198f5e4e52c37d74ab32e90c6f29aa5
                                        
                                            GET /landings/277102/1669380390/images/110010_1.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: jBMt8fNLCtMnxGBTo5s1xd1aHEy8mBFSKKc+7FyQRpLKjJ/HoHhX9wP3GeMPFkJco0D4rkC8hZo=
x-amz-request-id: QG3MP6SQBDD8YVA3
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "f0a79db4dd92694735ee0e6a311fc42c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 56596
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 682x388, components 3\012- data
Size:   56596
Md5:    f0a79db4dd92694735ee0e6a311fc42c
Sha1:   af0cbc1a6abcade4ae78b7df736a0206c218f6c1
Sha256: 09e3f147578d663b2b33b05eec941e4cd5f03afa54091a458e8cdc76a9ea9977
                                        
                                            GET /landings/277102/1669380390/images/card-2.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: tU6CiwhG5cEftXkSk0ifpPXCtkIzpugJi6EkkZjlGjSykymtsucuJh9Tb0CFlC0sPZJhXdb3tTA=
x-amz-request-id: QG3M9PEX2WM28GDB
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "97fdbd5fd4286a683fb7fe2dacc9ae04"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 9344
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   9344
Md5:    97fdbd5fd4286a683fb7fe2dacc9ae04
Sha1:   5f3b04b7d2ebe334031cdb54ce265445ea201be2
Sha256: 8dafaa1ff9a2fc6b98aa7b248d5b0a282a16fac520aac86429850891c7d4cbbb
                                        
                                            GET /landings/277102/1669380390/images/card-3.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 2IRgkSWJRQLmIaXM9/awx6QvKjsIdBd3Pz/v16pqR/H00BVEl94dOeLJjNlX1hIcobQ8c8HW8Hc=
x-amz-request-id: QG3K847PV843PVXE
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "efe7dcd66d5ef0c7f85a57e0e453ef94"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 9015
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   9015
Md5:    efe7dcd66d5ef0c7f85a57e0e453ef94
Sha1:   c2dcb1d3c1883a7500cf3956b1a86f3120acef74
Sha256: a1317f032be5cb4cd2141aa0df1446394e2841fc5d76b83c38e3fdca5058bdae
                                        
                                            GET /landings/277102/1669380390/images/heart-3.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: qGXVTkEXBUs9XEoPB0lguKASSgNpxXV5CXEn4GLFD/UAb0gfqzbj1d4JPpizX4V/oa64t19XKUE=
x-amz-request-id: N7YSRV38AA5VJZDS
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "022da77708b2dd876e1bb511d4f3d812"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 576
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (472)
Size:   576
Md5:    022da77708b2dd876e1bb511d4f3d812
Sha1:   bd991b5567ee72b20b4382c6265afdc650da3eed
Sha256: 41be38d88784fde6eeabe4b448b5a85040742ad7f6ea0299e2ddfd0e2fafdb81
                                        
                                            GET /landings/277102/1669380390/images/heart-2.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: ViRdU97Iosj1IO9PkhXCIWTEIrREFS8vcMztBA3wA2dpkxL9arbaVzu4plp9ElNiAcI2ARHgIYs=
x-amz-request-id: N7YJYSTDRWBFKAVH
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "90d2ee51ecee5c771197923d8d6ee214"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 583
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (479)
Size:   583
Md5:    90d2ee51ecee5c771197923d8d6ee214
Sha1:   5f30213debdb65ef335fa0e46d0eb0d7ff07509b
Sha256: 3126909ea9db977aacf63419671e5144ec0b2b8d1f982c8e09c3a5b523d13e72
                                        
                                            GET /landings/277102/1669380390/images/heart-1.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: 4WqIrJjhe4uTWQcT8PUXD3mtwDnEXmuwS6JN220eU7Pk8J38ZMJDaqTKYMcQfuvkhN9HOg4f+78=
x-amz-request-id: QG3H0F36000X01Q8
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "7420723b13ae7b8fe796155c2763974e"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 581
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (477)
Size:   581
Md5:    7420723b13ae7b8fe796155c2763974e
Sha1:   7e4c1f5d996447802f770ba14ef9a024df047d04
Sha256: 2c5c623db938268a3d567ecc789b8fbc14ab8c1fd53b41100487a3288c82ca02
                                        
                                            GET /landings/277102/1669380390/images/card-6.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: mCNzLF6dC3n2/5NjHj0NGdFUiklE8xQ0JM+7pzH7LcgsBoz31Ur5Kv33kMk6AfWZnjVyqeiZQAQ=
x-amz-request-id: N7YM8VS411BX19VB
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "efe7dcd66d5ef0c7f85a57e0e453ef94"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 9015
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   9015
Md5:    efe7dcd66d5ef0c7f85a57e0e453ef94
Sha1:   c2dcb1d3c1883a7500cf3956b1a86f3120acef74
Sha256: a1317f032be5cb4cd2141aa0df1446394e2841fc5d76b83c38e3fdca5058bdae
                                        
                                            GET /landings/277102/1669380390/images/card-7.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: IVTz+3l1mdAbxKwM5640J+OcfWtGUs++voqQVgnTN3MHz32Uga7Z9d5d/I8Lb72i9BwRNXRfsF8=
x-amz-request-id: N7YNYQCAAP5WB4MA
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "4823fb9861645d16f1908a8e8838423d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8188
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8188
Md5:    4823fb9861645d16f1908a8e8838423d
Sha1:   f56396aa2a5ee196b0601bfef435730073f0db8b
Sha256: c90456072060ccc1a91c2b32eb13361457873c533bafc754bce7c29976bb8150
                                        
                                            GET /landings/277102/1669380390/images/4-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: GsRh/JrREnyu8wnaj90ipGKHiwiLVlsLra5MK7/w9OLkCeZagbrNFXD2NK0ROopuqd+LtpCuYFY=
x-amz-request-id: N7YY2JPKVHG985KR
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "cb3aff7c886e4f72a98172b873b5e62d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2586
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2586
Md5:    cb3aff7c886e4f72a98172b873b5e62d
Sha1:   33de244dcb4db4abe54b6508ae8d1546eb279aa5
Sha256: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e
                                        
                                            GET /landings/277102/1669380390/images/heart-4.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: hqFVPCu+Fzkwgl1M0K0SzSfphfD9zFctJohHAThyweorYoHLn8SgpbwVE0hPZ3cnDSOUbVj5Zh0=
x-amz-request-id: N7YV9ZNP0KTZBTZ7
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "64f19b69158a630336bdab04f438a052"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 582
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (478)
Size:   582
Md5:    64f19b69158a630336bdab04f438a052
Sha1:   fc7491c5a23357fa6169ba0be6a51456bcbbc11b
Sha256: 1e09b25edcab92d0e1768df8a69108ece995786b7accd9018aebd19e65fbc09c
                                        
                                            GET /landings/277102/1669380390/images/unlock.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: UmQtLOXLxdEwM3NifNpCMj2IN1PeqHp61zsIVI4DhGfM//KgY2o940IH7gZc8iEZn3KS5/Hy/0M=
x-amz-request-id: QG3YMR7H6WPYBD7V
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "a732e1e06affb4575c050fdb0131e5ca"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2378
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944)
Size:   2378
Md5:    a732e1e06affb4575c050fdb0131e5ca
Sha1:   da4f4f204a4d22c7424274a91520e0ea993c48c7
Sha256: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f
                                        
                                            GET /landings/277102/1669380390/images/shield.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: +Z6pv5fbkuZxZilbri1pD7VEJB83pSXkMgB18WEp05qv2sjogMfKpR7BEaS0VMtprYPF3nwo53A=
x-amz-request-id: N7YTCBG0496JA676
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1539
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310)
Size:   1539
Md5:    0c7a0dfd64cf020cd8a6dc0c3df1dbdf
Sha1:   f705635388aebebae1223d828c38233067f28ab1
Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888
                                        
                                            GET /landings/277102/1669380390/images/password.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: RxzoQk/MO4GZ/5EoN53r5LkDs0v0dmH4PqagyMJG3EIDq/txeJUcuGDiYrmmLK6F3oruBpQ0t1M=
x-amz-request-id: N7YP50TY1F89A3X1
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "f42aef7f97d4c9bdb074673081f38ac7"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1339
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (330)
Size:   1339
Md5:    f42aef7f97d4c9bdb074673081f38ac7
Sha1:   0231df782e371d139c826e091279acd9a07e691c
Sha256: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac
                                        
                                            GET /landings/277102/1669380390/images/8-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: DZCNhaz+LG9GQG5TnoXoWIlvdT/Db2EwSq/f7z6QO+OW1FVyXpZy5ltQuhzyVlfLqQVdmOAmG5Q=
x-amz-request-id: 66C985GZJD2PKXHK
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "41bbda91cef3f22db1d45d66f7ca0961"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2458
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2458
Md5:    41bbda91cef3f22db1d45d66f7ca0961
Sha1:   e2f8f56674e0180063a4f8287931dc0b273baf8e
Sha256: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e
                                        
                                            GET /landings/277102/1669380390/images/poster_alt2.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: 3yJYS4UB89UTEyytmmsw3PjxX2VqN+UhQetb9lMTcc55tDIGEE2WrtZMhV80rccQebmb+O84LfY=
x-amz-request-id: N7YK856GM5VXF25V
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "ede102f18b2c145f552919e17fe24301"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 24209
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 622x720, components 3\012- data
Size:   24209
Md5:    ede102f18b2c145f552919e17fe24301
Sha1:   ba53d2eb76da4da2faf4e1025e7ca3ab0c187733
Sha256: 18ab56d668596cdcdcf9b1fc56810635b4a84dfab986efea31f1141e9cffa21c
                                        
                                            GET /landings/277102/1669380390/images/1-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: /fbJVz/lRpBcRREuarlYrXjYSzlCcSh0bKydwXBSW73N+UvGMNxnoA5ojIQvmIjRbuR3S9FCPRk=
x-amz-request-id: QG3YYVGFFDWCQ82T
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "6e6d0b84c81d847e24671a711115a781"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 4292
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   4292
Md5:    6e6d0b84c81d847e24671a711115a781
Sha1:   20dc2d359e437dc10ceefea4d3c7b5189c2e58d0
Sha256: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553
                                        
                                            GET /landings/277102/1669380390/images/3-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: WugXIW5vZXf/eWTjLlSgx08t2/+E4YmpTfrXcSXbXYZQZ6zU2ho7kURa3Nxa+Qrmq/eXWw1IfiM=
x-amz-request-id: QG3MDQDD81ZJQ15F
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "1dc512dcb0850f22cfa72c789578085c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 3946
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 80x80, components 3\012- data
Size:   3946
Md5:    1dc512dcb0850f22cfa72c789578085c
Sha1:   933e9c5648e782c9f9a1504d2248f0acb4b9950b
Sha256: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00
                                        
                                            GET /landings/277102/1669380390/images/2-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: Z5aLTK1rF1tdGzkVSc3rQg5uTeKKHQJ+HzOj3KBOeyfLWvwFsoG3yLzLd/xXSQAN8zy/mBI76Ec=
x-amz-request-id: 66C0DBT24K56M1VE
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "66b6dc51bd19c799dcadf1dbeb628d9c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2009
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2009
Md5:    66b6dc51bd19c799dcadf1dbeb628d9c
Sha1:   ff7fe6049e944186764bfc5041d624ec11f8d362
Sha256: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0
                                        
                                            GET /landings/277102/1669380390/images/shutterstock_497382763_w.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: NIazgjYVf+AdfMpXjBAg7g+MH91SzMlkDWSEOmYVkc3KdXZxvaiXYcrxSVf6PyT+w1kzPdhnSqY=
x-amz-request-id: QG3V6A7CJ9V579S5
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "7672ac6ce009272cfbc099be80718fea"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 18302
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 986 x 475, 4-bit colormap, non-interlaced\012- data
Size:   18302
Md5:    7672ac6ce009272cfbc099be80718fea
Sha1:   fe1e0300c9d16a3dda61df3780af6e24c8c10ffd
Sha256: 53f048cacd290d3fa1b6d80c3b2d40d16adca813667151cf2d38a487e2ebe99e
                                        
                                            GET /landings/277102/1669380390/images/6-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: TzwDF4YLLj2vqsO9Upkbh7jlZL3h3o5OeS1ZquCZbv8Ejzou+wD7Tnd1+FakBg0DQGOXLptXh+M=
x-amz-request-id: N7YQQZS8EA2W1JWE
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "9a6870069cb979e16b239f9ed485fb3c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 3256
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   3256
Md5:    9a6870069cb979e16b239f9ed485fb3c
Sha1:   c1dc7f3620c8cc391648c550f91b269b04d3c612
Sha256: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818
                                        
                                            GET /landings/277102/1669380390/images/7-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: soghgRSwPPw0uK7P/RkVfdiRWjUjgo/txrzwP1OzPv2JsONOdg0YtbCcLFqNI+8i0GuV6FKghl0=
x-amz-request-id: N7YN3P5B58PV2GG9
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "8155d8ecc7dc2d9b29cf99ab85c3d2a8"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2282
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2282
Md5:    8155d8ecc7dc2d9b29cf99ab85c3d2a8
Sha1:   ba784563c7787760b318af24ea274ad6df2c5b89
Sha256: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27
                                        
                                            GET /landings/277102/1669380390/images/card-1.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: mbxQOAnfmFopLeP1oUelebftBiiFD5oYDoBSAuRjkiurhX8Y5CkyU+dcPMRBXKiHUxVZ8XDzMR8=
x-amz-request-id: QG3Y7MRYHGR1ARZQ
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "4823fb9861645d16f1908a8e8838423d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8188
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8188
Md5:    4823fb9861645d16f1908a8e8838423d
Sha1:   f56396aa2a5ee196b0601bfef435730073f0db8b
Sha256: c90456072060ccc1a91c2b32eb13361457873c533bafc754bce7c29976bb8150
                                        
                                            GET /landings/277102/1669380390/images/5-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: rGHwHn9ftYGMHOzfsnFteZs/foey/ouFHxst5rt6oJr9fDjKwuucq+GtRSwefZbDp0S4i4AJbhM=
x-amz-request-id: N7YQ909M1HH7Y8K7
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "27109a247208262e6293950ca8f5450d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2879
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2879
Md5:    27109a247208262e6293950ca8f5450d
Sha1:   cea89616d15ad45a0f2b04082dff608abd96b800
Sha256: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 17:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /landings/277102/1669380390/images/action_icons_20px_2x.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/277102/1669380390/css/reviews.css?1669380390
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: rgMpXdwCZXaHBmSUcrDi8BHB53zR4iPSLMqYksMcKPacOR6QPv60JBYgI0FwtbjRX+SA6kEY7fY=
x-amz-request-id: QG3S49RQ8WTEGTRX
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "b699975b5fe73b087e711a33ff24ee1e"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1726
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data
Size:   1726
Md5:    b699975b5fe73b087e711a33ff24ee1e
Sha1:   0e33cc5c32a5e7d18440751e3946076664caaf53
Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
                                        
                                            GET /css2?family=Inter:wght@400;500;600;700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 17:36:31 GMT
date: Sun, 27 Nov 2022 17:36:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   12979
Md5:    5c8d6fb4541d091266e565fe5c0fb599
Sha1:   2e6a39ee0c868ed70c64a4fef2d56ee31ca2d437
Sha256: 90e9133d03038ae37204718e29e33755626d13e855f54920a460d89f9ceec97c
                                        
                                            GET /landings/277102/1669380390/images/shutterstock_751200268_web_2.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/277102/1669380390/css/style.css?1669380390
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: nYpnejgset9N4TrgYbbasvvP7FsE9wiTiosOJxA2MVX/IKgRzDjYziHdJVfKjLq3hYY9N2B6YEQ=
x-amz-request-id: N7YJTRKPCNA275QC
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "0666da291b2e75b6dfcc14444d83ab13"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 94922
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 1920 x 1080, 4-bit colormap, non-interlaced\012- data
Size:   94922
Md5:    0666da291b2e75b6dfcc14444d83ab13
Sha1:   563a6c7c74f65f7fb4505cfc7c5f41b459e26cbe
Sha256: 2d5acbd7c7a2e91720c41c64b389b99377d415574911488db2540a5d7770ce09
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 17:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 17:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 17:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lavavq.amazlngdate.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 06:03:56 GMT
expires: Fri, 24 Nov 2023 06:03:56 GMT
cache-control: public, max-age=31536000
age: 300755
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size:   37924
Md5:    e08be6d5d433944f7ad52902e4d24db5
Sha1:   e2600c1d60d12d397b3ee44411a021231d71e974
Sha256: 450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 17:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /landings/277102/1669380390/images/1.mp4 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 206 Partial Content
Content-Type: video/mp4
                                        
x-amz-id-2: 3U6uOyx0cCztm6bqurgoAMxjbUf6iJv4ae8ulpgBhGFaJtZgw1zwyXvQOi6vpQWw03zVad3RI+g=
x-amz-request-id: 66C3YZ7GH0VRGCGK
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "9bcfa52d111b14fc68090d2456c0ef1b"
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 27 Nov 2022 17:36:31 GMT
Content-Range: bytes 0-1432429/1432430
Content-Length: 1432430
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size:   1432430
Md5:    9bcfa52d111b14fc68090d2456c0ef1b
Sha1:   f27bfaafbdd796c5796a01e2ff5520f7a153bed2
Sha256: 9cfe07186757777f46b8fc3ecf8ab28d2cf1aa8fbf2c4044c86a2c1765c79d8a
                                        
                                            POST /ortb HTTP/1.1 
Host: lavavq.amazlngdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 295
Origin: https://lavavq.amazlngdate.com
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=2951&s5=backuser&click_id=1923399c23ee6be4886f88991602a29b&iexpp=1&j1=1
Cookie: unique_id=638387600004896b; unique_id2=6383876000062aff; 6383876000062aff_c=1; ref_token=152840_120341_120749; 6383876000062aff_sl=[277102]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         52.19.101.114
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
server: nginx
date: Sun, 27 Nov 2022 17:36:31 GMT
content-length: 13
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   13
Md5:    1031bf08481e45e42ceb3fd978c3d379
Sha1:   3d6d43df4c45f09f5d68593646fd83352323a5ea
Sha256: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /landings/277102/1669380390/images/favicon.ico?t=20221127173630 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.107
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
x-amz-id-2: BJ164TYKUnU54WBUmu18W6Gz++inuveqQnoETpZXa/nCabV46Dn1OsCkwOqZ3UbkXjJ+nevnwmI=
x-amz-request-id: 7ZKH92BXHF9VCZVM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "8924ecd94cbad467c5c645d52fbee336"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 11340
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel\012- data
Size:   11340
Md5:    8924ecd94cbad467c5c645d52fbee336
Sha1:   b1f83e498743f6a50594d08a6eb89620467958d2
Sha256: d33210764a14dfd57a8193ae2a5426ea1b9b63460fd3eced0aa9c175a1a833d3
                                        
                                            GET /js/pushjs/1.0.0/utils.js HTTP/1.1 
Host: lavavq.amazlngdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=2951&s5=backuser&click_id=1923399c23ee6be4886f88991602a29b&iexpp=1&j1=1
Cookie: unique_id=638387600004896b; unique_id2=6383876000062aff; 6383876000062aff_c=1; ref_token=152840_120341_120749; 6383876000062aff_sl=[277102]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         52.19.101.114
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 17:36:31 GMT
expires: Sun, 04 Dec 2022 17:36:31 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (32159)
Size:   11991
Md5:    262c195b66413b88c5fa395ffad05796
Sha1:   d2a9689d861d63c9f6e6857be9f53aa292e43462
Sha256: 33a8085f0dfed0a9f9046173aa24aa4b0c0f25051a0461a2045479904d508815

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 18:29:53 GMT
expires: Tue, 21 Nov 2023 18:29:53 GMT
cache-control: public, max-age=31536000
age: 515198
last-modified: Thu, 10 May 2018 20:35:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35547)
Size:   10017
Md5:    fa9987a23f5a9d865766e952511baa30
Sha1:   f2e620b99ee61a01671ba6a9e22ca75d58a1b52d
Sha256: 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11937
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11937
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11937
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11937
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11937
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 17:36:31 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y0ofyT6UcPjB8mfRR1VMjHSTW64Qb_EQ0rrjsOdbby1CG-xMIFJMPw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:49:19 GMT
age: 71232
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13049
Md5:    1db6041a0bdb2319ae85afcc30caaeec
Sha1:   3b0ec6a7188dadf986f72fda8110296d9abd6f35
Sha256: 05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
age: 71657
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4803
Md5:    cc0a257323f882caff067adb86d906e4
Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc
Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5099
x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4jFBvoAMFl1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6"
age: 71657
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5099
Md5:    433875a1b1fef34e45f2d8ac344c07e3
Sha1:   f2129466436cbbdd58abe42a47fb7af19eba58e6
Sha256: ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8387
x-amzn-requestid: fc238ea9-0169-47fc-b92e-f12b3ee27c72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b433YGtOoAMFexg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d362-2f97c67a2e5f05b6746cf858;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:12:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: oMrdB0NUGe5CqTY7eFd3u8xaSy9TyDdOrf1awBikFJzm3jWreD2irQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 12:30:20 GMT
age: 18371
etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8387
Md5:    4e97baa4851785eac92c719abf481c64
Sha1:   c32a57038d3cdbc514c9081c9938eca6a04fb481
Sha256: adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7380
x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iEegIAMFeuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "97a135335f5b1b042adeb385718f8808cb78528b"
age: 71657
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7380
Md5:    76c00eceed956377d7469ef58b0815cb
Sha1:   97a135335f5b1b042adeb385718f8808cb78528b
Sha256: 81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
age: 71657
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10199
Md5:    2cd887044e91d7ed0f1a8d7119ff7dd0
Sha1:   ae8aa4ce6ddaccba771fe65446926b60fc5628da
Sha256: bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6883
x-amzn-requestid: 9e3878c9-1817-427e-b121-969a8cbc7ad8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cL1ySF0tIAMFY4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638169a8-5143ffea77b70cf67ef60ad7;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 01:19:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K4mksi8EQxTxRXDqN-0iWJc-LmiI7joDX5xGmPb1HetziDj4mRCC7Q==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 05:53:37 GMT
age: 42181
etag: "590c34be54c9889eec4ff7993e070fda836f711f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6883
Md5:    f7f16c0f8a8e710210ce77c0e4c1c2a2
Sha1:   590c34be54c9889eec4ff7993e070fda836f711f
Sha256: 4224287ba765da59c877ac4f1dec65accc5bec934b7598d9cbbee669ba4ab12e
                                        
                                            GET /c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=2951&click_id=1923399c23ee6be4886f88991602a29b&j1=1 HTTP/1.1 
Host: lavavq.amazlngdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         52.19.101.114
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: nginx
date: Sun, 27 Nov 2022 17:36:30 GMT
set-cookie: unique_id=638387600004896b; Path=/; Expires=Thu, 26 Jan 2023 17:36:30 GMT; Secure; SameSite=None unique_id2=6383876000062aff; Path=/; Expires=Sat, 25 Feb 2023 17:36:30 GMT; Secure; SameSite=None 6383876000062aff_c=1; Path=/; Expires=Sat, 25 Feb 2023 17:36:30 GMT; Secure; SameSite=None ref_token=152840_120341_120749; Path=/; Expires=Tue, 27 Dec 2022 17:36:30 GMT; Secure; SameSite=None impression=; Path=/; Expires=Sun, 27 Nov 2022 17:36:30 GMT; Secure; SameSite=None 6383876000062aff_sl=[277102]; Path=/; Expires=Sun, 11 Dec 2022 17:36:30 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1 
Host: lavavq.amazlngdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=2951&s5=backuser&click_id=1923399c23ee6be4886f88991602a29b&iexpp=1&j1=1
Cookie: unique_id=638387600004896b; unique_id2=6383876000062aff; 6383876000062aff_c=1; ref_token=152840_120341_120749; 6383876000062aff_sl=[277102]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         52.19.101.114
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 17:36:31 GMT
expires: Sun, 04 Dec 2022 17:36:31 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/service-worker.js HTTP/1.1 
Host: lavavq.amazlngdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: unique_id=638387600004896b; unique_id2=6383876000062aff; 6383876000062aff_c=1; ref_token=152840_120341_120749; 6383876000062aff_sl=[277102]
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

search
                                         52.19.101.114
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 17:36:31 GMT
expires: Sun, 04 Dec 2022 17:36:31 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /click?o=195&a=2951 HTTP/1.1 
Host: it.gratissesso.me
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         18.194.62.185
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Sun, 27 Nov 2022 17:36:30 GMT
location: https://ssl.scaletrk.com/click?o=144&a=2951&sub_id1=&sub_id2=&sub_id3=
server: nginx/1.20.0
x-powered-by: PHP/7.4.21
set-cookie: U-0336dcbab05b9d5ad24f4333c7658a0e=unique; expires=Tue, 27-Dec-2022 17:36:29 GMT; Max-Age=2592000; path=/; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /click?o=144&a=2951&sub_id1=&sub_id2=&sub_id3= HTTP/1.1 
Host: ssl.scaletrk.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         18.194.62.185
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sun, 27 Nov 2022 17:36:30 GMT
server: nginx/1.20.0
x-powered-by: PHP/7.4.21
set-cookie: U-0a09c8844ba8f0936c20bd791130d6b6=unique; expires=Tue, 27-Dec-2022 17:36:30 GMT; Max-Age=2592000; path=/; secure; SameSite=None o_0a09c8844ba8f0936c20bd791130d6b6=cbaaddf5-58ca-422e-b169-95cb4f197b54; expires=Sun, 04-Dec-2022 17:36:30 GMT; Max-Age=604800; path=/; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---