Overview

URLlavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=4430&click_id=97acc09bdafcb9b5c88c678ea7b4afe7&j1=1
IP 52.19.101.114 (Ireland)
ASN#16509 AMAZON-02
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-28 13:53:17 UTC
StatusLoading report..
IDS alerts0
Blocklist alert3
urlquery alerts No alerts detected
Tags None

Domain Summary (13)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
r3.o.lencr.org (7) 344 No data No data 23.36.77.32
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-28 05:55:58 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-28 05:46:10 UTC 34.117.237.239
ocsp.pki.goog (6) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-28 05:48:59 UTC 142.250.74.10
lavavq.amazlngdate.com (4) 0 No data No data 52.19.101.114 Unknown ranking
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-28 05:49:11 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
www.gstatic.com (2) 0 2016-07-26 09:37:06 UTC 2022-11-28 05:52:04 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.163.38.240
cdn-dimi.akamaized.net (43) 0 No data No data 184.31.15.67 Domain (akamaized.net) ranked at: 280

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-28 2 lavavq.amazlngdate.com/js/pushjs/1.0.0/subscriber.js Phishing
2022-11-28 2 lavavq.amazlngdate.com/js/pushjs/1.0.0/utils.js Phishing
2022-11-28 2 lavavq.amazlngdate.com/ortb Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 52.19.101.114
Date UQ / IDS / BL URL IP
2023-02-07 04:38:47 +0000 0 - 0 - 2 maklj.unantlcipatedlucks.com/c/1f0a2cb367c37d (...) 52.19.101.114
2023-02-07 03:21:57 +0000 0 - 0 - 1 gsft.gottatopsweeps.com/ 52.19.101.114
2023-02-06 21:01:04 +0000 0 - 0 - 9 www.mydataanalisys.com/redirect/index?type=sc (...) 52.19.101.114
2023-02-06 15:23:07 +0000 0 - 0 - 1 qvewmj.delicatedate.net/c/da57dc555e50572d?s1 (...) 52.19.101.114
2023-02-06 08:02:11 +0000 0 - 0 - 2 ntn.prizeboxsurvey.site/c/842762394befa6f4?ci (...) 52.19.101.114


Last 5 reports on ASN: AMAZON-02
Date UQ / IDS / BL URL IP
2023-02-07 07:43:59 +0000 0 - 1 - 0 www.legalandgeneral.com/workplace/campaigns/c (...) 54.230.111.25
2023-02-07 07:25:32 +0000 0 - 1 - 0 www.fudousan-kanteishi.or.jp/info/news/corona (...) 13.115.78.234
2023-02-07 07:24:29 +0000 0 - 3 - 0 nuphy.refr.cc/ 54.255.36.167
2023-02-07 07:22:20 +0000 0 - 0 - 1 9sqd.com/category/mathimata/archaia-ellinika/ (...) 3.130.253.23
2023-02-07 07:21:08 +0000 0 - 3 - 18 www.stockfootageonline.com/website.php?url=co (...) 54.194.44.236


Last 5 reports on domain: amazlngdate.com
Date UQ / IDS / BL URL IP
2023-01-14 17:17:22 +0000 0 - 0 - 3 lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...) 52.19.101.114
2023-01-08 01:58:15 +0000 0 - 0 - 3 lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...) 52.19.101.114
2023-01-06 23:33:07 +0000 0 - 0 - 3 lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...) 52.19.101.114
2022-12-28 05:53:19 +0000 0 - 0 - 3 lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...) 52.19.101.114
2022-12-05 01:47:42 +0000 0 - 0 - 3 lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...) 52.19.101.114


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-11-27 17:36:41 +0000 0 - 0 - 4 it.gratissesso.me/click?o=195&a=2951 18.194.62.185
2022-11-27 15:51:06 +0000 0 - 0 - 2 it.gratissesso.me/click?a=1686&o=135 18.194.62.185
2022-11-26 14:46:52 +0000 0 - 0 - 4 eileen.erikschultz.xyz/_meetups/?click_id=war (...) 70.32.23.110
2022-11-26 07:57:54 +0000 0 - 0 - 3 qvznmz.impresslvedate.com/c/1e3a4e532f1c7040? (...) 52.19.101.114
2022-11-24 13:23:37 +0000 0 - 0 - 2 lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...) 52.19.101.114

JavaScript

Executed Scripts (21)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (77)


Request Response
                                        
                                            GET /c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=4430&click_id=97acc09bdafcb9b5c88c678ea7b4afe7&j1=1 HTTP/1.1 
Host: lavavq.amazlngdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         52.19.101.114
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Mon, 28 Nov 2022 13:53:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: unique_id=6384bd42000934a3; Path=/; Expires=Fri, 27 Jan 2023 13:53:06 GMT unique_id2=6384bd42000ae205; Path=/; Expires=Sun, 26 Feb 2023 13:53:06 GMT 6384bd42000ae205_c=1; Path=/; Expires=Sun, 26 Feb 2023 13:53:06 GMT ref_token=152840; Path=/; Expires=Wed, 28 Dec 2022 13:53:06 GMT impression=; Path=/; Expires=Mon, 28 Nov 2022 13:53:06 GMT 6384bd42000ae205_sl=[277102]; Path=/; Expires=Mon, 12 Dec 2022 13:53:06 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1400)
Size:   7860
Md5:    cc3581c621a0f02ce66738bcc8686ac1
Sha1:   53b31583614e9b090022f157919ab9ff2ecbded5
Sha256: 2310490cd8be2a2f0ff5150c2e42e6de0095843d5f054b9740e260276c87f983
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12030
Expires: Mon, 28 Nov 2022 17:13:36 GMT
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4747
Cache-Control: max-age=165442
Date: Mon, 28 Nov 2022 13:53:06 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:50:28 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10028
Expires: Mon, 28 Nov 2022 16:40:14 GMT
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 13:17:46 GMT
cache-control: public,max-age=3600
age: 2120
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 14U+moxT4/osjH6Pgcc6hsly87gCW1K12KP0kmiNu4zWAY7m2EMk3iME4aGkBh6wVNP/h084hBg=
x-amz-request-id: VJB84M95B3195EE0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 13:42:05 GMT
age: 661
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 28 Nov 2022 13:53:06 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /landings/277102/1669380390/css/style.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: fMP/tLbcMEiHN4MqoAHpI2PgOzMhAFbCruE1ljwGCo3Fnqcg775pXRXLYdLhfOFukkD/MYu3/E8=
x-amz-request-id: JCSNZ0H63XQARYKM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "2d96fbf9ec06f2fff854c8b5bce34c4a"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Length: 5068
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text
Size:   5068
Md5:    b453429d3795c3f23b9997af593bd88f
Sha1:   28f61e808eb92d9b30d0ea31a8c621bdda81fbd6
Sha256: 41d21332f95e1a56a71acec80af7d7975b6b336d3955ca8f751bb31f6345252d
                                        
                                            GET /landings/277102/1669380390/css/popup.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: n6lUB+2+IHHvTVZrwZp/lRm/9Z1X8LJNtcWI0Zj+eCuApt+fFYYDL9pp99hxFyGY5ofKutsv0YY=
x-amz-request-id: JCSPT67HN3CE0JVM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "e43bad8a7da8b62b8eb981230df1c042"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Length: 573
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   573
Md5:    49fd3d42563c4535cbdd6f95c11016d5
Sha1:   40606364ce01c442ba79daa01c4db5f7c8f57020
Sha256: c19c9920be6d3f5d0d09047d20a5ec3ae01bae5008a0e3cc930594ca4520aaf9
                                        
                                            GET /landings/277102/1669380390/css/reviews.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: auTBFL4rmJIr/fbgcUf1UXDaHTBoxsTVWS7g5mVxHftUNgaik+qm6veGPV0P4QRRuPuKjtM6E0M=
x-amz-request-id: JCSX08RXN0789N4C
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "ea4bfe4dc6b6ecec85d2817514238d7d"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Length: 1226
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text
Size:   1226
Md5:    4601f862c9729d2c7d93cfce724d0ccb
Sha1:   dc15bfcf310ecc2ca5ff8a6f0a873ec5f1ac28e5
Sha256: 0d9bedbbd7155e1dabc76c812dacaee922c372e6479ce17dc72f80e977033104
                                        
                                            GET /landings/277102/1669380390/css/swiper.min.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: /MH4gjIu4cWUcyYSfTYKgx/EpLe70de48x9c504jMoW6mUvKYMpKygoCZy/tS9fEryPa4x9LZnE=
x-amz-request-id: JCSM61FVDFX2J1FT
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "0290288128c98d0d598dfe514d95f138"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Length: 4127
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (13419)
Size:   4127
Md5:    6bef01d7afe09be2c610f0a7f329bcab
Sha1:   7dade81a732f80a283afe4df7af93adb3ff07d7a
Sha256: 8ec6b92ec87d87752bf8e86285de3b7d25e360971b324af8ea4e6dc8f5bd5ae2
                                        
                                            GET /landings/277102/1669380390/js/trls.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: +Fg9OWUa0WuZnL63xR9sw79VOmUwqDClcKQFP1BoVTl+OZcX5KCV6uhVlRk3VAudBlgmOGqEVm4=
x-amz-request-id: JCSZN4TY06QCJYZV
Last-Modified: Fri, 25 Nov 2022 12:46:37 GMT
ETag: "dca4f0b0f022c4c8bf1a754b77d78d58"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Length: 12801
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   12801
Md5:    d86262927ea09f3e261df1719c5b3778
Sha1:   670644bb22041350ea46f31e6051df60f470b834
Sha256: 3657d88d817d44dddc645f1979f76f91aa5d36d540bc4c9be2a5b16e6402213d
                                        
                                            GET /landings/277102/1669380390/js/jquery.min.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: HBCzh5ACSKlt7uGHV9+YfwczV2ch3mCf0Tf1ciAEfLJfz3HtPGRgoXxZGGy9Qo3KTUkvan6qz1k=
x-amz-request-id: JCSN3QZ9Z9CW6512
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "b091a47f6b91e26c93a848092c6f3788"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Length: 33315
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (32038)
Size:   33315
Md5:    f32bc3ff91b7d8e3cee993d93ba616bc
Sha1:   70902bada7722edb4e6be6f90453d6c2c03bbad8
Sha256: fbdef831016761a2ad211333df4d830aae94cc768f440af5546f78677379fc2e
                                        
                                            GET /landings/277102/1669380390/js/main_alt.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: hAPT4miCwtjvVincYE1KEAhuATKfI2bnRCticHblkzjDAtYD5Nz6suhe9AN3cHim276JM5NOrzk=
x-amz-request-id: JCSW5M6KENNGME45
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "949590b2dcd7b3f095730a16debf6842"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Length: 6169
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (332)
Size:   6169
Md5:    699888c7e0d1d6a922ad6a031605e45e
Sha1:   f455bc5c0ee3b386bf54855bc73a34739598eeb5
Sha256: edb4d84f456e601b25bd25e0ff5b3402925aa1fa24bee95573473033fb38e835
                                        
                                            GET /landings/277102/1669380390/js/transl-sb.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: 5a1z0B8qh0v0csZgc8XPhbObOZ2K/Jqajh/TINzo2aektrE0GqGEJJ7d8+QRWqAHB/G8ajOIPCg=
x-amz-request-id: JCSJS4M2JGFE6P62
Last-Modified: Fri, 25 Nov 2022 12:46:37 GMT
ETag: "2873c50f584a0ecc0e878c84ca22a67a"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Length: 1998
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   1998
Md5:    1e0d2c655db08220da06f5ceb7222ef8
Sha1:   83232c5ecc575b33d52ae60eb2a0279f993839b9
Sha256: e1be7226ec934304e5ca5b783aaf06b1f3fe497308c46613e2962eaed7e81c3c
                                        
                                            GET /landings/277102/1669380390/js/swiper.min.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: JsS0dnoc8Qg8x4AGz+D9aRLFXWeRCSF4ffDxKhnisIm5+S1WF8h7sRG/y3zvaC7Jyg/RIHn82iA=
x-amz-request-id: JCSWMJT0NXBSHFYM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "70610853eb13bcedd94269762ff7e9fd"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Length: 38997
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (790)
Size:   38997
Md5:    2ba7c48fe2c5ab2343d8666220ef1bd7
Sha1:   cec8c61c7abc2f3fb3405182938963ada4c1eb0e
Sha256: 6a00e257157534430b71a24e695822885ab0ad33b3460ad96519ee7353d75ed9
                                        
                                            GET /landings/277102/1669380390/js/translates-review.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: FiCI5FX21Kui3NwdZqIDJ+HC9ZMTkaTIaGnaD4jgEok1qWO9oGNCqJsRBa0YLOf5NpJleeBYHVM=
x-amz-request-id: JCSYSH1TQW6HQ0KY
Last-Modified: Fri, 25 Nov 2022 12:46:37 GMT
ETag: "09cf03d0a77b07d6c8969b853e74ee80"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Length: 16602
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   16602
Md5:    d708297aefc5b8d49a3bfd335b775806
Sha1:   964ff9e651d4dc26bf81c4d34d9a586e1983ea62
Sha256: 06a439afe49b086cebf4a654afea5b654170953bcef987f7229b6c01071f977d
                                        
                                            GET /landings/277102/1669380390/js/title_tanslate.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: vG4sdzYj4n0SnMUkF8SZ83HQOl9vvAMtAEAm1jRH7YcyotZfByu6oDJggQShWi9CxJ5rJcsIlys=
x-amz-request-id: JCSP0BQPKZ8SKZGC
Last-Modified: Fri, 25 Nov 2022 12:46:37 GMT
ETag: "5f373fa5bf21c44b9ad23b70ef96e73d"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Length: 1298
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   1298
Md5:    0e212ad4454c941c45c2e57df42c2b4f
Sha1:   fe9d7c484c2c0d7a6475692ef984c53a06c95406
Sha256: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3
                                        
                                            GET /landings/277102/1669380390/images/card-6.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: mCNzLF6dC3n2/5NjHj0NGdFUiklE8xQ0JM+7pzH7LcgsBoz31Ur5Kv33kMk6AfWZnjVyqeiZQAQ=
x-amz-request-id: N7YM8VS411BX19VB
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "efe7dcd66d5ef0c7f85a57e0e453ef94"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 9015
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   9015
Md5:    efe7dcd66d5ef0c7f85a57e0e453ef94
Sha1:   c2dcb1d3c1883a7500cf3956b1a86f3120acef74
Sha256: a1317f032be5cb4cd2141aa0df1446394e2841fc5d76b83c38e3fdca5058bdae
                                        
                                            GET /landings/277102/1669380390/images/card-8.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: wxYRUAxsBpAmcshKrNRPQRfuLYhJBnnl0J/ipWj0B6ZKRsrum3Dzy8MDH9mVVvtRqhjAg0snEDU=
x-amz-request-id: N7YS639AX5D547HX
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "40de263f2f3e4ff12149f2e93a668533"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8400
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8400
Md5:    40de263f2f3e4ff12149f2e93a668533
Sha1:   aa4e908ffaf7ed99c52d8af0e46690cf4df8a1d3
Sha256: a5518dda847b7093a2c72b207f3143cc0198f5e4e52c37d74ab32e90c6f29aa5
                                        
                                            GET /landings/277102/1669380390/images/heart-3.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: qGXVTkEXBUs9XEoPB0lguKASSgNpxXV5CXEn4GLFD/UAb0gfqzbj1d4JPpizX4V/oa64t19XKUE=
x-amz-request-id: N7YSRV38AA5VJZDS
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "022da77708b2dd876e1bb511d4f3d812"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 576
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (472)
Size:   576
Md5:    022da77708b2dd876e1bb511d4f3d812
Sha1:   bd991b5567ee72b20b4382c6265afdc650da3eed
Sha256: 41be38d88784fde6eeabe4b448b5a85040742ad7f6ea0299e2ddfd0e2fafdb81
                                        
                                            GET /landings/277102/1669380390/images/card-7.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: IVTz+3l1mdAbxKwM5640J+OcfWtGUs++voqQVgnTN3MHz32Uga7Z9d5d/I8Lb72i9BwRNXRfsF8=
x-amz-request-id: N7YNYQCAAP5WB4MA
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "4823fb9861645d16f1908a8e8838423d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8188
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8188
Md5:    4823fb9861645d16f1908a8e8838423d
Sha1:   f56396aa2a5ee196b0601bfef435730073f0db8b
Sha256: c90456072060ccc1a91c2b32eb13361457873c533bafc754bce7c29976bb8150
                                        
                                            GET /landings/277102/1669380390/images/heart-1.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: 4WqIrJjhe4uTWQcT8PUXD3mtwDnEXmuwS6JN220eU7Pk8J38ZMJDaqTKYMcQfuvkhN9HOg4f+78=
x-amz-request-id: QG3H0F36000X01Q8
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "7420723b13ae7b8fe796155c2763974e"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 581
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (477)
Size:   581
Md5:    7420723b13ae7b8fe796155c2763974e
Sha1:   7e4c1f5d996447802f770ba14ef9a024df047d04
Sha256: 2c5c623db938268a3d567ecc789b8fbc14ab8c1fd53b41100487a3288c82ca02
                                        
                                            GET /landings/277102/1669380390/images/heart-2.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: ViRdU97Iosj1IO9PkhXCIWTEIrREFS8vcMztBA3wA2dpkxL9arbaVzu4plp9ElNiAcI2ARHgIYs=
x-amz-request-id: N7YJYSTDRWBFKAVH
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "90d2ee51ecee5c771197923d8d6ee214"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 583
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (479)
Size:   583
Md5:    90d2ee51ecee5c771197923d8d6ee214
Sha1:   5f30213debdb65ef335fa0e46d0eb0d7ff07509b
Sha256: 3126909ea9db977aacf63419671e5144ec0b2b8d1f982c8e09c3a5b523d13e72
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 13:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /landings/277102/1669380390/images/blocked-icon.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 9VYKTge6rw999zVaBnTDbG1fhuUFUbj3JaVPDQOzLbCvgYwdXEco63zOvoYnYRZhSgIZBIPEJDA=
x-amz-request-id: 66C80DKA1MKJJTW7
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "dd7797e823529164e0f6fc39efd2376a"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 303
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 22 x 28, 8-bit colormap, non-interlaced\012- data
Size:   303
Md5:    dd7797e823529164e0f6fc39efd2376a
Sha1:   d6c98e421a97f34945f94861eeba4a9f00376b50
Sha256: c8eef62a31b18850097e892dc99ce4af5a795f451f424148f8463bd6b0162521
                                        
                                            GET /landings/277102/1669380390/images/5-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: rGHwHn9ftYGMHOzfsnFteZs/foey/ouFHxst5rt6oJr9fDjKwuucq+GtRSwefZbDp0S4i4AJbhM=
x-amz-request-id: N7YQ909M1HH7Y8K7
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "27109a247208262e6293950ca8f5450d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2879
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2879
Md5:    27109a247208262e6293950ca8f5450d
Sha1:   cea89616d15ad45a0f2b04082dff608abd96b800
Sha256: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96
                                        
                                            GET /landings/277102/1669380390/images/card-5.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 8a9VIPKuZWt8MpsKt6df1GJ8+p5QkNNz/CZu8/WC7q0M9zLqdSQHdonqaWNssChUHQkXqWkYH/Y=
x-amz-request-id: N7YMT185T00XH2FZ
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "40de263f2f3e4ff12149f2e93a668533"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8400
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8400
Md5:    40de263f2f3e4ff12149f2e93a668533
Sha1:   aa4e908ffaf7ed99c52d8af0e46690cf4df8a1d3
Sha256: a5518dda847b7093a2c72b207f3143cc0198f5e4e52c37d74ab32e90c6f29aa5
                                        
                                            GET /landings/277102/1669380390/images/card-4.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 8qFwZT1glzkI0CybqbCnmEFlMUJUuQLd6RL4c/ITDvt3x0JapboHHSFPJA281rkSs/8EjqO6EhA=
x-amz-request-id: N7YZ4NZF4GABT28S
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "2c064aae31305ad28aec8cd38499d9de"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8321
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8321
Md5:    2c064aae31305ad28aec8cd38499d9de
Sha1:   c0e3e307a3fbfc0b8072fa625e80e9ccf6e90320
Sha256: f1abc5e31c804b10bcabdeddd2f4d4147e4727e9fdfe264654e87aabb6a031a6
                                        
                                            GET /landings/277102/1669380390/images/110010_1.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: jBMt8fNLCtMnxGBTo5s1xd1aHEy8mBFSKKc+7FyQRpLKjJ/HoHhX9wP3GeMPFkJco0D4rkC8hZo=
x-amz-request-id: QG3MP6SQBDD8YVA3
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "f0a79db4dd92694735ee0e6a311fc42c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 56596
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 682x388, components 3\012- data
Size:   56596
Md5:    f0a79db4dd92694735ee0e6a311fc42c
Sha1:   af0cbc1a6abcade4ae78b7df736a0206c218f6c1
Sha256: 09e3f147578d663b2b33b05eec941e4cd5f03afa54091a458e8cdc76a9ea9977
                                        
                                            GET /landings/277102/1669380390/images/logo.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: n5zIFivvIOWSv1RVAzcJnTKI9Kkf0a5X3pQ1soikOyjNIPTTyH99ub0k7HghawWSPdTbJo/Sq5w=
x-amz-request-id: QG3G4BTNS26JBESJ
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "8c7ac40cbb3b09d628f0e04da43a597e"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 7208
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4317)
Size:   7208
Md5:    8c7ac40cbb3b09d628f0e04da43a597e
Sha1:   8a3bd6042a1ce39c2bc59f90299894b0e5c2d64c
Sha256: 29b773e1e21f12741ab91bf1550e128ba699284a81350329ecacc38e9875e3d1
                                        
                                            GET /landings/277102/1669380390/images/shutterstock_497382763_w.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: NIazgjYVf+AdfMpXjBAg7g+MH91SzMlkDWSEOmYVkc3KdXZxvaiXYcrxSVf6PyT+w1kzPdhnSqY=
x-amz-request-id: QG3V6A7CJ9V579S5
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "7672ac6ce009272cfbc099be80718fea"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 18302
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 986 x 475, 4-bit colormap, non-interlaced\012- data
Size:   18302
Md5:    7672ac6ce009272cfbc099be80718fea
Sha1:   fe1e0300c9d16a3dda61df3780af6e24c8c10ffd
Sha256: 53f048cacd290d3fa1b6d80c3b2d40d16adca813667151cf2d38a487e2ebe99e
                                        
                                            GET /landings/277102/1669380390/images/password.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: RxzoQk/MO4GZ/5EoN53r5LkDs0v0dmH4PqagyMJG3EIDq/txeJUcuGDiYrmmLK6F3oruBpQ0t1M=
x-amz-request-id: N7YP50TY1F89A3X1
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "f42aef7f97d4c9bdb074673081f38ac7"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1339
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (330)
Size:   1339
Md5:    f42aef7f97d4c9bdb074673081f38ac7
Sha1:   0231df782e371d139c826e091279acd9a07e691c
Sha256: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac
                                        
                                            GET /landings/277102/1669380390/images/shield.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: +Z6pv5fbkuZxZilbri1pD7VEJB83pSXkMgB18WEp05qv2sjogMfKpR7BEaS0VMtprYPF3nwo53A=
x-amz-request-id: N7YTCBG0496JA676
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1539
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310)
Size:   1539
Md5:    0c7a0dfd64cf020cd8a6dc0c3df1dbdf
Sha1:   f705635388aebebae1223d828c38233067f28ab1
Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888
                                        
                                            GET /landings/277102/1669380390/images/3-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: WugXIW5vZXf/eWTjLlSgx08t2/+E4YmpTfrXcSXbXYZQZ6zU2ho7kURa3Nxa+Qrmq/eXWw1IfiM=
x-amz-request-id: QG3MDQDD81ZJQ15F
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "1dc512dcb0850f22cfa72c789578085c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 3946
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 80x80, components 3\012- data
Size:   3946
Md5:    1dc512dcb0850f22cfa72c789578085c
Sha1:   933e9c5648e782c9f9a1504d2248f0acb4b9950b
Sha256: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00
                                        
                                            GET /landings/277102/1669380390/images/card-3.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 2IRgkSWJRQLmIaXM9/awx6QvKjsIdBd3Pz/v16pqR/H00BVEl94dOeLJjNlX1hIcobQ8c8HW8Hc=
x-amz-request-id: QG3K847PV843PVXE
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "efe7dcd66d5ef0c7f85a57e0e453ef94"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 9015
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   9015
Md5:    efe7dcd66d5ef0c7f85a57e0e453ef94
Sha1:   c2dcb1d3c1883a7500cf3956b1a86f3120acef74
Sha256: a1317f032be5cb4cd2141aa0df1446394e2841fc5d76b83c38e3fdca5058bdae
                                        
                                            GET /landings/277102/1669380390/images/card-2.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: tU6CiwhG5cEftXkSk0ifpPXCtkIzpugJi6EkkZjlGjSykymtsucuJh9Tb0CFlC0sPZJhXdb3tTA=
x-amz-request-id: QG3M9PEX2WM28GDB
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "97fdbd5fd4286a683fb7fe2dacc9ae04"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 9344
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   9344
Md5:    97fdbd5fd4286a683fb7fe2dacc9ae04
Sha1:   5f3b04b7d2ebe334031cdb54ce265445ea201be2
Sha256: 8dafaa1ff9a2fc6b98aa7b248d5b0a282a16fac520aac86429850891c7d4cbbb
                                        
                                            GET /landings/277102/1669380390/images/2-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: Z5aLTK1rF1tdGzkVSc3rQg5uTeKKHQJ+HzOj3KBOeyfLWvwFsoG3yLzLd/xXSQAN8zy/mBI76Ec=
x-amz-request-id: 66C0DBT24K56M1VE
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "66b6dc51bd19c799dcadf1dbeb628d9c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2009
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2009
Md5:    66b6dc51bd19c799dcadf1dbeb628d9c
Sha1:   ff7fe6049e944186764bfc5041d624ec11f8d362
Sha256: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0
                                        
                                            GET /landings/277102/1669380390/images/7-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: soghgRSwPPw0uK7P/RkVfdiRWjUjgo/txrzwP1OzPv2JsONOdg0YtbCcLFqNI+8i0GuV6FKghl0=
x-amz-request-id: N7YN3P5B58PV2GG9
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "8155d8ecc7dc2d9b29cf99ab85c3d2a8"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2282
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2282
Md5:    8155d8ecc7dc2d9b29cf99ab85c3d2a8
Sha1:   ba784563c7787760b318af24ea274ad6df2c5b89
Sha256: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27
                                        
                                            GET /landings/277102/1669380390/images/6-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: TzwDF4YLLj2vqsO9Upkbh7jlZL3h3o5OeS1ZquCZbv8Ejzou+wD7Tnd1+FakBg0DQGOXLptXh+M=
x-amz-request-id: N7YQQZS8EA2W1JWE
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "9a6870069cb979e16b239f9ed485fb3c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 3256
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   3256
Md5:    9a6870069cb979e16b239f9ed485fb3c
Sha1:   c1dc7f3620c8cc391648c550f91b269b04d3c612
Sha256: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818
                                        
                                            GET /landings/277102/1669380390/images/heart-4.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: hqFVPCu+Fzkwgl1M0K0SzSfphfD9zFctJohHAThyweorYoHLn8SgpbwVE0hPZ3cnDSOUbVj5Zh0=
x-amz-request-id: N7YV9ZNP0KTZBTZ7
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "64f19b69158a630336bdab04f438a052"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 582
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (478)
Size:   582
Md5:    64f19b69158a630336bdab04f438a052
Sha1:   fc7491c5a23357fa6169ba0be6a51456bcbbc11b
Sha256: 1e09b25edcab92d0e1768df8a69108ece995786b7accd9018aebd19e65fbc09c
                                        
                                            GET /landings/277102/1669380390/images/unlock.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: UmQtLOXLxdEwM3NifNpCMj2IN1PeqHp61zsIVI4DhGfM//KgY2o940IH7gZc8iEZn3KS5/Hy/0M=
x-amz-request-id: QG3YMR7H6WPYBD7V
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "a732e1e06affb4575c050fdb0131e5ca"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2378
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944)
Size:   2378
Md5:    a732e1e06affb4575c050fdb0131e5ca
Sha1:   da4f4f204a4d22c7424274a91520e0ea993c48c7
Sha256: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f
                                        
                                            GET /landings/277102/1669380390/images/poster_alt2.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: 3yJYS4UB89UTEyytmmsw3PjxX2VqN+UhQetb9lMTcc55tDIGEE2WrtZMhV80rccQebmb+O84LfY=
x-amz-request-id: N7YK856GM5VXF25V
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "ede102f18b2c145f552919e17fe24301"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 24209
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 622x720, components 3\012- data
Size:   24209
Md5:    ede102f18b2c145f552919e17fe24301
Sha1:   ba53d2eb76da4da2faf4e1025e7ca3ab0c187733
Sha256: 18ab56d668596cdcdcf9b1fc56810635b4a84dfab986efea31f1141e9cffa21c
                                        
                                            GET /landings/277102/1669380390/images/8-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: DZCNhaz+LG9GQG5TnoXoWIlvdT/Db2EwSq/f7z6QO+OW1FVyXpZy5ltQuhzyVlfLqQVdmOAmG5Q=
x-amz-request-id: 66C985GZJD2PKXHK
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "41bbda91cef3f22db1d45d66f7ca0961"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2458
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2458
Md5:    41bbda91cef3f22db1d45d66f7ca0961
Sha1:   e2f8f56674e0180063a4f8287931dc0b273baf8e
Sha256: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e
                                        
                                            GET /landings/277102/1669380390/images/card-1.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: mbxQOAnfmFopLeP1oUelebftBiiFD5oYDoBSAuRjkiurhX8Y5CkyU+dcPMRBXKiHUxVZ8XDzMR8=
x-amz-request-id: QG3Y7MRYHGR1ARZQ
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "4823fb9861645d16f1908a8e8838423d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8188
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8188
Md5:    4823fb9861645d16f1908a8e8838423d
Sha1:   f56396aa2a5ee196b0601bfef435730073f0db8b
Sha256: c90456072060ccc1a91c2b32eb13361457873c533bafc754bce7c29976bb8150
                                        
                                            GET /landings/277102/1669380390/images/4-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: GsRh/JrREnyu8wnaj90ipGKHiwiLVlsLra5MK7/w9OLkCeZagbrNFXD2NK0ROopuqd+LtpCuYFY=
x-amz-request-id: N7YY2JPKVHG985KR
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "cb3aff7c886e4f72a98172b873b5e62d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2586
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2586
Md5:    cb3aff7c886e4f72a98172b873b5e62d
Sha1:   33de244dcb4db4abe54b6508ae8d1546eb279aa5
Sha256: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e
                                        
                                            GET /landings/277102/1669380390/images/1-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: /fbJVz/lRpBcRREuarlYrXjYSzlCcSh0bKydwXBSW73N+UvGMNxnoA5ojIQvmIjRbuR3S9FCPRk=
x-amz-request-id: QG3YYVGFFDWCQ82T
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "6e6d0b84c81d847e24671a711115a781"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 4292
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   4292
Md5:    6e6d0b84c81d847e24671a711115a781
Sha1:   20dc2d359e437dc10ceefea4d3c7b5189c2e58d0
Sha256: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 13:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /landings/277102/1669380390/images/action_icons_20px_2x.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/277102/1669380390/css/reviews.css?1669380390
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: rgMpXdwCZXaHBmSUcrDi8BHB53zR4iPSLMqYksMcKPacOR6QPv60JBYgI0FwtbjRX+SA6kEY7fY=
x-amz-request-id: QG3S49RQ8WTEGTRX
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "b699975b5fe73b087e711a33ff24ee1e"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1726
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data
Size:   1726
Md5:    b699975b5fe73b087e711a33ff24ee1e
Sha1:   0e33cc5c32a5e7d18440751e3946076664caaf53
Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
                                        
                                            GET /landings/277102/1669380390/images/poster_alt.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/277102/1669380390/css/style.css?1669380390
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: 07tvr+PrUGEio0VNNKDdhXokFHqvHrghy2qzwjTbc3//aU7XV/LIa3eT0MKmk4i8UbpMtynyZSA=
x-amz-request-id: N7YTJTC1B7R33XJT
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "e5f8511eeaa81d41b49a476ba6faed4c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 12312
Date: Mon, 28 Nov 2022 13:53:06 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 375x779, components 3\012- data
Size:   12312
Md5:    e5f8511eeaa81d41b49a476ba6faed4c
Sha1:   1676dae39aa9de9acf19a742f7100c68d3a30581
Sha256: 5d3d02ee61c7766afba36ef11b030daa59dcd9ea2ad38fb2a8c84724ecaf34e0
                                        
                                            GET /css2?family=Inter:wght@400;500;600;700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 13:53:06 GMT
date: Mon, 28 Nov 2022 13:53:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   95589
Md5:    a329f5d756e799ecc5465826ff857b5f
Sha1:   ff90b688d4d1b91a1b02ab8b142eb1f0856a6ccd
Sha256: 18c33c8f996563b8cb2fb6109946be06daf9c3ab7caf0f1d7559d53b8340fc8a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 13:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 13:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1 
Host: lavavq.amazlngdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=4430&s5=backuser&click_id=97acc09bdafcb9b5c88c678ea7b4afe7&iexpp=1&j1=1
Cookie: unique_id=6384bd42000934a3; unique_id2=6384bd42000ae205; 6384bd42000ae205_c=1; ref_token=152840; 6384bd42000ae205_sl=[277102]

search
                                         52.19.101.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 28 Nov 2022 13:53:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 05 Dec 2022 13:53:06 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (9389)
Size:   3297
Md5:    3fc959642390ff4dc8b17be4e706c3fc
Sha1:   107f4500b048c2060c53260ef3c5a0c2286499a8
Sha256: 740aacdd2752459683dc7986658f1ac667048404bc12ce6dd233813d68aa4131

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 13:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://lavavq.amazlngdate.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 06:03:56 GMT
expires: Fri, 24 Nov 2023 06:03:56 GMT
cache-control: public, max-age=31536000
age: 373750
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size:   37924
Md5:    e08be6d5d433944f7ad52902e4d24db5
Sha1:   e2600c1d60d12d397b3ee44411a021231d71e974
Sha256: 450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 13:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/pushjs/1.0.0/utils.js HTTP/1.1 
Host: lavavq.amazlngdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=4430&s5=backuser&click_id=97acc09bdafcb9b5c88c678ea7b4afe7&iexpp=1&j1=1
Cookie: unique_id=6384bd42000934a3; unique_id2=6384bd42000ae205; 6384bd42000ae205_c=1; ref_token=152840; 6384bd42000ae205_sl=[277102]

search
                                         52.19.101.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 28 Nov 2022 13:53:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 05 Dec 2022 13:53:06 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (7071), with no line terminators
Size:   3387
Md5:    be3b25b851473bc70a884cb177fd7076
Sha1:   51db0baf5c4fd8a8b09ca7ffde3ffa987635cbd0
Sha256: 1b0a79f9e94716392c53169b6f43442b5228c54c3043be131d72b3bf60ca972a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /ortb HTTP/1.1 
Host: lavavq.amazlngdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 295
Origin: http://lavavq.amazlngdate.com
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=4430&s5=backuser&click_id=97acc09bdafcb9b5c88c678ea7b4afe7&iexpp=1&j1=1
Cookie: unique_id=6384bd42000934a3; unique_id2=6384bd42000ae205; 6384bd42000ae205_c=1; ref_token=152840; 6384bd42000ae205_sl=[277102]

search
                                         52.19.101.114
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
                                        
Server: nginx
Date: Mon, 28 Nov 2022 13:53:07 GMT
Content-Length: 13
Connection: keep-alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   13
Md5:    1031bf08481e45e42ceb3fd978c3d379
Sha1:   3d6d43df4c45f09f5d68593646fd83352323a5ea
Sha256: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /landings/277102/1669380390/images/1.mp4 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 206 Partial Content
Content-Type: video/mp4
                                        
x-amz-id-2: 3U6uOyx0cCztm6bqurgoAMxjbUf6iJv4ae8ulpgBhGFaJtZgw1zwyXvQOi6vpQWw03zVad3RI+g=
x-amz-request-id: 66C3YZ7GH0VRGCGK
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "9bcfa52d111b14fc68090d2456c0ef1b"
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 28 Nov 2022 13:53:06 GMT
Content-Range: bytes 0-1432429/1432430
Content-Length: 1432430
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size:   1432430
Md5:    9bcfa52d111b14fc68090d2456c0ef1b
Sha1:   f27bfaafbdd796c5796a01e2ff5520f7a153bed2
Sha256: 9cfe07186757777f46b8fc3ecf8ab28d2cf1aa8fbf2c4044c86a2c1765c79d8a
                                        
                                            GET /landings/277102/1669380390/images/favicon.ico?t=20221128135306 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
x-amz-id-2: BJ164TYKUnU54WBUmu18W6Gz++inuveqQnoETpZXa/nCabV46Dn1OsCkwOqZ3UbkXjJ+nevnwmI=
x-amz-request-id: 7ZKH92BXHF9VCZVM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "8924ecd94cbad467c5c645d52fbee336"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 11340
Date: Mon, 28 Nov 2022 13:53:07 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel\012- data
Size:   11340
Md5:    8924ecd94cbad467c5c645d52fbee336
Sha1:   b1f83e498743f6a50594d08a6eb89620467958d2
Sha256: d33210764a14dfd57a8193ae2a5426ea1b9b63460fd3eced0aa9c175a1a833d3
                                        
                                            GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:32:45 GMT
expires: Thu, 23 Nov 2023 18:32:45 GMT
cache-control: public, max-age=31536000
age: 415222
last-modified: Thu, 10 May 2018 20:35:51 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25088)
Size:   8604
Md5:    73069e532b7039778d3a7128c997c61a
Sha1:   c523bbf1ac7f4e612c8ade75434c42fbca885adc
Sha256: b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5
                                        
                                            GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lavavq.amazlngdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 18:29:53 GMT
expires: Tue, 21 Nov 2023 18:29:53 GMT
cache-control: public, max-age=31536000
age: 588194
last-modified: Thu, 10 May 2018 20:35:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35547)
Size:   10017
Md5:    fa9987a23f5a9d865766e952511baa30
Sha1:   f2e620b99ee61a01671ba6a9e22ca75d58a1b52d
Sha256: 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 13:11:12 GMT
cache-control: public,max-age=3600
age: 2515
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5422
Cache-Control: max-age=161050
Date: Mon, 28 Nov 2022 13:53:07 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:37:17 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: O3thElzvMizrqYBWLBoWgg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.163.38.240
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9Thj0LWokbSB7EBxe+f4QtiVYWs=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4616
Expires: Mon, 28 Nov 2022 15:10:04 GMT
Date: Mon, 28 Nov 2022 13:53:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4616
Expires: Mon, 28 Nov 2022 15:10:04 GMT
Date: Mon, 28 Nov 2022 13:53:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4616
Expires: Mon, 28 Nov 2022 15:10:04 GMT
Date: Mon, 28 Nov 2022 13:53:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4616
Expires: Mon, 28 Nov 2022 15:10:04 GMT
Date: Mon, 28 Nov 2022 13:53:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4616
Expires: Mon, 28 Nov 2022 15:10:04 GMT
Date: Mon, 28 Nov 2022 13:53:08 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 57082
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9430
Md5:    1f434933b5bd6377d299ada22d1ae7ef
Sha1:   075531f525e625b117b2497f31139c9824d0e9c5
Sha256: b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:13:33 GMT
age: 13175
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8885
Md5:    3a1a4e00f1f15827cf651f373863c379
Sha1:   70c2a238f06ca7e56ef80c83738e081bf0de3330
Sha256: 3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 57082
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6376
Md5:    78b1389f425425d0450c94d900404dc4
Sha1:   53b12a8702f7c5b7cc697e2a24da824d9434be65
Sha256: 0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9063
x-amzn-requestid: b45de1e6-0978-4436-9f34-6eb9077190af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIkMSFM4oAMF-1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63801a4e-2f13ef262fd67a4d3e58ca32;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 01:28:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2mWNy4e4Cl0_HH_RoNbH5ou0IyDT6tnO-2_trJXrTXOVfq21EDTPJQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 12:35:54 GMT
age: 4634
etag: "71f737c3cee7766494157cd6491ce247a785c09e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9063
Md5:    e615cdc2e330b5cf76435abce9aa631a
Sha1:   71f737c3cee7766494157cd6491ce247a785c09e
Sha256: 853f68bf79a553b9fbf0e10391424faf0a3c071370d05d369563f7824d1bda84
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6263
x-amzn-requestid: 5c3da401-eb9e-4904-a7e9-5e74648b8b77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KFfWoAMF99A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3110d65625e883502a5078a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X6t2ucU4VTXi5XIRLVpmTMxEW3MtinOQs3mIHIhgeW6aK6kN53dWEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:18 GMT
age: 57710
etag: "c033d1ecdb9e7640f3df044e39053bed8292fcbc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6263
Md5:    b24e349e9d22fb30fbc80497b512cead
Sha1:   c033d1ecdb9e7640f3df044e39053bed8292fcbc
Sha256: 2d77e3c39c60a3563613b1ba97ec0b1a256f41ad09936ba49b23d8cf22f8a7a8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:42:14 GMT
age: 58254
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10199
Md5:    2cd887044e91d7ed0f1a8d7119ff7dd0
Sha1:   ae8aa4ce6ddaccba771fe65446926b60fc5628da
Sha256: bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67