Overview

URL www.sav.com
IP172.66.42.235
ASNCLOUDFLARENET
Location United States
Report completed2022-09-06 19:07:48 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (25)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.sav.com (17) 443583 2015-03-02 07:22:33 UTC 2022-09-06 08:56:34 UTC 172.66.41.21
mnemonic passive DNS www.sav.com (17) 443583 2015-03-02 07:22:33 UTC 2022-09-06 08:56:34 UTC 172.66.42.235
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-06 12:27:00 UTC 93.184.220.29
mnemonic passive DNS bam.nr-data.net (1) 630 2015-02-10 00:06:27 UTC 2022-09-06 04:42:37 UTC 162.247.241.14
mnemonic passive DNS js.hs-banner.com (1) 2426 2020-03-26 17:45:21 UTC 2022-09-06 06:16:50 UTC 104.18.33.171
mnemonic passive DNS stackpath.bootstrapcdn.com (1) 2467 2018-04-05 04:41:29 UTC 2022-09-06 07:51:53 UTC 104.18.11.207
mnemonic passive DNS ka-p.fontawesome.com (6) 4489 2019-12-16 20:35:53 UTC 2022-09-06 05:17:11 UTC 104.18.22.52
mnemonic passive DNS ocsp.pki.goog (7) 175 2017-06-14 07:23:31 UTC 2022-09-06 04:40:10 UTC 142.250.74.3
mnemonic passive DNS fonts.gstatic.com (1) 0 2014-08-29 13:43:22 UTC 2022-09-06 04:40:06 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-06 04:43:30 UTC 52.89.255.30
mnemonic passive DNS js.hs-analytics.net (1) 2411 2013-09-26 02:22:44 UTC 2022-09-06 09:35:43 UTC 104.17.71.176
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-06 08:08:24 UTC 34.120.237.76
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-06 18:21:11 UTC 142.250.74.10
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-06 14:05:23 UTC 143.204.55.36
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-06 04:40:31 UTC 34.117.237.239
mnemonic passive DNS widget.trustpilot.com (5) 6018 2017-09-05 07:45:53 UTC 2022-09-06 14:13:31 UTC 143.204.55.80
mnemonic passive DNS forms.hsforms.com (1) 5160 2018-03-07 15:21:13 UTC 2022-09-06 11:32:40 UTC 104.16.88.5
mnemonic passive DNS js-agent.newrelic.com (1) 378 2017-01-30 05:00:15 UTC 2022-09-06 05:02:47 UTC 151.101.86.137
mnemonic passive DNS js.hscollectedforms.net (1) 5697 2017-03-02 10:33:31 UTC 2022-09-06 11:39:25 UTC 104.17.128.171
mnemonic passive DNS forms.hubspot.com (1) 3593 2014-03-21 07:12:37 UTC 2022-09-06 06:16:50 UTC 104.19.154.83
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-06 04:41:22 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-06 05:16:49 UTC 143.204.55.110
mnemonic passive DNS cdnjs.cloudflare.com (6) 235 2020-10-20 10:17:36 UTC 2022-09-06 05:39:46 UTC 104.17.24.14
mnemonic passive DNS js.hs-scripts.com (1) 2571 2016-08-09 10:18:36 UTC 2022-09-06 06:16:49 UTC 104.17.211.204
mnemonic passive DNS www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-09-06 17:28:25 UTC 142.250.74.174


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 172.66.42.235

Date UQ / IDS / BL URL IP
2022-09-06 19:07:48 +0000
0 - 0 - 0 www.sav.com 172.66.42.235

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-08 15:22:36 +0000
0 - 0 - 2 eco-innovation.info/primes-chauffage 104.16.14.194
2022-12-08 15:19:22 +0000
0 - 0 - 4 cba-australia.support/a1b2c3/a37d19fa17ccebc5 (...) 172.67.172.131
2022-12-08 15:19:07 +0000
0 - 0 - 4 vodafone.esmbranding.com/ 23.227.38.74
2022-12-08 15:17:46 +0000
0 - 0 - 1 vjnted-polsca.banking9994.xyz/ 188.114.97.1
2022-12-08 15:17:32 +0000
0 - 0 - 1 m.alternationcolonel.top/ 172.67.160.146

Last 1 reports on domain: sav.com

Date UQ / IDS / BL URL IP
2022-09-06 19:07:48 +0000
0 - 0 - 0 www.sav.com 172.66.42.235

No other reports with similar screenshot



JavaScript

Executed Scripts (20)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (70)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         172.66.41.21
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 06 Sep 2022 19:07:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.21
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: https://www.sav.com/
Set-Cookie: AWSALB=3dekw1d4G4BJ6BQce/uYnw+4AvKU+m5Ho1xc02PIVFWoOeXDyPm2gQWMl0bZluUtFaSvBi1kLlBwA6kXsjtqSG77BgXDA3RHT7R7br542xf2bqkmL/2+8mp1Y7iS; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=3dekw1d4G4BJ6BQce/uYnw+4AvKU+m5Ho1xc02PIVFWoOeXDyPm2gQWMl0bZluUtFaSvBi1kLlBwA6kXsjtqSG77BgXDA3RHT7R7br542xf2bqkmL/2+8mp1Y7iS; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None ci_session=e7faf3cd9cf0fc2f797336fff27d82d5a9e7a83c; expires=Fri, 16-Sep-2022 19:07:37 GMT; Max-Age=864000; path=/; domain=.sav.com; HttpOnly
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q4ATA0mtsnVA%2BP0OOPV2ST6yaofrBPbaDogO6xPHdoRrgL%2FSPhOlIQsC5N%2FmJCcNcoACP0rx%2F1VU8jAxNTz1ruB%2FQnBvXauDlq0MGnFTOO%2FwA9GrhvBaom2oI%2BGc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74697d146b6c0afe-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (26577)
Size:   56202
Md5:    25ed5e504527f60f8301fdcb7b03a86d
Sha1:   7db96086147144b4ea3bb2505eb0acfd2a383ece
Sha256: 4dbd9b98b85d500d4da3da13b4d7439959e48cf5841d38eecced347b45ee8994
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10442
Expires: Tue, 06 Sep 2022 22:01:39 GMT
Date: Tue, 06 Sep 2022 19:07:37 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 19:04:22 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3eG7t_JKrm3MGSekEjeKA57vYS_uekx-VwW3j3seVB1Nt-XusM_tag==
Age: 195


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9q6MUAI9GcH1aMLFBLlrUoaZp9MWny5ChYgLpuf3dOZzHMJLNj-JXw==
age: 64340
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /ajax/libs/FitText.js/1.2.0/jquery.fittext.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 344
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cee-237"
last-modified: Mon, 04 May 2020 16:03:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 7933996
expires: Sun, 27 Aug 2023 19:07:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QJ11l56YpBEQJ%2F39qPgS%2Fja8JUG9yDk5gSwr6RMCDIbnU59LlqYV4zkJJ65yGL8wuC%2F0HqYqiN7FNQeS%2FtakM8K6g05798HBjwT1%2B%2BNNxFDAtc1NSk%2FdmXpyzpqsWrD3JAV7ZAx%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74697d185ed50b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (385)
Size:   344
Md5:    cd3641a36162e1a2537374555233c060
Sha1:   73e6e5b1da87ba4ac4266c8ba7588cae271d4f24
Sha256: 20126157761f1005f552c115dc28788fea8e9ff5340857e0b4595281ceebe2f7
                                        
                                            GET /ajax/libs/popper.js/1.14.6/umd/popper.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 6634
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-51ed"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3375430
expires: Sun, 27 Aug 2023 19:07:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BQOkGhg0T9SH9Gw2vybg4AelDg9PlyQoVbFNhM6XHzzsUBZY7Ws1aMVTaK22OYOdOBdQayBDURynq3CqDIybuUmKFGImUgEmRhx%2BS5l%2BmjroUBK0qzRdXmdOsb%2FLuTTeL0RdI7oe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74697d185ed00b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20800)
Size:   6634
Md5:    dfedfef5394dc12855a1ec785e3bd13b
Sha1:   1d8e5431e41ae6021ae6624ac3f298c3c37cf4cd
Sha256: 85c063db88d550571210304d57a5cd7b1e18e7b3d22e5069ac50c6e18030aecc
                                        
                                            GET /ajax/libs/jquery-timeago/1.6.7/jquery.timeago.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 2095
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-1cec"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 270115
expires: Sun, 27 Aug 2023 19:07:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xsrO%2FMV5L9rO%2BfvXtt5AMrlsji%2FX2WzCVRLUrrIbDpZG%2FUCRtz8M1w%2F1%2BlU0iLoH5wJCAcv2MBWuc%2BAcA4aXQz4QFnN244eBVkp5oFIZDQGXWtxAbsJsZ8mNx7eE3L3w734r6Rkm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74697d185ed10b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2095
Md5:    280f45e410754d868669f00991ed273a
Sha1:   e89650b5bc3039e3b7cea93ccdd2470addd432e2
Sha256: db217ea80b4262fa93dad1eb3d025011ccdccade881486b4bc7d1a1702268787
                                        
                                            GET /ajax/libs/bootstrap/4.5.3/css/bootstrap.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sav.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 17620
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60f6203f-44d4"
last-modified: Tue, 20 Jul 2021 01:00:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 2844608
expires: Sun, 27 Aug 2023 19:07:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7x%2BjlMLWdcEe5J%2FMfW0n2cmorhQGG%2F0rbx%2FBa3TpRMV9AXobez2U3sbVcef%2FaT%2B3PKZBA8rpvs5CM0Zfk46QHhbxfe5GMTRHoqqL6XK9EWxkgquVKhbT0WfAQI8slwKblEOlRYzQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74697d185ee60b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65326)
Size:   17620
Md5:    846ddad0a2d87c70e1432da66bacb65a
Sha1:   53d4d5e17b2347dde2f2428afb80a13c9627faeb
Sha256: 0a3b40fa90e0bbf21177033f2f9129e06bbeba325f76e902c37e3ceaa7ce755d
                                        
                                            GET / HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
x-powered-by: PHP/7.3.21
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
set-cookie: AWSALB=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None; Secure ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; expires=Fri, 16-Sep-2022 19:07:37 GMT; Max-Age=864000; path=/; domain=.sav.com; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5BXjL6cegyE7E6wRqgqLXHcWson76156BIQq8zrszznrgEJsmUFFiZVJJxt62ibCGnvV5W5oQMXWDkBmQ1gvx67zJDy0Yqedh3B%2F%2BXCDhodgS2Gze9Wnp6ddA6gE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74697d16294ab527-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (26577)
Size:   26227
Md5:    a62af100df12443c3b1aa7c5a3ab6818
Sha1:   ded50e1490d7ee47545738efb7018153a81da162
Sha256: 2257810a0523b47a727a821d047a0eaa73c1d1dd01b9104e713235f7db94bfda
                                        
                                            GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.80
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-length: 6124
date: Tue, 06 Sep 2022 01:20:31 GMT
last-modified: Mon, 30 May 2022 14:38:02 GMT
etag: "5add60196e5f96a414fb4b9586764e5d"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _3LQ6lP4tyG62yy0htUCjXvJHViB8bBJW75nsTL1qSaVtVIUIWRdFw==
age: 64027
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Size:   6124
Md5:    5add60196e5f96a414fb4b9586764e5d
Sha1:   633f471b3c2fcedeef9cad90cb5bf56f5fe55588
Sha256: 5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
                                        
                                            GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sav.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 27433
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-1538f"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 1123447
expires: Sun, 27 Aug 2023 19:07:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E6CXHyXSZh9AVIsUcjQTFifFIJUBhyPl4ZMeb9jeQAOw2vvcICB1aN3sjeU%2Fda4OVKRXlvfZhw%2BL8Pd8dpv6XUMnXzEUok4B0qk45n9oMzz3kUTTqsUKNVvc7wz5pRXaqr%2BeXAzX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74697d186eed0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   27433
Md5:    77bd61b98f7b67af56639229724f8dd4
Sha1:   f04f07dd8ff53e58c32b738f81b71a014bca441d
Sha256: 8ce54c3b77bf31899b27b29188ff4936b580f2bd2b3222d43dda2851ba272e24
                                        
                                            GET /releases/v5.15.4/css/pro.min.css?token=ef48a658a5 HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sav.com/
Origin: https://www.sav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 5524182
accept-ranges: bytes
server: cloudflare
cf-ray: 74697d18e8a2b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65397)
Size:   54194
Md5:    dc9270247a97f75913a5d8934c24de03
Sha1:   ed9b0fa01b552571f99d529ed355b2ba91cfc48d
Sha256: 847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
                                        
                                            GET /images/tld_logos/me.png HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 10179
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Tue, 12 Jul 2022 21:40:07 GMT
etag: "27c3-5e3a28317c5b4"
cf-cache-status: BYPASS
set-cookie: AWSALB=sSZqAnsUvMbTsQz/mzH30h6zPgCE2Yaog5vmtIrwzE/Djbgrko6vT6TTDWDUP6XOicCvOB24U+sBCo0fnDqxBjvXzqiAnqoWK+lUz8hIE+T2uRta7a/D8NlJVEWL; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=sSZqAnsUvMbTsQz/mzH30h6zPgCE2Yaog5vmtIrwzE/Djbgrko6vT6TTDWDUP6XOicCvOB24U+sBCo0fnDqxBjvXzqiAnqoWK+lUz8hIE+T2uRta7a/D8NlJVEWL; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None; Secure
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=smaNOeXyAEhpLRSZXAesvYs%2Fm7RfEM1Zr6nb0xSDmA97nlgRPkg6TyaCNzuBdHnq5YE0BfNIkJ%2B3ccWdWidoUYkbkznnwjOlL2rWCDy15%2BeLJALZTLV4t%2FeGuCMS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d182d06b527-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size:   10179
Md5:    4c01abc948c2f69d22aa9567e849717c
Sha1:   556a6822949bacdf95665d57686b7540f6937e3b
Sha256: 7ad7749c9572c99167d81155036594ee283b122a0d3c753c531cad2d9405e73c
                                        
                                            GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=ef48a658a5 HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sav.com/
Origin: https://www.sav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 144536
accept-ranges: bytes
server: cloudflare
cf-ray: 74697d18e8a5b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27832)
Size:   2603
Md5:    eaaabd3f60063923cd5333eb1d7a20a1
Sha1:   0da69706105e28896a1f6eeaa91d5bec1b82f7f1
Sha256: f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
                                        
                                            GET /images/tld_logos/us.png HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 11179
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Tue, 09 Feb 2021 15:41:54 GMT
etag: "2bab-5bae9203783ab"
cf-cache-status: BYPASS
set-cookie: AWSALB=/jR/iZ3psQThMvt3nJ9ZyHRidDtlwFZrmpl0RWd+aF+n0aebW3IyzYXVYF6gBkEe+X4ZsRrsXDgbtxc0mZEkt3mJMQ3Xw7433+YxxEoWWbzbVisRB939K4Iu2bjj; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=/jR/iZ3psQThMvt3nJ9ZyHRidDtlwFZrmpl0RWd+aF+n0aebW3IyzYXVYF6gBkEe+X4ZsRrsXDgbtxc0mZEkt3mJMQ3Xw7433+YxxEoWWbzbVisRB939K4Iu2bjj; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None; Secure
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EGud44iWXGT4B8xsPaxxrw%2FdIPcLt5oGHLHYw0pQPJzFTfPOXC410uC6k8Wmu5B2lqWjt679hvaNEfmVLYeUdpxvbMWLrLKJvCzjXZ3HsaT3%2FhnkC91LHXd1sFZu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d182d08b527-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 100, 8-bit/color RGB, non-interlaced\012- data
Size:   11179
Md5:    a2d2a842da07f9e60d5c6d922e29f3e2
Sha1:   5f4c04f067c3d8b98110a7371126ebb5a2ced4be
Sha256: 0ba3d99fd284e13e6bff5c21c4bc409c7e4940bde8b3cb2639d6514b7417f1c4
                                        
                                            GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=ef48a658a5 HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sav.com/
Origin: https://www.sav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 144536
accept-ranges: bytes
server: cloudflare
cf-ray: 74697d18e8a3b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26366)
Size:   4194
Md5:    7fd743485fa194e25e2a207bff6c258a
Sha1:   97c999d752b95ee1ed6271a29aa58109dc17281e
Sha256: dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
                                        
                                            GET /images/tld_logos/shop.png HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 17222
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Tue, 19 Jul 2022 19:39:12 GMT
etag: "4346-5e42da3956687"
cf-cache-status: BYPASS
set-cookie: AWSALB=itW5JMP5XbqzsqC0OJozpKmzYgqTR2RkyoPxOGjYJ616zpNhaNOSolnpMfeqNuCnKb403Ak2WjLPe8UGwusJzr03IIhnL9RRDrxEkEOpirfa4f1ep906OgcgCRkL; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=itW5JMP5XbqzsqC0OJozpKmzYgqTR2RkyoPxOGjYJ616zpNhaNOSolnpMfeqNuCnKb403Ak2WjLPe8UGwusJzr03IIhnL9RRDrxEkEOpirfa4f1ep906OgcgCRkL; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None; Secure
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZAlA3BfGET4wu6LxhgZRuIApMM6Ds%2Fki%2F76%2Fl%2B6xwqGe9mkpgH6w6lmMlK1JPV4Ol1aSCaTRRtH%2B4EwZH3DsSLnEL%2FP7GwLzC4bLHBSi9OX6lvOAw7I8pKqDYM%2F1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d182d04b527-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size:   17222
Md5:    43079759627ee7ec7a25d38d3fd3246f
Sha1:   8b14625f0f8b94ca29a941226bd73872960617f5
Sha256: 90ac696b1a70298814bc741afc5966776e5f177c7350492dff10c046b5714a10
                                        
                                            GET /images/tld_logos/com.png HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 10521
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Tue, 03 Mar 2020 20:45:14 GMT
etag: "2919-59ff9617f3531"
cf-cache-status: BYPASS
set-cookie: AWSALB=vkjVa2ES5bc+NqtP6sFNBN9jFiemkbV4kLnKr9RjpYupX4lC59sMQpczjjRQWKv4PB5aR5bKo8BU9QOmVAdekrEFHMH5oyriAGq8bVNp24deeCbGeumEUH+Czq12; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=vkjVa2ES5bc+NqtP6sFNBN9jFiemkbV4kLnKr9RjpYupX4lC59sMQpczjjRQWKv4PB5aR5bKo8BU9QOmVAdekrEFHMH5oyriAGq8bVNp24deeCbGeumEUH+Czq12; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None; Secure
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9sbAqmDlJ46CWumkELeB8UTqyYiCjTAnMJ8DvJ3%2B%2FIiGS4D%2B60dqHP4XWWeTISTclx0xBZwk7fK0dwcbqVm1gCU2mun2bJISLylpN0qPA8hXlfMw7MUwyEUfvK3w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d181cf3b527-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 100, 8-bit/color RGB, non-interlaced\012- data
Size:   10521
Md5:    29fca868878847f10a4bba7ce2f0a158
Sha1:   95de58618ab778f75cac7849413f49f308f8d82e
Sha256: f73e91fff64fb5e23a083e7365a328666e1ad3e28feed49ac389ee8028310def
                                        
                                            GET /images/tld_logos/io.png HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 10532
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Tue, 03 Mar 2020 20:45:14 GMT
etag: "2924-59ff9617f3531"
cf-cache-status: BYPASS
set-cookie: AWSALB=RcGywnEFPXc3QapJL+w+ZxdOBG4KNWeQWfaT+xdr6uCVTohx3TIEw6l9Z4GiCF5DMWPYtX3j6wf4PPqDbQ3vqDLD8QpOEtotmGpFdoeedLubZQ4OSLZ/LgFaM8KL; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=RcGywnEFPXc3QapJL+w+ZxdOBG4KNWeQWfaT+xdr6uCVTohx3TIEw6l9Z4GiCF5DMWPYtX3j6wf4PPqDbQ3vqDLD8QpOEtotmGpFdoeedLubZQ4OSLZ/LgFaM8KL; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None; Secure
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hdFY5VEZb4NeVUcMHU2cAEF10aYOSeVNjrO2acTkAbNaTHPP6cIZxoHSs1tS26o%2FGQy8VsVQUJiisUnI4%2FCvxlr91vcKjghfJ4IGClTft19FgzwbOv7RyA25EdgG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d181cf5b527-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 100, 8-bit/color RGB, non-interlaced\012- data
Size:   10532
Md5:    b84235e1df5cb168ab69c93b91104a85
Sha1:   d3e22fda267bbf0f18d7951dc745c1042af97771
Sha256: 627fbdb4341939d5a8e0deecd01d65f9531c033709a89d384ae5ee083d3b51e0
                                        
                                            GET /images/icann-accredited.png HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 20299
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Thu, 27 Jun 2019 19:53:39 GMT
etag: "4f4b-58c5384a3de63"
cf-cache-status: BYPASS
set-cookie: AWSALB=SfI79G/lYkBRt0I+5oyn6g3MQHaGpVWBChc5GN1apcH4aB40WAfWv+mYWswdgDgpBPbzbqTpw8O54OErdIhakdxT38kiWhCGle+brpucTjdEtax/21Fe4hx5Hwb0; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=SfI79G/lYkBRt0I+5oyn6g3MQHaGpVWBChc5GN1apcH4aB40WAfWv+mYWswdgDgpBPbzbqTpw8O54OErdIhakdxT38kiWhCGle+brpucTjdEtax/21Fe4hx5Hwb0; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None; Secure
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yhbYSdqR%2BhMgFnVKan2EjnJrxlf2QHZLk6dFxsRAWZ6oJ%2FP3I%2F9rUUoFQyQtFkh2AMWWCiv68Llt3ngSiL9JuBai1b9%2Fo39pIsZB5ek%2B5lm%2FO%2FzjjX1jdM7lrIT5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d183d18b527-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 349 x 352, 8-bit colormap, non-interlaced\012- data
Size:   20299
Md5:    06d7b4e876e984539c81a23f2d99a573
Sha1:   5b2911fa40571fb36eb86e359073428da6918d19
Sha256: 27e9b22c9238d8d62fc9f39fe942a7777a1edeb5b8e892dd9b08cdd3382a3183
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 19:07:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /images/website-builder-preview-min.png HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
content-length: 281969
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Thu, 17 Jun 2021 22:22:14 GMT
etag: "44d71-5c4fda3a12856"
cf-cache-status: BYPASS
set-cookie: AWSALB=pV6uVEXnEckByDuVrNLqz+d7lYdaU9DHk38nmnGaqMhtyQwCKaz8RdaN/XNmKCAWnQN4ZueEhi8AL3QbWQBe0tyXAmv7v/aQ+AVLDOd3DK8np0U8Zb1GfIsT3d6M; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=pV6uVEXnEckByDuVrNLqz+d7lYdaU9DHk38nmnGaqMhtyQwCKaz8RdaN/XNmKCAWnQN4ZueEhi8AL3QbWQBe0tyXAmv7v/aQ+AVLDOd3DK8np0U8Zb1GfIsT3d6M; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None; Secure
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c88SI9P5khuv2Ps%2BJx1r%2F6b9OKEOomw6ZbteA%2BdpytCdYcEj0ukHubrhrAKqdFyEHM7nK%2BVtiw76TP0aLnDxsF2ZG1%2FjWK%2Bl%2B%2Fr%2B7Yo1pR03ieehZUjPWT9NzNwf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d181cf1b527-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1500 x 627, 8-bit colormap, non-interlaced\012- data
Size:   281969
Md5:    28b4e9922e03549f24b96a4bc6b68ae7
Sha1:   354f980e8688db6f1eea7e41919f442acae09168
Sha256: cfacd7b4d9eb9d7fb04c9916e084dea5724ab982b8d455babe7cad448363f8cf
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 18:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 18:43:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YhNAjXcfGZQkRNkCVEplk3EV49uQGZwE-v-K6F5MfYCIJh9NcbVE8g==
Age: 1759


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /20711733.js HTTP/1.1 
Host: js.hs-scripts.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.211.204
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
x-trace: 2B45CBF752BE80CC1FD0F68C38BA93AA7DE63FDDDD000000000000000000
cache-control: public, max-age=60
vary: Accept-Encoding
x-hubspot-correlation-id: 71c72162-1612-45d0-bd2b-cbcf3009d913
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.sav.com
last-modified: Tue, 06 Sep 2022 19:03:29 GMT
cf-cache-status: EXPIRED
expires: Tue, 06 Sep 2022 19:08:37 GMT
server: cloudflare
cf-ray: 74697d1898e3b523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (542)
Size:   990
Md5:    ebb3060aec1a83253524ae52e9111661
Sha1:   ae69be7ef0404bfeda0e3a3916307b5a3c1d261c
Sha256: b6b7efe7ae145df18fd90a53caa81834ff64bbd6664f0d2c486945f9765e0625
                                        
                                            GET /ajax/libs/font-awesome/5.9.0/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/octet-stream; charset=utf-8
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
content-length: 75440
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-126b0"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 437258
expires: Sun, 27 Aug 2023 19:07:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2HhxgZylBfFfxYVlW3x4CAK%2BObVnyWydLmqB%2FaToIzVgihv%2F3oqr7C2vudDFkqnqza%2BQng%2BRONYUdkUvdEA3oU%2BUVgMMYdg6WOrLxrvE0uEjrAwisoXqlA3iWJ8dJEGv5EfDDQCQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74697d1ac9a80b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 75440, version 329.-1049\012- data
Size:   75440
Md5:    b5cf8ae26748570d8fb95a47f46b69e1
Sha1:   07bed153d47f9129a944ee54dd72952deed074c8
Sha256: cd398be1a91817126cef10224738e624358edf6f08043abad7e60c1aaeccc8d0
                                        
                                            GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
content-length: 24800
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae357-60e0"
last-modified: Wed, 04 Aug 2021 18:58:31 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 339257
accept-ranges: bytes
server: cloudflare
cf-ray: 74697d1adc61b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data
Size:   24800
Md5:    4abe94f1746789f39110d3ebac7ebd96
Sha1:   bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91
Sha256: 299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
                                        
                                            GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.4.0.woff2 HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
content-length: 14132
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35a-3734"
last-modified: Wed, 04 Aug 2021 18:58:34 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 108899
accept-ranges: bytes
server: cloudflare
cf-ray: 74697d1afcb8b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 14132, version 331.-31196\012- data
Size:   14132
Md5:    97ce7185ee4e794d141fbb36e6d59495
Sha1:   f14d878ff2505be4f1d95d1322ece500a3242992
Sha256: e74637c2829d30ae2a6dbb4e801dc1011c672fffbf7937d44cfc42f081a7d4b6
                                        
                                            GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.10.2.woff2 HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
content-length: 17168
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae358-4310"
last-modified: Wed, 04 Aug 2021 18:58:32 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 108899
accept-ranges: bytes
server: cloudflare
cf-ray: 74697d1b0cb9b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17168, version 331.-31196\012- data
Size:   17168
Md5:    8a43eb7db323b6a82d87a458c34cbe82
Sha1:   968367a39a575ffe38f1cfda07eea12eff885831
Sha256: 2bbaabc785383c5d90abc17e6703ac6a057b9644c6ebdfe9e15709c6ffac9c71
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 19:07:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5531
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 19:07:38 GMT
Last-Modified: Tue, 06 Sep 2022 17:35:27 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 19:07:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 19:07:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=5de804cea525f00001f5a8f2 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.80
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 3268
date: Tue, 06 Sep 2022 03:21:47 GMT
last-modified: Wed, 17 Aug 2022 07:37:01 GMT
etag: "169c11447c8899640d94077331a08be1"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5MhsrCCwDj4ujBuPnHhPWKLMBB8pmEVjMJzj6aMS-MBhR43mhfjOIw==
age: 56752
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (12946)
Size:   3268
Md5:    169c11447c8899640d94077331a08be1
Sha1:   72077fcd0217fe3a3f851153bfab097190f94eaf
Sha256: e6a5ea781934e5922cb11a4cd5dbd39c818ade175d1ce39b4112b1c1aee8b9be
                                        
                                            GET /s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 06:19:53 GMT
expires: Fri, 01 Sep 2023 06:19:53 GMT
cache-control: public, max-age=31536000
age: 478065
last-modified: Mon, 11 Jul 2022 20:43:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 31196, version 1.0\012- data
Size:   31196
Md5:    ea2343c7dccad57360fb611d67204445
Sha1:   b603d9e68bb1ed5e4b33d5e31121160cb4d23452
Sha256: 2a04078f9550381b5148170ceaf5b378a1b31ed8274c6d0094aeba6f599462cc
                                        
                                            GET /trustboxes/53aa8912dec7e10d38f59f36/main.js HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=5de804cea525f00001f5a8f2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         143.204.55.80
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-length: 30568
last-modified: Wed, 17 Aug 2022 07:37:03 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Tue, 06 Sep 2022 01:33:06 GMT
cache-control: max-age=86400
etag: "5961fd4c52b929add20e8d5dbc723b78"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oOn7qFrFp40kpiLjmVQvy7DXjen6pPvqUC7SrG0NzSKRzjhXaKbsCw==
age: 63272
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (64281), with no line terminators
Size:   30568
Md5:    5961fd4c52b929add20e8d5dbc723b78
Sha1:   fc5af3b739ba6838f91854893939ec96f9099a2c
Sha256: f087a114ead68f2e2016f400ddd1c4d205383b2300cedb9b70ac0ebc2909cd89
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 19:07:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /images/logo/2x/New_Logo_Color.png HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/css/main_styles.css
Cookie: AWSALB=pV6uVEXnEckByDuVrNLqz+d7lYdaU9DHk38nmnGaqMhtyQwCKaz8RdaN/XNmKCAWnQN4ZueEhi8AL3QbWQBe0tyXAmv7v/aQ+AVLDOd3DK8np0U8Zb1GfIsT3d6M; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=pV6uVEXnEckByDuVrNLqz+d7lYdaU9DHk38nmnGaqMhtyQwCKaz8RdaN/XNmKCAWnQN4ZueEhi8AL3QbWQBe0tyXAmv7v/aQ+AVLDOd3DK8np0U8Zb1GfIsT3d6M
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
content-length: 8863
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Tue, 02 Aug 2022 21:00:08 GMT
etag: "229f-5e54866c5d86b"
cf-cache-status: BYPASS
set-cookie: AWSALB=oMKC8OJaF5t3C7TQitBpmWaFJrUk8JntK4VQH5L0qlAZnnejrHZA3WHb2oc4O+TF7kd44IHeg4fYNlKqj6WbAtRYNoEJIAkTE+N4g9/AWnSGohncGF5DvkZmR6Bw; Expires=Tue, 13 Sep 2022 19:07:38 GMT; Path=/ AWSALBCORS=oMKC8OJaF5t3C7TQitBpmWaFJrUk8JntK4VQH5L0qlAZnnejrHZA3WHb2oc4O+TF7kd44IHeg4fYNlKqj6WbAtRYNoEJIAkTE+N4g9/AWnSGohncGF5DvkZmR6Bw; Expires=Tue, 13 Sep 2022 19:07:38 GMT; Path=/; SameSite=None; Secure
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XAalw%2FjKNQV8Z2%2BS7VE7NgEycExjoPp5c5YVdrvunlOKIbasWJBMt2GSd%2BUvbVgegcfaPOTyrhG9yKVlxEqxy%2FGEjmOznOBFVKrLkSJlsdbJXYye1jdcunvbwpna"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d1ab8efb527-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   12875
Md5:    2fd668c8a3ee70e6b84a0112755980d0
Sha1:   07cf88cd0cfdf43f592cc577665fb8d3ca252c36
Sha256: 251cb625bab27705e2a54f296610fdcb933d35127121846dede04091e6540f5d
                                        
                                            GET /images/header-gray-background.png HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/css/main_styles.css
Cookie: AWSALB=pV6uVEXnEckByDuVrNLqz+d7lYdaU9DHk38nmnGaqMhtyQwCKaz8RdaN/XNmKCAWnQN4ZueEhi8AL3QbWQBe0tyXAmv7v/aQ+AVLDOd3DK8np0U8Zb1GfIsT3d6M; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=pV6uVEXnEckByDuVrNLqz+d7lYdaU9DHk38nmnGaqMhtyQwCKaz8RdaN/XNmKCAWnQN4ZueEhi8AL3QbWQBe0tyXAmv7v/aQ+AVLDOd3DK8np0U8Zb1GfIsT3d6M
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
content-length: 32934
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Thu, 27 Jun 2019 19:53:39 GMT
etag: "80a6-58c5384a3de63"
cf-cache-status: BYPASS
set-cookie: AWSALB=/lrMGuDn8vPPFsHJmQnhJqJmqANgou89DkjAOU0SGbnZy9BE7sAlln4STnmoZFAkjQJiilnLMOgKF/5d+VNyoH3MT0gFMSrJ9b/aRgWWD+cYq5/3nzBrXo/AwrO/; Expires=Tue, 13 Sep 2022 19:07:38 GMT; Path=/ AWSALBCORS=/lrMGuDn8vPPFsHJmQnhJqJmqANgou89DkjAOU0SGbnZy9BE7sAlln4STnmoZFAkjQJiilnLMOgKF/5d+VNyoH3MT0gFMSrJ9b/aRgWWD+cYq5/3nzBrXo/AwrO/; Expires=Tue, 13 Sep 2022 19:07:38 GMT; Path=/; SameSite=None; Secure
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CFw61Hq16E84HvqOILDap0M26YMBALDq2bqEpKPfCS1puoQ5Tf3lCqTY1tEN9%2BER9ykDaQ1vwGLkZOFfotMe2qPaIL6gGSUenTMCMxbHB2ctGkMrkqJ%2BvSgw6XgF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d1aa8d2b527-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 600 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size:   32934
Md5:    df3796531525f26775ef1f5bd3499fef
Sha1:   3de95d9a268cb5d01ee1d8c37c81b70c1b80eda2
Sha256: 1fa82d3f5bc47f7e28f8baa09884a1e482fd23c33950dd56352e997013f13ced
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 19:07:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 06 Sep 2022 18:41:12 GMT
expires: Tue, 06 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 1586
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            GET /stats/TrustboxImpression?locale=en-US&styleHeight=140px&styleWidth=100%25&theme=light&stars=5&url=https%3A%2F%2Fwww.sav.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5de804cea525f00001f5a8f2&widgetId=53aa8912dec7e10d38f59f36 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=5de804cea525f00001f5a8f2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         143.204.55.80
HTTP/2 204 No Content
                                        
cache-control: no-store,no-cache
date: Tue, 06 Sep 2022 19:07:37 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ALtzzC-bovLtwYam5PluQypw_PQNibRip_ZfwI2FHj8G2O8uJbK-MA==
X-Firefox-Spdy: h2

                                        
                                            GET /favicon-16x16.png HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=/lrMGuDn8vPPFsHJmQnhJqJmqANgou89DkjAOU0SGbnZy9BE7sAlln4STnmoZFAkjQJiilnLMOgKF/5d+VNyoH3MT0gFMSrJ9b/aRgWWD+cYq5/3nzBrXo/AwrO/; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=/lrMGuDn8vPPFsHJmQnhJqJmqANgou89DkjAOU0SGbnZy9BE7sAlln4STnmoZFAkjQJiilnLMOgKF/5d+VNyoH3MT0gFMSrJ9b/aRgWWD+cYq5/3nzBrXo/AwrO/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
content-length: 441
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Tue, 31 May 2022 19:33:18 GMT
etag: "1b9-5e053d844fb4f"
cf-cache-status: BYPASS
set-cookie: AWSALB=sI8N/HenfaX0DyWjBAzZ1S7pCS3H4mtTpauS5thJ4sNBDIiqxavSa/v5Q1zSXLMKdcGMcaK7HVKoacBO9QwjtAIu6Kj2xxZF8DHjpR9uYvbblTTlcaWvp40GCAVL; Expires=Tue, 13 Sep 2022 19:07:38 GMT; Path=/ AWSALBCORS=sI8N/HenfaX0DyWjBAzZ1S7pCS3H4mtTpauS5thJ4sNBDIiqxavSa/v5Q1zSXLMKdcGMcaK7HVKoacBO9QwjtAIu6Kj2xxZF8DHjpR9uYvbblTTlcaWvp40GCAVL; Expires=Tue, 13 Sep 2022 19:07:38 GMT; Path=/; SameSite=None; Secure
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z1Qt6tnIZSJfJegm7jajuzxXI8wUPtUTP0PLLiydNiJZjqlrHAPkgqodpE7SBqmoccqLJqF4vQHAiuAtUmUWFtamtzIhcs9S5b3N4YLri5XRf%2BcIr2TVEwZv04WO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d1bcaa6b527-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size:   441
Md5:    704834b926eb641d880a428f5c692b44
Sha1:   27b3a43ca45c9f5c7227ed52b9208d85021e1619
Sha256: 5de9a206664a4d0e7ba3def59f5ad4ff29b13615ac47a6256f4322759cd70808
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 19:07:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /apple-touch-icon.png HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=/lrMGuDn8vPPFsHJmQnhJqJmqANgou89DkjAOU0SGbnZy9BE7sAlln4STnmoZFAkjQJiilnLMOgKF/5d+VNyoH3MT0gFMSrJ9b/aRgWWD+cYq5/3nzBrXo/AwrO/; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=/lrMGuDn8vPPFsHJmQnhJqJmqANgou89DkjAOU0SGbnZy9BE7sAlln4STnmoZFAkjQJiilnLMOgKF/5d+VNyoH3MT0gFMSrJ9b/aRgWWD+cYq5/3nzBrXo/AwrO/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
content-length: 5718
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Tue, 13 Aug 2019 19:58:11 GMT
etag: "1656-590050f7074b7"
cf-cache-status: BYPASS
set-cookie: AWSALB=YiwRY9bhdjuuSQ7XSpj1kxUPop7KpnF8gMKTTz7g8Qg6rG9XFgvzGPTccsJsZV46NSzL1tNcOlO9mIVquw3QF6Mw4+gwsgfaPWKoTP619CQudGO1LJouhdBsLqic; Expires=Tue, 13 Sep 2022 19:07:38 GMT; Path=/ AWSALBCORS=YiwRY9bhdjuuSQ7XSpj1kxUPop7KpnF8gMKTTz7g8Qg6rG9XFgvzGPTccsJsZV46NSzL1tNcOlO9mIVquw3QF6Mw4+gwsgfaPWKoTP619CQudGO1LJouhdBsLqic; Expires=Tue, 13 Sep 2022 19:07:38 GMT; Path=/; SameSite=None; Secure
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9KQ6EDpqbtwh%2BHMdi9txUDL%2B6aUV7kYMpRwcOC5OmXWuwjNOQhrGE67NGi1HvNTrBdFOG55N2YrOD2pYPd3W7IfZVQ6l7fqvKBW1Bu7XCgeSeguNXthHcb0X4Tfm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d1bca99b527-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size:   5718
Md5:    b43fb8386dcd28b0ab239731d77cc913
Sha1:   e4bda0a14f2b374f29dff384ebe8eb54f883d92d
Sha256: 1726e4ccf3fd5fc88a90276f587139755ab8f5c3450b2b9ca741d26920d6a056
                                        
                                            POST /j/collect?v=1&_v=j96&a=1381180774&t=pageview&_s=1&dl=https%3A%2F%2Fwww.sav.com%2F&ul=en-us&de=UTF-8&dt=Sav&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=574647203&gjid=564871472&cid=901964014.1662491253&tid=UA-142700782-1&_gid=1545714213.1662491253&_r=1&_slc=1&z=224365862 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.sav.com
date: Tue, 06 Sep 2022 19:07:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    38684612f0c6bb6dfa16da92f4a6878f
Sha1:   6fe62d0dd7db314b7f9bb945672f078e01d27f0f
Sha256: a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jdCmchLu+YZyV3IjSuFsvw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.89.255.30
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fF9yC4UqJQoaQt+RCNY6rb8Siys=

                                        
                                            GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1 HTTP/1.1 
Host: forms.hsforms.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.88.5
HTTP/2 200 OK
content-type: image/gif
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
content-length: 35
x-trace: 2B585693B3D28D505360BCD6F7B72B200C720B6481000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: Accept-Encoding
x-hubspot-correlation-id: b8baddf9-5f04-42db-9bb8-9ba75befcd8b
access-control-allow-credentials: false
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74697d1dee0a1c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    c2196de8ba412c60c22ab491af7b1409
Sha1:   5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
Sha256: 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
                                        
                                            GET /nr-1216.min.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8=
x-amz-request-id: 4AV5AVKCCR961CNG
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8"
x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 06 Sep 2022 19:07:38 GMT
via: 1.1 varnish
x-served-by: cache-bma1656-BMA
x-cache: HIT
x-cache-hits: 4004
x-timer: S1662491259.819862,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 14391
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32022)
Size:   14391
Md5:    b7c09cc097b2847f9edc784adba62dcb
Sha1:   5aa648623cf5e3b4b215fe5d068a7904c59f2925
Sha256: 6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
                                        
                                            GET /1/NRJS-8157b8e0cd94813fb57?a=412474398&v=1216.487a282&to=NFBXMBFVWxdYAhBaWA0adAcXXVoKFjEFVFIQGl0LDlFFBV4E&rst=1909&ck=0&ref=https://www.sav.com/&ap=16&be=621&fe=1473&dc=1153&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1662491251140,%22n%22:0,%22f%22:346,%22dn%22:353,%22dne%22:353,%22c%22:353,%22s%22:357,%22ce%22:370,%22rq%22:371,%22rp%22:565,%22rpe%22:575,%22dl%22:598,%22di%22:1060,%22ds%22:1153,%22de%22:1155,%22dc%22:1472,%22l%22:1472,%22le%22:1480%7D,%22navigation%22:%7B%7D%7D&fcp=1121&at=GBdURllPSBk%3D&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Tue, 06 Sep 2022 19:07:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 74697d208d06fab8-OSL
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   68
Md5:    a63df29d6e0417cc1d00d8743d0ae34c
Sha1:   4fe2dc626d476e9a32c8982587e33fbc8aaf7b0b
Sha256: 025635a81f1246880710db88c48cd051393836cfd7016eb9f4aac7ac7b739a4e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 19:07:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 19:07:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 19:07:39 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:36:52 GMT
age: 52247
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12683
Md5:    ec466c0d472e43c11d36bf6fce068205
Sha1:   720d3624a76d060b8e2699e9aa7a320e3efd4878
Sha256: 5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bSBSzzRMdrVdoV3Ld8hYWq2AwO7Mswcwa8Tk_AKa44j1SlrFugNqpg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:48:06 GMT
age: 76773
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4426
Md5:    c81f3df885bdee8cac46ea9495e6b63b
Sha1:   fc766bca874a352a4acb569577d4cf6527f4f074
Sha256: e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:42 GMT
age: 76917
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6656
Md5:    983e705542fa78b4d5c876e0c1eada7e
Sha1:   5fc951e5236edd282d4975853ca35dab2e55fb17
Sha256: fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5775
x-amzn-requestid: dc0a6d9c-5aec-44a3-be54-69cec17f9de1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYfxE0noAMFz0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166dfe-6c8ec4b03fc761d81c988132;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: z3WamVQsZqAoYnfPZ0rgyYXGzs1jsv56D1oF4Wzva-H-T8a-xPU8mg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:00:00 GMT
age: 76059
etag: "3aea6a5aaf5ccda356d7e0941b33a7c2e2b13e80"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5775
Md5:    1a87857b93f99eab3118aae97a1c9d22
Sha1:   3aea6a5aaf5ccda356d7e0941b33a7c2e2b13e80
Sha256: 97ce11c0e0efe83d6568f173f9235160157c52b4ab4299823d508c072f113ddc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F803e9506-f3ea-4e09-a966-608b8dabf3b0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8134
x-amzn-requestid: 5f6027e8-842f-476a-85e5-cc8b848e4567
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FlpEoVIAMFuiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144fbd-7095c29a04d2f5310b1b84c4;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Gf6IGDeM-y_nDO1C3m9xeyAJdkYRe2CN87Pi986A7B1qsjq5p9VkQw==
via: 1.1 d7782b26e589b8e1397d352f4daf0d58.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 07:41:25 GMT
age: 41174
etag: "ec19429fa76d9ad47a0578734b011b530b79ebbf"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8134
Md5:    5540d72831e7e7b9fc287f92c48d9f5e
Sha1:   ec19429fa76d9ad47a0578734b011b530b79ebbf
Sha256: bc27a44853fd17cf51d6bba0db58a755c75a309d9b0cbcd454dfc9d62785f72f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7855
x-amzn-requestid: d7c8054c-d7d3-4b76-815d-36c3a2e1f6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYn6FwzoAMF40g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166e32-3ededbf27f83503978e0d775;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:46:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 8OlwFzmUfQEPeP7pT-g5wRMq0I1jllBnRU0Nxk4kNkcVD_evLZYc7g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:17:51 GMT
etag: "ae50ae4aecd962b698c19f2863857b51cea7fcec"
age: 74988
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7855
Md5:    8c23179b2131543088771e3fa84ff231
Sha1:   ae50ae4aecd962b698c19f2863857b51cea7fcec
Sha256: 660900ca69b1787a734c1dbe3d6b9b19656912b4bc4715964c4325edff57f008
                                        
                                            GET /js/common.js HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Mon, 09 Mar 2020 20:06:52 GMT
etag: W/"8b0-5a0718b51a676"
cf-cache-status: BYPASS
set-cookie: AWSALB=ccDX2590GzatHZngX/z+g9anJavA8bpMNtewytOp2XbKItbAW11DlednbHCxT95VZ5ESf0pbHqjxCUvFO94AFoF/0mYu0IuM+ZOau42GweMCKN78DKiWo3jwqyaM; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=ccDX2590GzatHZngX/z+g9anJavA8bpMNtewytOp2XbKItbAW11DlednbHCxT95VZ5ESf0pbHqjxCUvFO94AFoF/0mYu0IuM+ZOau42GweMCKN78DKiWo3jwqyaM; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None; Secure
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rNPvAMCyWSQGnVpPE07kGqy9%2F0tw3wtyahkPwwKWczQSbfNQMAjNHgY3NxqU1xJ%2B2m13uHvozjjp5QvrcecfHj0ZRk6GyjJLnuZMBrfdQSVZiw7kt547CPfgK5JD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d183d24b527-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /collectedforms.js HTTP/1.1 
Host: js.hscollectedforms.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.128.171
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 18 Jul 2022 02:17:32 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: gdKWpz_yvObw8s97wY_QgOhrdmJzIElp
etag: W/"877e5f54a66a69786dec54038d0864c4"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: RefreshHit from cloudfront
via: 1.1 e00fe5a6474c7751e48a9d991b40f4e2.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P3
x-amz-cf-id: WCJIQmwoTUVRh3Xm4PFD6v5-aBq_bUxLis2MDFavxWcTs1-LUaUMTw==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.285/bundles/project.js&cfRay=745b4a743b36b500-IAD
x-hs-target-asset: collected-forms-embed-js/static-1.285/bundles/project.js
x-hs-cache-status: EXPIRED
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 47478
server: cloudflare
cf-ray: 74697d1abf0fb512-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /20711733.js HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.33.171
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
x-amz-id-2: uX0crFokjianC9d9jQsM5euBfwcNMJo3ugbgA4GV1KLdVh9KZ1ZyYzTlmIBTkrQczHMCdenh3z8=
x-amz-request-id: TSPZPJ0KDEEMB8DZ
last-modified: Tue, 30 Aug 2022 23:05:56 GMT
etag: W/"a4fd6bca0d52c4641468af8936a3dc0b"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: 3nQxmIDgubpuZCZB_ZG3TyJFe8aID3gv
access-control-allow-origin: https://www.sav.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
expires: Tue, 06 Sep 2022 19:12:38 GMT
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d1acf500b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /analytics/1662491100000/20711733.js HTTP/1.1 
Host: js.hs-analytics.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.71.176
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
x-amz-id-2: s00yRTmoFj/n0JaRkXXuK2WACbkOi3Q9exJ7kj7QDT3xa6+Q8eTgbxQRRldJz2tCvFpmGMg97Ak=
x-amz-request-id: NZ028VKDNQ4QQ5GF
last-modified: Wed, 31 Aug 2022 14:01:43 GMT
etag: W/"aa087479737ae59a87d15b4bb4f09e61"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
expires: Tue, 06 Sep 2022 19:12:38 GMT
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d1bd9ed0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /shopping/get_cart_item_count_ajax HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VgMBWVRVDhAEVVNWAAUEX1w=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=/lrMGuDn8vPPFsHJmQnhJqJmqANgou89DkjAOU0SGbnZy9BE7sAlln4STnmoZFAkjQJiilnLMOgKF/5d+VNyoH3MT0gFMSrJ9b/aRgWWD+cYq5/3nzBrXo/AwrO/; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=/lrMGuDn8vPPFsHJmQnhJqJmqANgou89DkjAOU0SGbnZy9BE7sAlln4STnmoZFAkjQJiilnLMOgKF/5d+VNyoH3MT0gFMSrJ9b/aRgWWD+cYq5/3nzBrXo/AwrO/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
set-cookie: AWSALB=ay7Xwde0Kfp5Y0SHBkSG8dxn42mmUW6CZi0DC3IP16wsSTwD05N3TLRdGXpFEKCG6sssKA/IGCv5p+frpF/GFTHUOBMGNUjwD/7Rhpe/utTRWRpcg2DfSYoF5FZA; Expires=Tue, 13 Sep 2022 19:07:38 GMT; Path=/ AWSALBCORS=ay7Xwde0Kfp5Y0SHBkSG8dxn42mmUW6CZi0DC3IP16wsSTwD05N3TLRdGXpFEKCG6sssKA/IGCv5p+frpF/GFTHUOBMGNUjwD/7Rhpe/utTRWRpcg2DfSYoF5FZA; Expires=Tue, 13 Sep 2022 19:07:38 GMT; Path=/; SameSite=None; Secure ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; expires=Fri, 16-Sep-2022 19:07:38 GMT; Max-Age=864000; path=/; domain=.sav.com; HttpOnly
x-powered-by: PHP/7.3.21
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-newrelic-app-data: PxQFVFBbCgUGR1VTBQUAUlcIDhFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TGtbXxQRC1lWa0kDVEJsAQcRFm8LTAdVZ1ddRgtNPlALUhpGGgdPVlMIAwBIUUwFAAJUVR0bAk5EUFUDWwhRXFsDUVZcWlMDAxFOAldbEgM+
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RpbqM8HRWIOb%2F%2FmZsXaUm3j%2BCC6tMv0jdJaWVoSJVn6nd2buN7UVui6eTCp9OjjPKCYuytj84vz8Z1E5kp7d36a%2BSliNggjce9kH0bzafJSmqzUGd2M%2Bmgvl1WQM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74697d1c0b12b527-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /bootstrap/4.2.1/js/bootstrap.min.js HTTP/1.1 
Host: stackpath.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.11.207
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:07 GMT
cdn-cachedat: 02/05/2022 16:58:08
cdn-edgestorageid: 723
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.02
cdn-requestid: 616c3a4e8ddb06fcc9c1e6d8a67c40a3
cdn-cache: HIT
cf-cache-status: HIT
age: 144536
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74697d188d310b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css/main_styles.css HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Tue, 28 Jun 2022 20:56:35 GMT
etag: W/"6cc8-5e28845a01261"
cf-cache-status: BYPASS
set-cookie: AWSALB=/xvhkFbQhSa07/gOMUdHg+4cm9UMfJw3Te76Y4xgkzzu/xSljmb4a3KuS5ACRQk7tTUq17eyGu26JQeDEAdQ8hOhZmXd4+Nx1/aERZxCEtnMzqE9XTDf9CpKUgK5; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=/xvhkFbQhSa07/gOMUdHg+4cm9UMfJw3Te76Y4xgkzzu/xSljmb4a3KuS5ACRQk7tTUq17eyGu26JQeDEAdQ8hOhZmXd4+Nx1/aERZxCEtnMzqE9XTDf9CpKUgK5; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None; Secure
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wJfHZiKAH6f%2BYRauJXjLosl7LCOePXLMs4%2FJgplkP7NuR3S2Ohdu6bELvbzINypI8mTJv%2BMWq%2B5DLupktNcZxrcQl8A3E2SNAQRe8JcaSmyf9X8BULIAZqH6qFyb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d181cf0b527-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/two_factor.js HTTP/1.1 
Host: www.sav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Cookie: AWSALB=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR; ci_session=1206084d2660e2c69c812810d3c7773c7e774d14; AWSALBCORS=Si12HQWWyGRDf1yBA84hU3k5f7J9wQhVjYv5yCNp7ksYs2lfw983PgnmGB5Rq+jFOh5QQUrgFj8XurDsYN749tb3mDB+kYlRRkHWBDS/4nTFyecY2qxuTd3OI9kR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.66.42.235
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 06 Sep 2022 19:07:37 GMT
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, x-sessionid
last-modified: Thu, 14 Jan 2021 19:12:51 GMT
etag: W/"13e9-5b8e10ac21aa7"
cf-cache-status: BYPASS
set-cookie: AWSALB=AD5VBKa1Imxpg1Y3iirkwitEJ0CITq6aHw8FMwvGwf+mI9etQsYF3iGHdyWnTCPt3jMB7ej3vCotc3z2frKOaqqX56RzFOweQPHpRKAyp2M9pSsTohPbySy0NY9p; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/ AWSALBCORS=AD5VBKa1Imxpg1Y3iirkwitEJ0CITq6aHw8FMwvGwf+mI9etQsYF3iGHdyWnTCPt3jMB7ej3vCotc3z2frKOaqqX56RzFOweQPHpRKAyp2M9pSsTohPbySy0NY9p; Expires=Tue, 13 Sep 2022 19:07:37 GMT; Path=/; SameSite=None; Secure
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iRfy%2F5MVWaohHjAqlIFZkhmarW0XxzfADD2JkaawRAeghfAVXgyd%2Bi1AMGvqjLYnf8BIXxSb0RIsBhbRoTOCzAw%2FPnGsrXJsoXYEdfjeythj%2BfX3p1TPQCsvQiOV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74697d183d23b527-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Muli:300,400,500&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 19:07:37 GMT
date: Tue, 06 Sep 2022 19:07:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /trustbox-data/53aa8912dec7e10d38f59f36?businessUnitId=5de804cea525f00001f5a8f2&locale=en-US&reviewStars=5&includeReviews=true&reviewsPerPage=15 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=5de804cea525f00001f5a8f2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         143.204.55.80
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
content-encoding: gzip
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-fallback-status: BYPASS
x-skip-cache-cookie: 0
x-xss-protection: 1; mode=block
date: Tue, 06 Sep 2022 19:07:38 GMT
cache-control: public,max-age=1800
etag: "ad58d12fb7cb34f5ce7ef05ab4fcc52f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aJunfsfGxawEUKzm_7vfs3xbXBBFXmajo2diQzpP_AyS2SzrzPq1Lg==
age: 1266
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /collected-forms/v1/config/json?portalId=20711733&utk= HTTP/1.1 
Host: forms.hubspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sav.com
Connection: keep-alive
Referer: https://www.sav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.19.154.83
HTTP/2 200 OK
content-type: application/json;charset=utf-8
                                        
date: Tue, 06 Sep 2022 19:07:38 GMT
vary: Accept-Encoding
x-hubspot-correlation-id: 070e86a9-2709-4ef3-bbff-032812fda360
access-control-allow-credentials: false
access-control-allow-origin: https://www.sav.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=gf1uWmO_QlCWdSrdNvkAe5XG0BFpRssq_VWHYydXp.A-1662491258-0-AR8DQ4VssHFVN7k9Yj7qUQpzxW0h1BxXpOmiqM2IOEIFjvPkwV0VPfXI2VVyAdu5uSDj6IxuNkT/0YOTsZV44Ec=; path=/; expires=Tue, 06-Sep-22 19:37:38 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lwESx%2BHZiX5FNRPAZKDvGzqHuWfq2uvvw5SqsCRwtyY0UGGx9Sxsra9QP5P9IsyLGyc4BD3j50U46QWpgnodwC1%2FevktBle%2FsBM%2F0t%2BGQNC9lN7hFoyBN7%2BCPm4KliUw4XCZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74697d1c598fb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---