Report - is.gd/JbsacD

Report Overview

Submitted URL
is.gd/JbsacD
IP
104.25.233.53
ASN
#13335 CLOUDFLARENET
Submitted
2023-01-14 11:22:03
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	142.250.74.131
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	397 B	11 kB	142.250.74.3
cdn-dimi.akamaized.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.4 kB	2.0 MB	184.31.15.107
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.200.29.22
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	978 B	34 kB	216.58.207.227
is.gd	51320	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	784 B	595 B	172.67.83.132
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.33.119.27
dggono.paiatialdate.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	13 kB	63.32.216.166
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	59 kB	34.120.237.76
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	846 B	1.5 kB	142.250.74.74
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-14 11:21:35	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (is .gd)
2023-01-14 11:21:35	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (is .gd)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	cdn-dimi.akamaized.net/landings/274421/1665476197/js/title_tanslate.js?1665476197	3.0 kB	2023-03-08	2024-04-26
Pretty URL cdn-dimi.akamaized.net/landings/274421/1665476197/js/title_tanslate.js?1665476197 IP 184.31.15.107 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:05:28 Last Seen2024-04-26 09:59:10 Times Seen3635 Hash 5f373fa5bf21c44b9ad23b70ef96e73d 068ef5b63ab18924a286f2c0c3ec46545e08c678 7f40bc2c95ee280de5320ae7d33f2e57eeeb0cda5b5820f2c456a0c9ba50ed77 Loading...

	dggono.paiatialdate.net/?s1=178812&s2=1751515&s3=&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d	3.4 kB	2023-03-12	2023-03-12
Pretty URL dggono.paiatialdate.net/?s1=178812&s2=1751515&s3=&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:06:42 Last Seen2023-03-12 23:06:42 Times Seen1 Hash fcb767cbd79a4fa9916c2f90ca35a4b1 ca098138eb18bf424c830b56b20a29446868c4c9 32575369ded482472d3684a22c88ddcc6807fc4041621c6118d4ee5b318eb108 Loading...

	dggono.paiatialdate.net/js/pushjs/1.0.0/subscriber.js	9.4 kB	2023-03-07	2023-05-23
Pretty URL dggono.paiatialdate.net/js/pushjs/1.0.0/subscriber.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2023-05-23 11:55:13 Times Seen1847 Hash eaaa22632bcced1b4a2bad3c22bd618f c5bb4097ff0b252c19671985d5d431dfd6bb7281 20a2729b7c4f4c6a0dd2e80500284bd8c0e84e3e4076eb6a248e2951fec0c550 Loading...

	www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js	36 kB	2023-03-07	2024-04-21
Pretty URL www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP 142.250.74.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 23:30:58 Times Seen11070 Hash 0cb7a0eb328ea70ab360f861314c8820 e3e20eb50dae36f4cbcef1890b1cc7878acb537a 4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9 Loading...

	dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1	1.9 kB	2023-03-12	2023-03-12
Pretty URL dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1 IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:06:42 Last Seen2023-03-12 23:06:42 Times Seen1 Hash b9b6b7c69654556233b29b511c7c6971 97745151147df622253b835f0ed97a22654a7c49 553c055d802a782bf96d5407168c7c914e5e6e9935e568a384c4db81a545bdca Loading...

	dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1	3.1 kB	2023-03-12	2023-03-12
Pretty URL dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1 IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:06:42 Last Seen2023-03-12 23:06:42 Times Seen1 Hash 8218a9c78dac0ba4a3095f1094ac5515 df1b698e746a6e96d9f894582db8c6ac82607af0 e4a4974697ddd1cd8029799e2aae76d553faca9178db807e1dd3b2aca32288fd Loading...

	dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1	284 B	2023-03-12	2023-03-12
Pretty URL dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1 IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:06:42 Last Seen2023-03-12 23:06:42 Times Seen1 Hash e8007132995a6ec05318de481333f4e3 94f300fd573014c04190c6e310d0b7399cb02e59 be5b64ce54df3f3fde596b2f154dfca504da3601bca65e235598389c4439731e Loading...

	dggono.paiatialdate.net/js/pushjs/1.0.0/utils.js	7.1 kB	2023-03-07	2024-04-21
Pretty URL dggono.paiatialdate.net/js/pushjs/1.0.0/utils.js IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-21 23:30:57 Times Seen4796 Hash 711c7ecda710a342d24faef1dec76ede d1b38489603a2aecc2be5edb4fa4cd8d442fe727 41a5e34d6777a471d63211252ce51555815b728949dc81cec01414f4ffdb98eb Loading...

	dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1	8.9 kB	2023-03-12	2023-03-12
Pretty URL dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1 IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:06:42 Last Seen2023-03-12 23:06:42 Times Seen1 Hash e6252b03989c2d9ffeb170b5dca38fd9 b708fe8b87af4717e695a49f8635e66788541b0a 7607199b09bca697cd6dacb11c77f8dcfff568c86ce9a4d9ffe4c9ac838e56cb Loading...

	cdn-dimi.akamaized.net/landings/274421/1665476197/js/tn_pHash.js?1665476197	252 B	2023-03-07	2023-12-04
Pretty URL cdn-dimi.akamaized.net/landings/274421/1665476197/js/tn_pHash.js?1665476197 IP 184.31.15.107 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:19 Last Seen2023-12-04 06:45:22 Times Seen1475 Hash 3544c08851825a863747a126548d6993 01882998e61b9f93d5f346386fa633f6b8d95b2d 9804b1c7443db74b2d7fe81cf11d84c8f0d9a7dee281b4fe8c15552bdc7eed69 Loading...

	dggono.paiatialdate.net/?s1=178812&s2=1751515&s3=&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d	59 B	2023-03-07	2024-01-30
Pretty URL dggono.paiatialdate.net/?s1=178812&s2=1751515&s3=&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:41 Last Seen2024-01-30 00:06:54 Times Seen271 Hash 9d332ab7a1f65ecaa6935dfd69626832 d1f094a412afb0760ed2b02f2a8c35b897e4a38f 92f281629763a7f249bf5cbd234f52fb549bd29f364dc51b34cb8621b42d7c02 Loading...

	dggono.paiatialdate.net/?s1=178812&s2=1751515&s3=&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d	25 B	2023-03-07	2024-02-05
Pretty URL dggono.paiatialdate.net/?s1=178812&s2=1751515&s3=&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:52 Last Seen2024-02-05 05:17:29 Times Seen574 Hash 2d41d60a42497a65eec45b94de3c8bba ae34889e77f52741f04772e8ea5a012b45f1fb69 28cff31264d4ffb57f25808f303a8e26c94ff6eb2337314d471c5a936d433dba Loading...

	dggono.paiatialdate.net/?s1=178812&s2=1751515&s3=&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d	1.1 kB	2023-03-08	2024-01-30
Pretty URL dggono.paiatialdate.net/?s1=178812&s2=1751515&s3=&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:05:28 Last Seen2024-01-30 00:06:54 Times Seen364 Hash bbb1620627154e4d1dfe6f2311527a09 4ee6ef04a16d55e01adc79d286b2e228a20fb84b e91bc30aa3f8d254b591ba919d0310d22b54a570dba39128daa03e891552357e Loading...

	dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1	2.5 kB	2023-03-12	2023-03-12
Pretty URL dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1 IP 63.32.216.166 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:06:42 Last Seen2023-03-12 23:06:42 Times Seen1 Hash bae09b53dbcdaf70e8633add9581f4a9 8da4d15ca487c11d5cbfef1f33fd08a9dfe45519 b00c8413e531e2d95f96afca8de61dc3972e47b51de2a215ddbd3617c24b92aa Loading...

	cdn-dimi.akamaized.net/landings/274421/1665476197/js/vegas.js?1665476197	12 kB	2023-03-07	2024-03-04
Pretty URL cdn-dimi.akamaized.net/landings/274421/1665476197/js/vegas.js?1665476197 IP 184.31.15.107 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:43 Last Seen2024-03-04 11:45:24 Times Seen2745 Hash 9acc66fdf18dea05bd75165eb5a96259 f613c52a08155727d4f07536d7bc8df5b6fa0c84 4941450491d73ab79ffb428e660c4cb581acbbad86edf8e943211ea51fe3a6c1 Loading...

	cdn-dimi.akamaized.net/landings/274421/1665476197/js/translates.js?1665476197	28 kB	2023-03-07	2023-11-27
Pretty URL cdn-dimi.akamaized.net/landings/274421/1665476197/js/translates.js?1665476197 IP 184.31.15.107 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:19 Last Seen2023-11-27 04:28:25 Times Seen1471 Hash 07cee83d1be10af1ca991d1c60abd6e2 b5f142d6aac82ede612b6cf96b1e7f25d797e87a 6fc50a9d3f16721904905fa44980c6cac2e3e82f5da71c18f84d289dd1bc54d3 Loading...

	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 03:00:37 Times Seen37109606 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn-dimi.akamaized.net/landings/274421/1665476197/js/function.js?1665476197	4.2 kB	2023-03-07	2024-01-30
Pretty URL cdn-dimi.akamaized.net/landings/274421/1665476197/js/function.js?1665476197 IP 184.31.15.107 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:43 Last Seen2024-01-30 06:51:41 Times Seen1355 Hash 5da2c51949f2a873bf0091a104658e72 89d122a536af95bd4183de41fa10e6947c9806e8 80a1aae3b07ee310419c80f52fb2f179bfebc74bf46598bc6b041455feef3201 Loading...

	www.gstatic.com/firebasejs/5.0.2/firebase-app.js	25 kB	2023-03-07	2024-04-21
Pretty URL www.gstatic.com/firebasejs/5.0.2/firebase-app.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 23:30:58 Times Seen10994 Hash 9164d0e8a317eceb870cca88c9683127 4617c910005f7100b4ff26a458a8b4463e33cdc6 15c9bd66992ef54979c981763cae280f28b6845520020ed38b5ab5f3f70f7931 Loading...

HTTP Transactions (51)

	URL	IP	Response	Size
	is.gd/JbsacD	172.67.83.132	301 Moved Permanently	0 B
URL HTTP/1.1 is.gd/JbsacD IP 172.67.83.132:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /JbsacD HTTP/1.1 Host: is.gd User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Date: Sat, 14 Jan 2023 11:21:52 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Sat, 14 Jan 2023 12:21:52 GMT Location: https://is.gd/JbsacD Vary: Accept-Encoding Server: cloudflare CF-RAY: 7895fd954c2e0b61-OSL`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a8b4f1afb0e830b797238d34ab9254aa e011acef3d05c959a65205d53b651ecd18a889fe f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C" Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2460 Expires: Sat, 14 Jan 2023 12:02:52 GMT Date: Sat, 14 Jan 2023 11:21:52 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 0643dc6b6fed33b3537160b6bb77bcbf aa43bd1fbb30d2219f3285c1ee4991ffb33562c5 f137438e30e0d69cba77ca2eb736687873e4a9c06cf88d23c6d55ea930fde09f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F137438E30E0D69CBA77CA2EB736687873E4A9C06CF88D23C6D55EA930FDE09F" Last-Modified: Sat, 14 Jan 2023 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12736 Expires: Sat, 14 Jan 2023 14:54:08 GMT Date: Sat, 14 Jan 2023 11:21:52 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 14 Jan 2023 10:42:01 GMT content-type: application/json age: 2391 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 64765d3d978fd74d7bc47d55d4f097cf 92eb3f0d55ba99be28105c0b28ef7dd456817f1f 761aab02513e7a0ec55ea59109e88b39cbd4e17df0cd2035aa37a4693f22d1f3 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "761AAB02513E7A0EC55EA59109E88B39CBD4E17DF0CD2035AA37A4693F22D1F3" Last-Modified: Thu, 12 Jan 2023 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16647 Expires: Sat, 14 Jan 2023 15:59:19 GMT Date: Sat, 14 Jan 2023 11:21:52 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: gQ9TCUkFtQ6vwK8E9bzuIL4kTY/pqbt/uyx6t67dTMqIRcXH+f9rbleIbIhIbgrF0oi0MHwu9kk= x-amz-request-id: 6WVS3Y4NB40MT912 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 14 Jan 2023 10:43:42 GMT age: 2290 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sat, 14 Jan 2023 11:21:52 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 829aebc8a2b84d84b362542eafaa72d1 37d759b9176e2c59fa9d5d8229ad065fed493ed7 b6dd0a330aff1c14258730e030e4969d2ae6d80ca17b98e7d5d48f7a50e7fc59 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B6DD0A330AFF1C14258730E030E4969D2AE6D80CA17B98E7D5D48F7A50E7FC59" Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17483 Expires: Sat, 14 Jan 2023 16:13:15 GMT Date: Sat, 14 Jan 2023 11:21:52 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 14 Jan 2023 10:33:45 GMT age: 2887 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash c01ec61f7ca77158f474b3ab519c12fa fc82ae0fcd73a83a980b75709a08e65239894e4a f533e0fac9b92e79d4fbd6e70b42a83067de95f0a13cc737d7e5fa459baa4c54 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5859 Cache-Control: max-age=170553 Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 11:21:53 GMT Etag: "63c270a7-1d7" Expires: Mon, 16 Jan 2023 10:44:26 GMT Last-Modified: Sat, 14 Jan 2023 09:06:47 GMT Server: ECS (ska/F6FD) X-Cache: HIT Content-Length: 471`

	cdn-dimi.akamaized.net/landings/274421/1665476197/css/style.css?1665476197	184.31.15.107	200 OK	3.0 kB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/css/style.css?1665476197 IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type ASCII text Size 3.0 kB (2984 bytes) Hash 11c307ab54e4794178f8fdd350f18f7d 64719759a84339efeb7d27df155eeb7d19a418a2 79595d638cf44d8d7b46c0d590bd77703256eb4b04611373f7d566fc733e44c1 HTTP Headers `GET /landings/274421/1665476197/css/style.css?1665476197 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: GZlUbY1f6kfbk5kGRpWpvJsTcrWiWuj2SqLCK2/LP5GVDBJa0lSouaRh0+Dw6eeQ5FvrvhuHPmk= x-amz-request-id: AE05H2FQCD55W78N Last-Modified: Tue, 11 Oct 2022 08:16:41 GMT ETag: "3b2600a52194200f3e571497278a82b6" Accept-Ranges: bytes Content-Type: text/css Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 14 Jan 2023 11:21:53 GMT Content-Length: 2984 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/css/popup.css?1665476197	184.31.15.107	200 OK	635 B
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/css/popup.css?1665476197 IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type assembler source, ASCII text Size 635 B (635 bytes) Hash 4ed05a608a8ec589e8aa5b040f7bb878 c58649a707ba64aed8b285d3be9f6b06a85ea6cb bcc5d06c7b102eed1477b062020dc4414e4f6c4f9e390e3e67fa675a5f0fa363 HTTP Headers `GET /landings/274421/1665476197/css/popup.css?1665476197 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: YyoSk6nxCWB04kr/HHXl5s6IdhWfSBo7W1SfbxBZQ/kugp6Evd9BQbDyM6qsHoX/Y0FIuz8a3Dw= x-amz-request-id: AE0D938JW3DKKYAQ Last-Modified: Tue, 11 Oct 2022 08:16:41 GMT ETag: "5a61d45142ce5764a2b36dc75343fcd5" Accept-Ranges: bytes Content-Type: text/css Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 14 Jan 2023 11:21:53 GMT Content-Length: 635 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/js/vegas.js?1665476197	184.31.15.107	200 OK	3.4 kB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/js/vegas.js?1665476197 IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type ASCII text, with very long lines (11568), with CRLF line terminators Size 3.4 kB (3401 bytes) Hash 156c4046496d16408b06eb605ce1ab09 0dde2c6bbb3cf64132989866bdc1161be62474e3 657aac4fd9cd122e452b9da290c486d115af6b8fe8d409f39ab1d1d3dff44144 HTTP Headers `GET /landings/274421/1665476197/js/vegas.js?1665476197 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: 0eMT4koabHT9GPZ6EMpJ8fY/enZiDdahrDwddUnZCsoOqzzyk80ncN4Wu3mB2J7BbIur0PZKSHY= x-amz-request-id: EBYKSGB7HH0Y7XRY Last-Modified: Tue, 11 Oct 2022 08:16:41 GMT ETag: "9acc66fdf18dea05bd75165eb5a96259" Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 14 Jan 2023 11:21:53 GMT Content-Length: 3401 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/js/function.js?1665476197	184.31.15.107	200 OK	688 B
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/js/function.js?1665476197 IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type ASCII text Size 688 B (688 bytes) Hash ba7deda1bcbc1e2d5c127678e05b71a1 4707fef7ab43a522b3cf7f5c0db4c148c5a43701 303187afb2cbbbf6095724df7eaf8c7967bb019dc17e1224d9e2366ac7f381c5 HTTP Headers `GET /landings/274421/1665476197/js/function.js?1665476197 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: RBicN2YIwJDaXwdFFoJW7pWaCxs9dfgHbWd855X1LXLtL3Rd98qLo1b/Bkka0/HFOU7VD6z7zEo= x-amz-request-id: AE05BXDATH1EDXQ0 Last-Modified: Tue, 11 Oct 2022 08:16:41 GMT ETag: "5da2c51949f2a873bf0091a104658e72" Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 14 Jan 2023 11:21:53 GMT Content-Length: 688 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/js/translates.js?1665476197	184.31.15.107	200 OK	10 kB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/js/translates.js?1665476197 IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type Unicode text, UTF-8 text Size 10 kB (10048 bytes) Hash f54e5331f7d782d475a884cce1db33fd d5145e3ebcab1a21d4cdff8632c9901db93b962f 73c4aa8abb0450fbb7eef37c3afc3d6f11f0c2bc3f0a101323364b59298e4e2f HTTP Headers `GET /landings/274421/1665476197/js/translates.js?1665476197 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: vu1ucyXOBFWgv4fnKNSvlvMpL7uMz02fRFh/snhOu2ZJKnhcETFEA7B+QtVy8SkgWNu0ThPG7p4= x-amz-request-id: RT7YK4XR05JF9WZ3 Last-Modified: Tue, 11 Oct 2022 08:16:41 GMT ETag: "07cee83d1be10af1ca991d1c60abd6e2" Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 14 Jan 2023 11:21:53 GMT Content-Length: 10048 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/js/jquery-2.2.4.min.js?1665476197	184.31.15.107	200 OK	30 kB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/js/jquery-2.2.4.min.js?1665476197 IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type ASCII text, with very long lines (32065) Size 30 kB (29855 bytes) Hash 2fa28552f1ee4e1382ee43930b53afb8 803670da6a35378bf4eb73acc8e72fe4feb5ca30 ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494 HTTP Headers `GET /landings/274421/1665476197/js/jquery-2.2.4.min.js?1665476197 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: povQPQpLbRUVPnTpuUfc8XEQMZzH1lt6Sx1MYy+n9/W2McUe+PZLeAotsijwiA0hKg9bAFbUgyg= x-amz-request-id: MN4KF5C3Q59AW9S2 Last-Modified: Tue, 11 Oct 2022 08:16:41 GMT ETag: "2f6b11a7e914718e0290410e85366fe9" Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 14 Jan 2023 11:21:53 GMT Content-Length: 29855 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/js/tn_pHash.js?1665476197	184.31.15.107	200 OK	252 B
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/js/tn_pHash.js?1665476197 IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type ASCII text Size 252 B (252 bytes) Hash 3544c08851825a863747a126548d6993 01882998e61b9f93d5f346386fa633f6b8d95b2d 9804b1c7443db74b2d7fe81cf11d84c8f0d9a7dee281b4fe8c15552bdc7eed69 HTTP Headers `GET /landings/274421/1665476197/js/tn_pHash.js?1665476197 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: HRBoJImhv5UYd5aQ1tuQGLSy1wWIuPTbYeJk+kyIR6I62P0tXpet1YG1xchsrXwq17o+h4q7zm8= x-amz-request-id: XNN282C3ATG995JS Last-Modified: Tue, 11 Oct 2022 08:16:41 GMT ETag: "3544c08851825a863747a126548d6993" Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Content-Length: 252 Date: Sat, 14 Jan 2023 11:21:53 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/js/title_tanslate.js?1665476197	184.31.15.107	200 OK	1.3 kB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/js/title_tanslate.js?1665476197 IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type Unicode text, UTF-8 text, with CRLF line terminators Size 1.3 kB (1298 bytes) Hash 0e212ad4454c941c45c2e57df42c2b4f fe9d7c484c2c0d7a6475692ef984c53a06c95406 e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3 HTTP Headers `GET /landings/274421/1665476197/js/title_tanslate.js?1665476197 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: xbCMBptedXjL0Zgb1MuLUU7Lc7gJcHp+Dmsg5K3r9h/iQuZ3ZyUx1k091EiBzZAXJE3DS8h+syo= x-amz-request-id: 5FK1GMCZ4R19RW3C Last-Modified: Tue, 11 Oct 2022 08:16:41 GMT ETag: "5f373fa5bf21c44b9ad23b70ef96e73d" Accept-Ranges: bytes Content-Type: text/javascript Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 14 Jan 2023 11:21:53 GMT Content-Length: 1298 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/images/1.jpg	184.31.15.107	200 OK	62 kB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/images/1.jpg IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 900x1280, components 3\012- data Size 62 kB (62164 bytes) Hash 765620bf3d6dcdb5495b70409b6b4ba8 f4a00a38ca93130e5e0398deea0ba2f928e2172b e0d65a21b743f7fe6de2f4bd57316546e7f30c7810740d68322a44dfe3004373 HTTP Headers `GET /landings/274421/1665476197/images/1.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: 48MnJgH5g0QTKVeepX/2JnEaMk5AZvcZRU7HoyFx75ekuuWQiB8TqAsv1bjbyAZ75nc2d6VP6sQ= x-amz-request-id: 3J4KW72YQGHNWKM1 Last-Modified: Tue, 11 Oct 2022 08:16:40 GMT ETag: "765620bf3d6dcdb5495b70409b6b4ba8" Accept-Ranges: bytes Content-Type: image/jpeg Server: AmazonS3 Content-Length: 62164 Date: Sat, 14 Jan 2023 11:21:53 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/images/110010_2.jpg	184.31.15.107	200 OK	29 kB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/images/110010_2.jpg IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 682x388, components 3\012- data Size 29 kB (29319 bytes) Hash 2b8ac4e50a5bbbe4e6ea964bec7f3086 5486267315a7cd9eca01fa2fc6007060189c8b4f 8f700ae9dd68bd1130d528b77e1de92b4945e036060fdb01a02ccc148ab24ab3 HTTP Headers `GET /landings/274421/1665476197/images/110010_2.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: ZTSjQ3OjduGU6+N8E14MaMk9oSub6o/92F6D3hy3OvjGhCbYi8i0v7dzpjrgGgpaOUeVcxxkC6g= x-amz-request-id: VAP4DPZP69DZQB38 Last-Modified: Tue, 11 Oct 2022 08:16:41 GMT ETag: "2b8ac4e50a5bbbe4e6ea964bec7f3086" Accept-Ranges: bytes Content-Type: image/jpeg Server: AmazonS3 Content-Length: 29319 Date: Sat, 14 Jan 2023 11:21:53 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/images/logo-white.png	184.31.15.107	200 OK	9.5 kB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/images/logo-white.png IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type PNG image data, 300 x 124, 8-bit colormap, non-interlaced\012- data Size 9.5 kB (9461 bytes) Hash 27a8fdccc08741c52422bd4852f87c3a b103730d95829f64c0746b97a85e0ada4f6c18a2 7afbc6f7cb728a9b4dfd7791a8207c60bdd255ea2f00ba12880bee15f7fbdff0 HTTP Headers `GET /landings/274421/1665476197/images/logo-white.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: WWt2Nl0hrR9jYg6RX9ZbVtRJqXFPDQ7u0WxC1crFRDHfIFh2gLd88oFWMXA+wwAB8Zw37E7ThVc= x-amz-request-id: VAPEYD31YY3Z6V9N Last-Modified: Tue, 11 Oct 2022 08:16:40 GMT ETag: "27a8fdccc08741c52422bd4852f87c3a" Accept-Ranges: bytes Content-Type: image/png Server: AmazonS3 Content-Length: 9461 Date: Sat, 14 Jan 2023 11:21:53 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash b5628887325331ad3d660f7208e1995c 9e4bf04468a7aed126488ccb5552a8e02610f6dd 5cd181d6728fc5f0f4d88407b97af61db39c5a38feebdeb2c21335cf4402fca4 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 11:21:53 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash b5628887325331ad3d660f7208e1995c 9e4bf04468a7aed126488ccb5552a8e02610f6dd 5cd181d6728fc5f0f4d88407b97af61db39c5a38feebdeb2c21335cf4402fca4 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 11:21:53 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash b5628887325331ad3d660f7208e1995c 9e4bf04468a7aed126488ccb5552a8e02610f6dd 5cd181d6728fc5f0f4d88407b97af61db39c5a38feebdeb2c21335cf4402fca4 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 11:21:53 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	push.services.mozilla.com/	54.200.29.22	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.200.29.22:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: utmQu0vhX01JHq/VK58K4Q== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: dMMB3+OnW25yD13lnpdmdaxsMus=`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash df489559868985b8815baa1cfaaff191 cb804ae84a7d8c2b6580c97caa484cfb515c1435 ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 11:21:53 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash df489559868985b8815baa1cfaaff191 cb804ae84a7d8c2b6580c97caa484cfb515c1435 ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 11:21:53 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2	216.58.207.227	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size 16 kB (15860 bytes) Hash e9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 HTTP Headers `GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://dggono.paiatialdate.net Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 13 Jan 2023 13:33:13 GMT expires: Sat, 13 Jan 2024 13:33:13 GMT cache-control: public, max-age=31536000 age: 78520 last-modified: Wed, 11 May 2022 19:24:42 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2	216.58.207.227	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size 16 kB (15744 bytes) Hash 15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 HTTP Headers `GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://dggono.paiatialdate.net Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 11 Jan 2023 19:33:54 GMT expires: Thu, 11 Jan 2024 19:33:54 GMT cache-control: public, max-age=31536000 age: 229679 last-modified: Wed, 11 May 2022 19:24:48 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash df489559868985b8815baa1cfaaff191 cb804ae84a7d8c2b6580c97caa484cfb515c1435 ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 14 Jan 2023 11:21:53 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn-dimi.akamaized.net/landings/274421/1665476197/images/favicon.png?t=20230114112153	184.31.15.107	200 OK	4.1 kB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/images/favicon.png?t=20230114112153 IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size 4.1 kB (4093 bytes) Hash 40a54c3ecf143b64096b063ff793fdbb 017eafffc5e55226a2aec0dd3c03f1b6130a6bab 39b439471019cb16f819e05166d23492593310fd55cce8471062d8f2dc5de423 HTTP Headers `GET /landings/274421/1665476197/images/favicon.png?t=20230114112153 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: CNlLliq/XDZJzvPRM2vHDU6D2dhkCOU3ewtTpFP6pkEsiV5EqYIazc52OgcSsM+PCxxOaYgLYNQ= x-amz-request-id: ND4MYR6SNPS4TKXF Last-Modified: Tue, 11 Oct 2022 08:16:41 GMT ETag: "40a54c3ecf143b64096b063ff793fdbb" Accept-Ranges: bytes Content-Type: image/png Server: AmazonS3 Content-Length: 4093 Date: Sat, 14 Jan 2023 11:21:53 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js	142.250.74.3	200 OK	10 kB
URL HTTP/2 www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP 142.250.74.3:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (35547) Size 10 kB (10017 bytes) Hash fa9987a23f5a9d865766e952511baa30 f2e620b99ee61a01671ba6a9e22ca75d58a1b52d 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7 HTTP Headers `GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 10017 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 11 Jan 2023 10:16:38 GMT expires: Thu, 11 Jan 2024 10:16:38 GMT cache-control: public, max-age=31536000 age: 263115 last-modified: Thu, 10 May 2018 20:35:52 GMT content-type: text/javascript; charset=UTF-8 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	dggono.paiatialdate.net/js/pushjs/1.0.0/utils.js	63.32.216.166	200 OK	12 kB
URL HTTP/2 dggono.paiatialdate.net/js/pushjs/1.0.0/utils.js IP 63.32.216.166:0 ASN #16509 AMAZON-02 File type C source, ASCII text, with very long lines (32159) Size 12 kB (11991 bytes) Hash 262c195b66413b88c5fa395ffad05796 d2a9689d861d63c9f6e6857be9f53aa292e43462 33a8085f0dfed0a9f9046173aa24aa4b0c0f25051a0461a2045479904d508815 HTTP Headers GET /js/pushjs/1.0.0/utils.js HTTP/1.1 Host: dggono.paiatialdate.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/?s1=178812&s2=1751515&s3=&s5=backuser&click_id=&iexpp=1&j1=1&utm_source=da57dc555e50572d Cookie: unique_id=63c1d89200087b78; unique_id2=63c24df200055d51; 63c24df200055d51_c=1; ref_token=131044_1018_74105_157987_154911_44330_178812; impression=; 63c24df200055d51_sl=[274421] Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx date: Sat, 14 Jan 2023 11:21:53 GMT content-type: application/javascript expires: Sat, 21 Jan 2023 11:21:53 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 256e39696ba05f2324bbc49b2a396115 e1cf8b15abd0a20eb1218be517c03459514a59e0 d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9" Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6220 Expires: Sat, 14 Jan 2023 13:05:34 GMT Date: Sat, 14 Jan 2023 11:21:54 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 256e39696ba05f2324bbc49b2a396115 e1cf8b15abd0a20eb1218be517c03459514a59e0 d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9" Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6220 Expires: Sat, 14 Jan 2023 13:05:34 GMT Date: Sat, 14 Jan 2023 11:21:54 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 256e39696ba05f2324bbc49b2a396115 e1cf8b15abd0a20eb1218be517c03459514a59e0 d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9" Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6220 Expires: Sat, 14 Jan 2023 13:05:34 GMT Date: Sat, 14 Jan 2023 11:21:54 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 256e39696ba05f2324bbc49b2a396115 e1cf8b15abd0a20eb1218be517c03459514a59e0 d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9" Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6220 Expires: Sat, 14 Jan 2023 13:05:34 GMT Date: Sat, 14 Jan 2023 11:21:54 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg	34.120.237.76	200 OK	14 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 14 kB (13626 bytes) Hash afcc8f4875f4b74ca0640829b689731e 584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df 3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13626 x-amzn-requestid: 4769eaeb-0c78-4054-ad47-eefdd6ab2d03 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: eWHMZErbIAMF6sQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63b8b8b5-4c7bacfe060899044e361f70;Sampled=0 x-amzn-remapped-date: Sat, 07 Jan 2023 00:11:33 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: JRzc2Mcl4EasyH6_1kFh7sr-57f1HNDu-YN8YptDe_kcTET9x8P9LA== via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google date: Fri, 13 Jan 2023 14:03:21 GMT age: 76713 etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd34cbb2e-8cd4-4c61-a8c1-a6ab4f223abb.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd34cbb2e-8cd4-4c61-a8c1-a6ab4f223abb.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10461 bytes) Hash 41aec5fd4a5d8bb8cd840f4843d48250 13b3efa7259324d7dca3576a69936b5a7339ecf1 742eb5ccd303bf58c9d7c2288b1d36f2989bd030b69293c74dca463fd8bb6a10 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd34cbb2e-8cd4-4c61-a8c1-a6ab4f223abb.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10461 x-amzn-requestid: 2545c321-708a-418a-81a8-0b108fa83dc9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: es0pZEa5oAMF4cA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c1ce3b-7544647613db6c4c198145f3;Sampled=0 x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:47 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 0bt51kj0PtGNr8Z37lVs7-BoR82dj3clknoURdKFQexK7yV9Pvf_sw== via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google date: Fri, 13 Jan 2023 21:49:06 GMT age: 48768 etag: "13b3efa7259324d7dca3576a69936b5a7339ecf1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69cd0f59-3b24-4742-958c-e856dc02789f.jpeg	34.120.237.76	200 OK	4.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69cd0f59-3b24-4742-958c-e856dc02789f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.0 kB (3955 bytes) Hash 7055d5db8f2f9c89dfab16c4fe3f11a5 29566fe8eb5c9d12b0584642dac170c93ba80b90 6510cf0eda1d062df3b81b2b797e9bfca73040cac874e80ae9b8ff70b0407302 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69cd0f59-3b24-4742-958c-e856dc02789f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 3955 x-amzn-requestid: 28db68a0-ab23-4bef-b415-54120d187f80 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: eZ0gWEF6IAMFT7Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63ba3468-23b24e4a2c863aed25e0c81e;Sampled=0 x-amzn-remapped-date: Sun, 08 Jan 2023 03:11:36 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: lkGbybdV4gBs1HNNzdVIBzyA5Akcx2T4YZX9Q1kR847Q33pG8sJ67w== via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google date: Fri, 13 Jan 2023 21:15:41 GMT age: 50773 etag: "29566fe8eb5c9d12b0584642dac170c93ba80b90" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg	34.120.237.76	200 OK	8.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.2 kB (8181 bytes) Hash d24ea1f095f492934a1f1c63f5d8590c dade37148c9b9a941f93a8535d8ddc5de3952623 2d8e3f90eb347eb3479a6c5d20a1c2ca6a0560f335a6c6800948db2640e4c878 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8181 x-amzn-requestid: 7ada8fbd-58e6-4433-a532-b4a4ef93ac9c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: es0paH-OIAMFg5A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c1ce3c-582529522dbb67ee728484f8;Sampled=0 x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:48 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: AHjOmYxva5avyA3gt9DvYLas_B2ACimer5QRQOi919HDtSjnKq22lw== via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google date: Fri, 13 Jan 2023 21:36:45 GMT age: 49509 etag: "dade37148c9b9a941f93a8535d8ddc5de3952623" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg	34.120.237.76	200 OK	7.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.4 kB (7447 bytes) Hash 2363dbe7bb6a459853d8d19cab50e70b ded76de1dd453e40dbf6eaa8607cf19fac7f71a4 f96da6354cec52143768014c36ba2b298224a58b0bf38bd2aa5f3bfce69d8670 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7447 x-amzn-requestid: dd3543b7-4e6b-4605-acea-a21d39af02ca x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: es0qSFjAIAMF7HQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c1ce41-56e2ccc63669032d70cba0ba;Sampled=0 x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:53 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: AYaeawnEmwHkyx3h-yliVx-ARcRB3W5kbtFH5tARnL3YMD6e4WYAQw== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google date: Fri, 13 Jan 2023 21:49:01 GMT age: 48773 etag: "ded76de1dd453e40dbf6eaa8607cf19fac7f71a4" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg	34.120.237.76	200 OK	9.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.1 kB (9135 bytes) Hash 64ba27a2f0a3bc61bd325f1fb317b755 c65c58476b66cbb6269ba1d8412d270a0a003ae3 5f7f03752f8a7c8c08d92512ae93b193ea37f59354503c3129d33fd2910f87e0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9135 x-amzn-requestid: 2c5e9de0-9244-43ac-b7c4-712cbcf7038c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: enAnoG6roAMFzgA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63bf7afd-7fb640b30bab63bc1979a173;Sampled=0 x-amzn-remapped-date: Thu, 12 Jan 2023 03:14:05 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: RnAGo4OuBl5UjyOlUOJqu2nlFLHTOe0ETxokWtbI4frbpkNVnIBSew== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Sat, 14 Jan 2023 01:41:40 GMT age: 34814 etag: "c65c58476b66cbb6269ba1d8412d270a0a003ae3" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	cdn-dimi.akamaized.net/landings/274421/1665476197/images/2.jpg	184.31.15.107	200 OK	103 kB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/images/2.jpg IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 960x1280, components 3\012- data Size 103 kB (102832 bytes) Hash 3b8b455b24c71ae1f928266241e9517e 8b98ca60c92b83e039c3b996f090883ed8b7ca75 c8d05f7eda85f68f0a08307eeee4e481282fda95570dd53f300b8aadd4f504f6 HTTP Headers `GET /landings/274421/1665476197/images/2.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: mPe8jzgcIdu6bcSCq1gVBCW65g60NpF0gxDmV5denMIpLe872ToO+Vt7o9RBUzef5ExIIJ4E/+s= x-amz-request-id: QVDBZFV3AE9EA5G3 Last-Modified: Tue, 11 Oct 2022 08:16:40 GMT ETag: "3b8b455b24c71ae1f928266241e9517e" Accept-Ranges: bytes Content-Type: image/jpeg Server: AmazonS3 Content-Length: 102832 Date: Sat, 14 Jan 2023 11:21:55 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/images/3.jpg	184.31.15.107	200 OK	150 kB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/images/3.jpg IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1108x1280, components 3\012- data Size 150 kB (149812 bytes) Hash 8ff03d86c53d978e5527374b5bcd5114 2b63b0853d74e24d74d26dbf9622c407e3c74ea9 10dedae19a11a0cf1cea2db4646bde720e63e35140f38ae3453fa2a4e4649e1c HTTP Headers `GET /landings/274421/1665476197/images/3.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: CPbwhuzuNQEKa8RuY8+dl+qC+D6wKhZjQnNCpkLEDJF0c4yW8kNU3Hz6E5OaXr+fXqEhMisvM6I= x-amz-request-id: YHSKK28B43558XBC Last-Modified: Tue, 11 Oct 2022 08:16:40 GMT ETag: "8ff03d86c53d978e5527374b5bcd5114" Accept-Ranges: bytes Content-Type: image/jpeg Server: AmazonS3 Content-Length: 149812 Date: Sat, 14 Jan 2023 11:21:55 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	cdn-dimi.akamaized.net/landings/274421/1665476197/images/1.mp4	184.31.15.107	206 Partial Content	1.6 MB
URL HTTP/1.1 cdn-dimi.akamaized.net/landings/274421/1665476197/images/1.mp4 IP 184.31.15.107:0 ASN #20940 Akamai International B.V. File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data Size 1.6 MB (1560164 bytes) Hash 379ddec6d7d6e118bd7565d1c83dbb90 16becb1b44f3f35b0fa239668901338cba6eff06 5635dd2c6c23dfdc3e4eb82afc4231a27e8522ec332b8568a3fc7ae8755fec94 HTTP Headers `GET /landings/274421/1665476197/images/1.mp4 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: video/webm,video/ogg,video/;q=0.9,application/ogg;q=0.7,audio/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- Connection: keep-alive Referer: https://dggono.paiatialdate.net/ Sec-Fetch-Dest: video Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 206 Partial Content x-amz-id-2: 7WQT3dnUllC07fxlJjIkhL9spinVcbIdvuHY56LKZ84NdxupK/lJc446MDU8JEJawTNLKf1ChTE= x-amz-request-id: 543KTTKJGQ4JHXKG Last-Modified: Tue, 11 Oct 2022 08:16:40 GMT ETag: "379ddec6d7d6e118bd7565d1c83dbb90" Accept-Ranges: bytes Content-Type: video/mp4 Server: AmazonS3 Date: Sat, 14 Jan 2023 11:21:55 GMT Content-Range: bytes 0-1560163/1560164 Content-Length: 1560164 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"`

	dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1	63.32.216.166	200 OK	0 B
URL HTTP/2 dggono.paiatialdate.net/?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1 IP 63.32.216.166:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1 HTTP/1.1 Host: dggono.paiatialdate.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK server: nginx date: Sat, 14 Jan 2023 11:21:53 GMT content-type: text/html; charset=utf-8 set-cookie: unique_id=63c1d89200087b78; Path=/; Expires=Wed, 15 Mar 2023 11:21:53 GMT; Secure; SameSite=None unique_id2=63c24df200055d51; Path=/; Expires=Fri, 14 Apr 2023 11:21:53 GMT; Secure; SameSite=None 63c24df200055d51_c=1; Path=/; Expires=Fri, 14 Apr 2023 11:21:53 GMT; Secure; SameSite=None ref_token=131044_1018_74105_157987_154911_44330_178812; Path=/; Expires=Mon, 13 Feb 2023 11:21:53 GMT; Secure; SameSite=None impression=; Path=/; Expires=Sat, 14 Jan 2023 11:21:53 GMT; Secure; SameSite=None 63c24df200055d51_sl=[274421]; Path=/; Expires=Sat, 28 Jan 2023 11:21:53 GMT; Secure; SameSite=None content-encoding: gzip X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=Roboto:wght@300;400;700&display=swap	142.250.74.74	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@300;400;700&display=swap IP 142.250.74.74:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css2?family=Roboto:wght@300;400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 14 Jan 2023 11:21:53 GMT date: Sat, 14 Jan 2023 11:21:53 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=Ubuntu:wght@400;700&display=swap	142.250.74.74	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css2?family=Ubuntu:wght@400;700&display=swap IP 142.250.74.74:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css2?family=Ubuntu:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 14 Jan 2023 11:21:53 GMT date: Sat, 14 Jan 2023 11:21:53 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	dggono.paiatialdate.net/js/service-worker.js	63.32.216.166	200 OK	0 B
URL HTTP/2 dggono.paiatialdate.net/js/service-worker.js IP 63.32.216.166:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers GET /js/service-worker.js HTTP/1.1 Host: dggono.paiatialdate.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Service-Worker: script Connection: keep-alive Cookie: unique_id=63c1d89200087b78; unique_id2=63c24df200055d51; 63c24df200055d51_c=1; ref_token=131044_1018_74105_157987_154911_44330_178812; impression=; 63c24df200055d51_sl=[274421] Sec-Fetch-Dest: serviceworker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Sat, 14 Jan 2023 11:21:53 GMT content-type: application/javascript expires: Sat, 21 Jan 2023 11:21:53 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2`

	is.gd/JbsacD	104.25.234.53	301 Moved Permanently	0 B
URL HTTP/2 is.gd/JbsacD IP 104.25.234.53:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /JbsacD HTTP/1.1 Host: is.gd User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/2 301 Moved Permanently date: Sat, 14 Jan 2023 11:21:52 GMT content-type: text/html; charset=UTF-8 location: https://dggono.paiatialdate.net?utm_source=da57dc555e50572d&s1=178812&s2=1751515&j1=1 cf-cache-status: DYNAMIC server: cloudflare cf-ray: 7895fd97385bb527-OSL X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML