urlquery - report: l.wl.co/l?u=h7mhl.app.link/DkoTp2RUgvb

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
l.wl.co (2)	423824	No data	No data	31.13.72.8
sydney.kayuu.xyz (3)	0	No data	No data	185.168.111.241	Unknown ranking
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2020-05-03 10:09:39 UTC	54.148.213.75
ocsp.digicert.com (6)	86	2012-05-21 07:02:23 UTC	2020-05-02 20:58:10 UTC	93.184.220.29
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-11-29 05:48:55 UTC	34.102.187.140
content-signature-2.cdn.mozilla.net (1)	1152	No data	No data	34.160.144.191
fonts.googleapis.com (2)	8877	2013-06-10 20:14:26 UTC	2022-11-29 09:35:58 UTC	142.250.74.10
h7mhl.app.link (1)	0	No data	No data	54.230.111.120	Domain (app.link) ranked at: 6772
r3.o.lencr.org (5)	344	No data	No data	23.36.77.32
www.facebook.com (1)	99	2012-05-21 00:23:41 UTC	2021-06-08 06:38:51 UTC	31.13.72.36
cdn-dimi.akamaized.net (33)	0	No data	No data	184.31.15.67	Domain (akamaized.net) ranked at: 280
img-getpocket.cdn.mozilla.net (6)	1631	2018-06-21 23:36:00 UTC	2020-02-19 04:43:25 UTC	34.120.237.76
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-11-29 05:51:44 UTC	34.117.237.239
ocsp.pki.goog (7)	175	2018-07-01 06:43:07 UTC	2020-05-02 20:58:16 UTC	142.250.74.3
fonts.gstatic.com (4)	0	2014-09-09 00:40:21 UTC	2022-11-29 07:36:52 UTC	216.58.207.195	Domain (gstatic.com) ranked at: 540
mdjdg.prodlgiousdates.com (5)	0	No data	No data	52.19.101.114	Unknown ranking
www.gstatic.com (2)	0	2016-07-26 09:37:06 UTC	2022-11-29 09:50:47 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540

Scan Date	Severity	Indicator	Comment
2022-11-29	2	mdjdg.prodlgiousdates.com/ortb	Phishing
2022-11-29	2	mdjdg.prodlgiousdates.com/js/pushjs/1.0.0/subscriber.js	Phishing
2022-11-29	2	mdjdg.prodlgiousdates.com/js/service-worker.js	Phishing
2022-11-29	2	mdjdg.prodlgiousdates.com/js/pushjs/1.0.0/utils.js	Phishing

Date	UQ / IDS / BL	URL	IP
2023-02-01 15:13:07 +0000	0 - 0 - 0	l.wl.co/l?u=	31.13.72.8
2023-01-29 20:05:59 +0000	0 - 2 - 23	l.wl.co/l?u=tinyurl.com/2fcgyd8l	31.13.72.8
2023-01-20 14:38:22 +0000	0 - 0 - 0	l.wl.co	31.13.72.8
2023-01-13 14:04:41 +0000	0 - 0 - 0	l.messenger.com/l.php?u=https%3A%2F%2F6w9.lin (...)	31.13.72.8
2023-01-09 08:37:13 +0000	0 - 0 - 1	fbsecurity.co/	31.13.72.8

Date	UQ / IDS / BL	URL	IP
2023-02-06 21:32:17 +0000	0 - 0 - 0	www.whatsapp.com	31.13.72.52
2023-02-06 20:51:26 +0000	0 - 0 - 0	www.facebook.com/100089853466816/videos/69639 (...)	157.240.205.35
2023-02-06 20:17:43 +0000	0 - 0 - 0	www.facebook.com/kaede.todoroki.1?mibextid=ZbWKwL	31.13.72.36
2023-02-06 20:14:55 +0000	0 - 0 - 0	www.facebook.com/profile.php?id=1000249139388 (...)	31.13.72.36
2023-02-06 19:33:09 +0000	0 - 0 - 0	www.whatsapp.com	157.240.205.60

Date	UQ / IDS / BL	URL	IP
2023-02-02 20:11:54 +0000	0 - 0 - 2	l.wl.co/l?u=tinyurl.com/2mkfhx48	157.240.205.1
2023-02-02 15:43:05 +0000	0 - 0 - 1	l.wl.co/l?u=dwfmc.app.link/N2lcOdJh0wb	157.240.205.1
2023-02-01 15:13:07 +0000	0 - 0 - 0	l.wl.co/l?u=	31.13.72.8
2023-01-29 20:05:59 +0000	0 - 2 - 23	l.wl.co/l?u=tinyurl.com/2fcgyd8l	31.13.72.8
2023-01-20 14:38:22 +0000	0 - 0 - 0	l.wl.co	31.13.72.8

Date	UQ / IDS / BL	URL	IP
2022-11-29 04:16:41 +0000	0 - 0 - 4	jouwbedrijf.eu/	104.21.54.180
2022-11-29 01:31:27 +0000	0 - 0 - 1	deoseasr.org/dau/news/news/news/1513260978-DE (...)	67.227.226.240
2022-11-28 09:16:35 +0000	0 - 0 - 4	regenbogen-karriere.de/tutorial/26058/28246739.php	172.67.212.221
2022-11-27 22:12:09 +0000	0 - 0 - 4	kaygater.online/vz60d2zvn4	65.109.26.202
2022-11-27 21:59:38 +0000	0 - 0 - 4	kaygater.online/ubfda4kobo	65.109.26.202

Request	Response
GET /l?u=https://h7mhl.app.link/DkoTp2RUgvb HTTP/1.1 Host: l.wl.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: l.wl.co/l?u=https://h7mhl.app.link/DkoTp2RUgvb FQDN: l.wl.co IP: 31.13.72.8 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.8 HTTP/1.1 301 Moved Permanently Content-Type: text/plain Location: https://l.wl.co/l?u=https://h7mhl.app.link/DkoTp2RUgvb Server: proxygen-bolt Date: Tue, 29 Nov 2022 10:58:36 GMT Connection: keep-alive Content-Length: 0 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4352 Expires: Tue, 29 Nov 2022 12:11:08 GMT Date: Tue, 29 Nov 2022 10:58:36 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 2d2e7649ce9e9ba6fc8b68aa89352e3c Sha1: 0153d1d3d830a457043e16bb40d48a0b9ddef4b8 Sha256: 8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4335 Cache-Control: 'max-age=158059' Date: Tue, 29 Nov 2022 10:58:36 GMT Last-Modified: Tue, 29 Nov 2022 09:46:21 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 9408cc0694fcbea57966c3a3ba906092 Sha1: fddcee1fdcf3209298e41a4b1b5560357fa165f0 Sha256: 6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2192 Expires: Tue, 29 Nov 2022 11:35:08 GMT Date: Tue, 29 Nov 2022 10:58:36 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 6d9d34c96b9a826ae5676640c966469c Sha1: 8052a16d41a637e420478b7de1ff5a2dc951fccd Sha256: f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 29 Nov 2022 10:19:36 GMT cache-control: public,max-age=3600 age: 2340 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 30db107dcf4380cef05efea409c2e6a3 Sha1: 96e6a306fbc07299aba64e5c14e2bfca35872fa9 Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: j4/kVq/SgM9Eh8z94TkwCwImpknA9tlXh23gzVwAb9ghFwSTcg8lvSTl1x90zJk1hoOxA0w5Z7Q= x-amz-request-id: CNWEV7QJGC58XCSF content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 29 Nov 2022 10:42:28 GMT age: 968 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 3273360f8428124506452ba0c96a14c8274b1009156b5c991aad86a429e358a7 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 412 Cache-Control: max-age=109294 Date: Tue, 29 Nov 2022 10:58:36 GMT Etag: "6384ec2e-1d7" Expires: Wed, 30 Nov 2022 17:20:10 GMT Last-Modified: Mon, 28 Nov 2022 17:13:18 GMT Server: ECS (amb/6B72) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: eacfe27ce5dea4c3da2d05021fc8ce6c Sha1: 73f9cd7e4b383b53c2eb086177f002f0d72e57fa Sha256: 3273360f8428124506452ba0c96a14c8274b1009156b5c991aad86a429e358a7
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 3273360f8428124506452ba0c96a14c8274b1009156b5c991aad86a429e358a7 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 412 Cache-Control: max-age=109294 Date: Tue, 29 Nov 2022 10:58:36 GMT Etag: "6384ec2e-1d7" Expires: Wed, 30 Nov 2022 17:20:10 GMT Last-Modified: Mon, 28 Nov 2022 17:13:18 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: eacfe27ce5dea4c3da2d05021fc8ce6c Sha1: 73f9cd7e4b383b53c2eb086177f002f0d72e57fa Sha256: 3273360f8428124506452ba0c96a14c8274b1009156b5c991aad86a429e358a7
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Tue, 29 Nov 2022 10:58:36 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 29 Nov 2022 10:11:13 GMT cache-control: public,max-age=3600 age: 2844 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 1942 Cache-Control: 'max-age=158059' Date: Tue, 29 Nov 2022 10:58:37 GMT Last-Modified: Tue, 29 Nov 2022 10:26:15 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: af25abbc1f9776cf78b07837dbea38a0 Sha1: 1883049bac2e92f8b3107f6435f00b83d8f4c117 Sha256: 663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1 Host: www.facebook.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 403 Origin: https://l.wl.co Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.facebook.com/csp/reporting/?m=c&minimize=0 FQDN: www.facebook.com IP: 31.13.72.36 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.36 HTTP/2 200 OK content-type: text/html; charset="utf-8" report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]} x-fb-rlafr: 0 content-security-policy-report-only: default-src data: blob: 'self' https://.fbsbx.com 'unsafe-inline' .facebook.com 'unsafe-eval' .fbcdn.net;script-src .facebook.com .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src .fbcdn.net data: .facebook.com 'unsafe-inline';connect-src .facebook.com facebook.com .fbcdn.net wss://.facebook.com:* wss://.fbcdn.net attachment.fbsbx.com blob: .cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ .fbsbx.com;font-src data: .facebook.com .fbcdn.net .fbsbx.com;img-src .fbcdn.net .facebook.com data: https://.fbsbx.com facebook.com .cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: .oculuscdn.com;media-src .cdninstagram.com blob: .fbcdn.net .fbsbx.com www.facebook.com .facebook.com data:;frame-src .facebook.com .fbsbx.com fbsbx.com data: .fbcdn.net;worker-src blob: .facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; content-security-policy: default-src data: blob: 'self' https://.fbsbx.com 'unsafe-inline' .facebook.com 'unsafe-eval' .fbcdn.net;script-src .facebook.com .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src .fbcdn.net data: .facebook.com 'unsafe-inline';connect-src .facebook.com facebook.com .fbcdn.net wss://.facebook.com: wss://.fbcdn.net attachment.fbsbx.com blob: .cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ .fbsbx.com;font-src data: .facebook.com .fbcdn.net .fbsbx.com;img-src .fbcdn.net .facebook.com data: https://.fbsbx.com facebook.com .cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: .oculuscdn.com;media-src .cdninstagram.com blob: .fbcdn.net .fbsbx.com www.facebook.com .facebook.com data:;frame-src .facebook.com .fbsbx.com fbsbx.com data: .fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; document-policy: force-load-at-top cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 x-frame-options: DENY strict-transport-security: max-age=15552000; preload x-fb-debug: j5jepHXoIbKdwRn20Vc5VHFTJLK4905xqJn7EmIwxahxhT535R832JdgKFTMZPT5CJ1tAilKxorJVZHZDFuNrw== content-length: 0 date: Tue, 29 Nov 2022 10:58:37 GMT alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 1942 Cache-Control: 'max-age=158059' Date: Tue, 29 Nov 2022 10:58:37 GMT Last-Modified: Tue, 29 Nov 2022 10:26:15 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: af25abbc1f9776cf78b07837dbea38a0 Sha1: 1883049bac2e92f8b3107f6435f00b83d8f4c117 Sha256: 663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2172 Cache-Control: max-age=168263 Date: Tue, 29 Nov 2022 10:58:37 GMT Etag: "6385cba8-1d7" Expires: Thu, 01 Dec 2022 09:43:00 GMT Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 3c8c689bd654417640d85f3da51af313 Sha1: 85123b6d46230a23d03768bf304b386e5d301305 Sha256: 516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
GET /TGZQWVosS0FZVSwxNjY5NDcxNjk1LCww?_branch_match_id=1062369509546216292&utm_source=facebook&utm_campaign=facebook&_branch_referrer=H4sIAAAAAAAAA8soKSkottLXzzDPzcjRSywo0MvJzMvWd8nODykwCgpNL0sCAHRlri4iAAAA HTTP/1.1 Host: sydney.kayuu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: https://l.wl.co/ Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: sydney.kayuu.xyz/TGZQWVosS0FZVSwxNjY5NDcxNjk1LCww?_bran (...) FQDN: sydney.kayuu.xyz IP: 185.168.111.241 HASH: 7f9024d22521ae59257d102eca7e50dd3fd125c2c64de7a3ed8f0d710d8c212d 185.168.111.241 HTTP/1.1 200 OK content-type: text/html; charset=UTF-8 Connection: Keep-Alive Keep-Alive: timeout=5, max=100 x-powered-by: PHP/7.4.33 cache-control: no-cache pragma: no-cache content-length: 495 content-encoding: gzip vary: Accept-Encoding date: Tue, 29 Nov 2022 10:58:37 GMT server: LiteSpeed strict-transport-security: max-age=63072000; includeSubDomains x-frame-options: SAMEORIGIN x-content-type-options: nosniff --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1003), with no line terminators Size: 495 Md5: ca6afa65e847d33edc43d6453ff0a30d Sha1: 4b183dfca7af5b7b320a9c0aaf7cab73f215ba3b Sha256: 7f9024d22521ae59257d102eca7e50dd3fd125c2c64de7a3ed8f0d710d8c212d
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: foJX1/d5kuWo34Su4iPa6A== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 54.148.213.75 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 54.148.213.75 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: XRIr5D1JqnJWiPMayyaDp99/XKM= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_meetups/?click_id=KAYU&country_code=NO&user_agent=WEB&ip_address=91.90.42.154&user_lp=IMONETIZEIT HTTP/1.1 Host: sydney.kayuu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: sydney.kayuu.xyz/_meetups/?click_id=KAYU&country_code=N (...) FQDN: sydney.kayuu.xyz IP: 185.168.111.241 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 185.168.111.241 HTTP/1.1 302 Found content-type: text/html; charset=UTF-8 Connection: Keep-Alive Keep-Alive: timeout=5, max=100 x-powered-by: PHP/7.4.33 cache-control: no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache location: /_meetups/r.php?click_id=KAYU&country_code=no&user_agent=web&ip_address=91.90.42.154&user_lp=imonetizeit content-length: 0 date: Tue, 29 Nov 2022 10:58:37 GMT server: LiteSpeed strict-transport-security: max-age=63072000; includeSubDomains x-frame-options: SAMEORIGIN x-content-type-options: nosniff --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_meetups/r.php?click_id=KAYU&country_code=no&user_agent=web&ip_address=91.90.42.154&user_lp=imonetizeit HTTP/1.1 Host: sydney.kayuu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: sydney.kayuu.xyz/_meetups/r.php?click_id=KAYU&country_c (...) FQDN: sydney.kayuu.xyz IP: 185.168.111.241 HASH: f290e98ae4348cf40efe0e8fc03e682f4d6c570d2a5622b639ec3669a40d505a 185.168.111.241 HTTP/1.1 200 OK content-type: text/html; charset=UTF-8 Connection: Keep-Alive Keep-Alive: timeout=5, max=100 x-powered-by: PHP/7.4.33 cache-control: no-cache pragma: no-cache content-length: 431 content-encoding: gzip vary: Accept-Encoding date: Tue, 29 Nov 2022 10:58:37 GMT server: LiteSpeed strict-transport-security: max-age=63072000; includeSubDomains x-frame-options: SAMEORIGIN x-content-type-options: nosniff --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (799), with no line terminators Size: 431 Md5: 8b86fef4c7edecafd986843c3fc0f85e Sha1: bf73656355768be985cd95165a873a3321bee243 Sha256: f290e98ae4348cf40efe0e8fc03e682f4d6c570d2a5622b639ec3669a40d505a
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: abf19431b118f7918c077329c1a72cb8c46af1db2e27b8e1193ac56f97a6e626 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ABF19431B118F7918C077329C1A72CB8C46AF1DB2E27B8E1193AC56F97A6E626" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18758 Expires: Tue, 29 Nov 2022 16:11:16 GMT Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7a363baa17d7f58d9840babcfa3f52b2 Sha1: 4a47c32d50c4d975dc5f9259c0974f83c7e82ad6 Sha256: abf19431b118f7918c077329c1a72cb8c46af1db2e27b8e1193ac56f97a6e626
GET /landings/277110/1669380007/css/popup.css?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/css/p (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: bcc5d06c7b102eed1477b062020dc4414e4f6c4f9e390e3e67fa675a5f0fa363 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: fnuzZFtuTvJ0ZxLX9Eb6aKCMSlZ0Pg/9WX8sJfWNzP3xGvjcNIsu3Q9YC/UgpabJ/vUmtGCLEw8= x-amz-request-id: MSXTC4EQ3BNFMX7E Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "5a61d45142ce5764a2b36dc75343fcd5" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Tue, 29 Nov 2022 10:58:38 GMT Content-Length: 635 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: assembler source, ASCII text Size: 635 Md5: 4ed05a608a8ec589e8aa5b040f7bb878 Sha1: c58649a707ba64aed8b285d3be9f6b06a85ea6cb Sha256: bcc5d06c7b102eed1477b062020dc4414e4f6c4f9e390e3e67fa675a5f0fa363
GET /landings/277110/1669380007/js/vegas.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/ve (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 657aac4fd9cd122e452b9da290c486d115af6b8fe8d409f39ab1d1d3dff44144 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: rZXZ+X6E8VbZX75uL9nrT0rRNje9gHHGsBncz0i4XPbgt1NdtQe0qkC9PD3OgZjmpjKMxRip7BQ= x-amz-request-id: YHWQY9B6YRTSJJKK Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "9acc66fdf18dea05bd75165eb5a96259" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Tue, 29 Nov 2022 10:58:38 GMT Content-Length: 3401 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with very long lines (11568), with CRLF line terminators Size: 3401 Md5: 156c4046496d16408b06eb605ce1ab09 Sha1: 0dde2c6bbb3cf64132989866bdc1161be62474e3 Sha256: 657aac4fd9cd122e452b9da290c486d115af6b8fe8d409f39ab1d1d3dff44144
GET /landings/277110/1669380007/css/comments.css?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/css/c (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: cd29c00865da17361d05c5d9eccee2c855687d57dc167273bfe4569f805dffa4 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: KxkWKsklUnjzX5kPbQirybnNBbWs7cIjNdA/zdPLruUzvBDWUbfb2D6do3OkfEVTjvJ4sk1ZDvAToj4fANA00A== x-amz-request-id: SE3F8JA1BZYZ5P8M Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "d06dc5b29b4de4943cdaa75696ff7c2f" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Tue, 29 Nov 2022 10:58:38 GMT Content-Length: 985 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 985 Md5: e39ffe6a97a52915c4e8a0a451a9b3a9 Sha1: 836d52a2eefd9178898417c92ad53c6f716bdc17 Sha256: cd29c00865da17361d05c5d9eccee2c855687d57dc167273bfe4569f805dffa4
GET /landings/277110/1669380007/css/safety-block.css?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/css/s (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: e07a2aa384841da50892bc7f5d92b1675d291c498ffbe88a89197e9b3f884bf1 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: Q4UKoP3RH+IoQKg7vu/xPLCAnxkYZ9FK9wPdsOvvcjLU/HB1npe867Y1vAyupdjj7O243zeBmiA= x-amz-request-id: SE3AV5V17Q2XXGQ6 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "ccfc3e7113030d2214cc5a04295fbaec" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Tue, 29 Nov 2022 10:58:38 GMT Content-Length: 474 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 474 Md5: e38fd88cdc96e7cecbe4ec577e08b70e Sha1: 8da300538dd2b191464fc932c74fe5ebbed418b7 Sha256: e07a2aa384841da50892bc7f5d92b1675d291c498ffbe88a89197e9b3f884bf1
GET /landings/277110/1669380007/css/style.css?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/css/s (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 18981907b9c80ad776ca328ba2adeee36fcf7a41427c4df9aa09c6122c34afad 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: 3qLxix7l4P3EkMPQ+ivdSfI3CC4kvyQTfqna30VUsPPpURiEUOs0GUf606oz+6axD93rQMFyHk4= x-amz-request-id: YHWH4A3SWBAA1TV6 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "85d49a96dad18822746f4cf9e8a3dab6" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Tue, 29 Nov 2022 10:58:38 GMT Content-Length: 3194 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 3194 Md5: 0386c4a4ad6de8521e98853da12e8219 Sha1: 06cae44ddea3f3ae94d4806e43a8163eb657228b Sha256: 18981907b9c80ad776ca328ba2adeee36fcf7a41427c4df9aa09c6122c34afad
GET /landings/277110/1669380007/js/jquery-2.2.4.min.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/jq (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: hA8E0YW8mwo6To7la5raHy1SkF41I2Ljw8eext4bdrxVFbg6y/6v08ew2rpw5VlaORk9AGy5v0Y= x-amz-request-id: SE3CG9YYWR15EZY5 Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "2f6b11a7e914718e0290410e85366fe9" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Tue, 29 Nov 2022 10:58:38 GMT Content-Length: 29855 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with very long lines (32065) Size: 29855 Md5: 2fa28552f1ee4e1382ee43930b53afb8 Sha1: 803670da6a35378bf4eb73acc8e72fe4feb5ca30 Sha256: ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494
GET /landings/277110/1669380007/js/function.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/fu (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 303187afb2cbbbf6095724df7eaf8c7967bb019dc17e1224d9e2366ac7f381c5 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: 4R2GE0IBTjKI9xriIaw6R0Hm+vaN03/2T5t0d1qNbE0YwrDZ9mdm36Tx8rYVoBfTLndoMU4got4= x-amz-request-id: YHWHMDS3XPGSSX7T Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "5da2c51949f2a873bf0091a104658e72" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Tue, 29 Nov 2022 10:58:38 GMT Content-Length: 688 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 688 Md5: ba7deda1bcbc1e2d5c127678e05b71a1 Sha1: 4707fef7ab43a522b3cf7f5c0db4c148c5a43701 Sha256: 303187afb2cbbbf6095724df7eaf8c7967bb019dc17e1224d9e2366ac7f381c5
GET /landings/277110/1669380007/js/tn_pHash.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/tn (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 9804b1c7443db74b2d7fe81cf11d84c8f0d9a7dee281b4fe8c15552bdc7eed69 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: l24II4je276eDM3kgUQPWR30kPx/oD56tIlmVlUFPfdsJjV+y8vTad6IIGIbUajDuulRqA2F+IQ= x-amz-request-id: YHWRJCHJWMMN929M Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "3544c08851825a863747a126548d6993" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 252 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 252 Md5: 3544c08851825a863747a126548d6993 Sha1: 01882998e61b9f93d5f346386fa633f6b8d95b2d Sha256: 9804b1c7443db74b2d7fe81cf11d84c8f0d9a7dee281b4fe8c15552bdc7eed69
GET /landings/277110/1669380007/js/translates.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 73c4aa8abb0450fbb7eef37c3afc3d6f11f0c2bc3f0a101323364b59298e4e2f 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: /g98RDsOtRjUZZ8I2jryTVTZxkzDrfHYsda9vDch/cgfOVBQr5JcDtsqeDtBsXHNWw9CyMFRg8M= x-amz-request-id: YHWXQMA277E8BBYM Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "07cee83d1be10af1ca991d1c60abd6e2" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Tue, 29 Nov 2022 10:58:38 GMT Content-Length: 10048 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 10048 Md5: f54e5331f7d782d475a884cce1db33fd Sha1: d5145e3ebcab1a21d4cdff8632c9901db93b962f Sha256: 73c4aa8abb0450fbb7eef37c3afc3d6f11f0c2bc3f0a101323364b59298e4e2f
GET /landings/277110/1669380007/js/translates-review.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 5f7d54f2a3e32dea4d98b026e24552def3b8eb2c6971cbf453613fc65e7468ae 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: TUwNMEorlVhmmQRTvZ4PtKvXYpQ8TiSuIyrxEGkaKPfCGqbDvjUX3Yu9ffd2yHzolZR17YcL9i0= x-amz-request-id: HXP25N7MQS75YACF Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "fe0aae6f9135f4ae6b865596d5536572" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Tue, 29 Nov 2022 10:58:38 GMT Content-Length: 14009 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 14009 Md5: c7fe64ab27fa6636d47e268eb6097573 Sha1: 4095663454037fe276f45bd45c88f3742cc8618d Sha256: 5f7d54f2a3e32dea4d98b026e24552def3b8eb2c6971cbf453613fc65e7468ae
GET /landings/277110/1669380007/js/translate-secure.js?1669380007 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: b597b9c82f67d2e16043004ffe9bb0a225f9346fb7170f29f22a32de36e09491 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: Hyr7G2TOv+K+Kh2v6Q2rV+xRZ3UnYzAI+QIneslvaSMknijo8Um/MfdbKm5es3VP06UxbdQp5fM= x-amz-request-id: RB0D4N5N58VMQ67E Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT ETag: "8c7421ebb0b50165c5dac2e577203585" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Tue, 29 Nov 2022 10:58:38 GMT Content-Length: 1671 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text, with CRLF line terminators Size: 1671 Md5: 41c1e8df3c88e802b717f466ca9ab1fa Sha1: a368c67215e488869ec65ecddf2ed58c7362c800 Sha256: b597b9c82f67d2e16043004ffe9bb0a225f9346fb7170f29f22a32de36e09491
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 10:58:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 07b8296613be09905e34b09dce4a203f Sha1: c97c67e8c4b1247423d089c028c31e05734f124e Sha256: c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 10:58:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 07b8296613be09905e34b09dce4a203f Sha1: c97c67e8c4b1247423d089c028c31e05734f124e Sha256: c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
GET /landings/277110/1669380007/images/6-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: gDkfNqzfF0VuoA/PUPrrC3TAHfAkT1jcbvXqT4U+ZTfqb1nzuZ5Wv1Vn/oyBFQlQ4j+nUAFOAZA= x-amz-request-id: 6S4VWG7RHN8T71Y4 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "9a6870069cb979e16b239f9ed485fb3c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 3256 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 3256 Md5: 9a6870069cb979e16b239f9ed485fb3c Sha1: c1dc7f3620c8cc391648c550f91b269b04d3c612 Sha256: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818
GET /landings/277110/1669380007/images/110010_2.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 8f700ae9dd68bd1130d528b77e1de92b4945e036060fdb01a02ccc148ab24ab3 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: ynLFmknXLsvmknVGhqo8d0GKw9keAElWb/bh3s11Ub4YAokV7eMLDCK/y+t8qC2pOjIrW4J00xU= x-amz-request-id: M1E9GH3THM1Q6GWX Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "2b8ac4e50a5bbbe4e6ea964bec7f3086" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 29319 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 682x388, components 3\012- data Size: 29319 Md5: 2b8ac4e50a5bbbe4e6ea964bec7f3086 Sha1: 5486267315a7cd9eca01fa2fc6007060189c8b4f Sha256: 8f700ae9dd68bd1130d528b77e1de92b4945e036060fdb01a02ccc148ab24ab3
GET /landings/277110/1669380007/images/5-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: a2K4LJJYSCMlfkpdi7XYV4YxqqmNrySXxPzHJRPUWKWgf50MnGtJWoxvXiEXZ5AG+GAVRZcig0w= x-amz-request-id: M1E8E3SXYSEQ0EA2 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "27109a247208262e6293950ca8f5450d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2879 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2879 Md5: 27109a247208262e6293950ca8f5450d Sha1: cea89616d15ad45a0f2b04082dff608abd96b800 Sha256: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96
GET /landings/277110/1669380007/images/logo.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 1d4ad487984a8f689c904f3c2532f034b03d361c081dae581752cdc20d983037 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: WhhpH74LdQNbuUGdziBofeKi7jOdx6xPL3ENXQX5qXAukg1OTNNZ/0Z7rV9phODnRQaJZU3vGBE= x-amz-request-id: M1E3KG10VSMHC5YY Last-Modified: Fri, 25 Nov 2022 12:40:09 GMT ETag: "c0647e470e90e4e76c886ef3f4c651ac" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 40774 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 1024 x 256, 8-bit/color RGBA, non-interlaced\012- data Size: 40774 Md5: c0647e470e90e4e76c886ef3f4c651ac Sha1: fe1dd72ac0432bd8f261672c7c336cf902503d3c Sha256: 1d4ad487984a8f689c904f3c2532f034b03d361c081dae581752cdc20d983037
GET /landings/277110/1669380007/images/logo-white.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 7afbc6f7cb728a9b4dfd7791a8207c60bdd255ea2f00ba12880bee15f7fbdff0 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: 0hnTOMjaLTEcee6jvhffHOUAVV+6wuHj7snluSjlJDrrvjUYE6vmNQY6i3mHcaQwOxeFjpx0sVQ= x-amz-request-id: KJC2M7FG6P8NF19M Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT ETag: "27a8fdccc08741c52422bd4852f87c3a" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 9461 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 300 x 124, 8-bit colormap, non-interlaced\012- data Size: 9461 Md5: 27a8fdccc08741c52422bd4852f87c3a Sha1: b103730d95829f64c0746b97a85e0ada4f6c18a2 Sha256: 7afbc6f7cb728a9b4dfd7791a8207c60bdd255ea2f00ba12880bee15f7fbdff0
GET /landings/277110/1669380007/images/shutterstock_745475197.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: cd99a78c0d74febf0c5c4915318b04a5a315508453f1dc456e821c3d6469729f 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: ZqCY5lud+RR54imKua/XG7FGzQcNK/3FKnN1bypyb8KvKFTkl3/30Q2+DuS6dxAOt1B/n4OCmzs= x-amz-request-id: M1EBWBFNP1JJAYW4 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "13efb7d3bebedd1070118ff26ef75f0e" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 99417 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 1920 x 363, 8-bit colormap, non-interlaced\012- data Size: 99417 Md5: 13efb7d3bebedd1070118ff26ef75f0e Sha1: 5468d7a02606ddbef66a356fa0b68804a8821f0b Sha256: cd99a78c0d74febf0c5c4915318b04a5a315508453f1dc456e821c3d6469729f
GET /landings/277110/1669380007/images/shield.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: InmWGGtJz/XQ98t1JAeohiMuTlJ68ZQnVArn6+3DgSaePSKh2X/I9GPw/cnRlcu8xz8Bp8c3e0s= x-amz-request-id: KJCA28RWFTHW9SXT Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1539 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310) Size: 1539 Md5: 0c7a0dfd64cf020cd8a6dc0c3df1dbdf Sha1: f705635388aebebae1223d828c38233067f28ab1 Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888
GET /landings/277110/1669380007/images/unlock.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: XK7/ZJO+fKOMyrNyLwoCRmx3LI5uT7tmN7V2LDucg4jdALTC75dZQdsq8AcPN9CTJc9HS+64hPk= x-amz-request-id: 6S4HCY8J28HEJFM1 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "a732e1e06affb4575c050fdb0131e5ca" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2378 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944) Size: 2378 Md5: a732e1e06affb4575c050fdb0131e5ca Sha1: da4f4f204a4d22c7424274a91520e0ea993c48c7 Sha256: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f
GET /landings/277110/1669380007/images/8-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: ebHJnUW9OQynVlfVfc5upD9XgOsodCkggKEk07o9WeB5SmFM87tyICuWsgs3ugcumJ9BL235Vec= x-amz-request-id: SPW2ABQ9XMXC4J3S Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "41bbda91cef3f22db1d45d66f7ca0961" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2458 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2458 Md5: 41bbda91cef3f22db1d45d66f7ca0961 Sha1: e2f8f56674e0180063a4f8287931dc0b273baf8e Sha256: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e
GET /landings/277110/1669380007/images/1-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: RMdnqkOTJpdONvTLBYvlaVP+FLsUf5YdfV9XrXcemmHORTZX6ZzgAS9hHjfK9qFfnGQnRw8WNrg= x-amz-request-id: 6S4T86B48KSRTRSC Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "6e6d0b84c81d847e24671a711115a781" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 4292 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 4292 Md5: 6e6d0b84c81d847e24671a711115a781 Sha1: 20dc2d359e437dc10ceefea4d3c7b5189c2e58d0 Sha256: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553
GET /landings/277110/1669380007/images/password.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: S3QKCYrVfXLOPatQoEsuzKWreDpdH2pXAeAZjqiLuW6WSrQEcQlaDc/An6BtrU9jqLlUIUK/v70= x-amz-request-id: AD6BFCVABJEZ35K3 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "f42aef7f97d4c9bdb074673081f38ac7" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1339 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (330) Size: 1339 Md5: f42aef7f97d4c9bdb074673081f38ac7 Sha1: 0231df782e371d139c826e091279acd9a07e691c Sha256: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac
GET /landings/277110/1669380007/images/4-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: XDaBZ7Twy/yMLwL7PQWJnmLepJvl0qcnAXn/Akb8vaOUcWBFN9EyOFQNGu+ZUE/KSIHbMFRuTD4= x-amz-request-id: 6S4H66PBNGD58VGN Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "cb3aff7c886e4f72a98172b873b5e62d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2586 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2586 Md5: cb3aff7c886e4f72a98172b873b5e62d Sha1: 33de244dcb4db4abe54b6508ae8d1546eb279aa5 Sha256: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e
GET /landings/277110/1669380007/images/2-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 94B+qg44bfwckEWeh/+FXoD0JuETZNY2gkuV45MB6Wux/V7D90illuhFfcsY9TOtFhQEl5/uUFA= x-amz-request-id: 6S4WJE4RA6GX4PCE Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "66b6dc51bd19c799dcadf1dbeb628d9c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2009 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2009 Md5: 66b6dc51bd19c799dcadf1dbeb628d9c Sha1: ff7fe6049e944186764bfc5041d624ec11f8d362 Sha256: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0
GET /landings/277110/1669380007/images/3-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 9WwZn7602znhUl3mmGALpZ2HVOc129bj/vYplRa403TxJVwi4SbzGXPvD1q5i6idPWyzwozmWdg= x-amz-request-id: 6S4SAGRW9Q40ZQQ9 Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "1dc512dcb0850f22cfa72c789578085c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 3946 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 80x80, components 3\012- data Size: 3946 Md5: 1dc512dcb0850f22cfa72c789578085c Sha1: 933e9c5648e782c9f9a1504d2248f0acb4b9950b Sha256: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00
GET /landings/277110/1669380007/images/7-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: dJTxFgCe1D5Hjh/iDcl9FvMPp+SKYz53rnoP6jF0PAQCBVeEo2tH0gmtMpQvswLw54gmtu1wjHg= x-amz-request-id: 6S4QB2JNDJC2VTVX Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "8155d8ecc7dc2d9b29cf99ab85c3d2a8" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2282 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2282 Md5: 8155d8ecc7dc2d9b29cf99ab85c3d2a8 Sha1: ba784563c7787760b318af24ea274ad6df2c5b89 Sha256: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27
GET /css2?family=Ubuntu:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Ubuntu:wght@400;700&di (...) FQDN: fonts.googleapis.com IP: 142.250.74.10 HASH: 07c88d43f41a6f4e04e92f49474180d9df62a40b39ff2e29e0d528cce0142fd4 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 29 Nov 2022 10:58:38 GMT date: Tue, 29 Nov 2022 10:58:38 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 1013 Md5: b5bfa0a5235e4fe061f2695469d4bc8b Sha1: e11282c864755f4abbc8bb49f8bba82ec674f458 Sha256: 07c88d43f41a6f4e04e92f49474180d9df62a40b39ff2e29e0d528cce0142fd4
GET /landings/277110/1669380007/images/action_icons_20px_2x.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277110/1669380007/css/comments.css?1669380007 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: n0JrO/Dcp5bv4kj739clPJZtLl2z6zFl4iFa9ByEtIH2m0pyfO+XmspHHiOoapNjpwjSOlEGR6I= x-amz-request-id: M1E03VDK0MDFGEGQ Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "b699975b5fe73b087e711a33ff24ee1e" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1726 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data Size: 1726 Md5: b699975b5fe73b087e711a33ff24ee1e Sha1: 0e33cc5c32a5e7d18440751e3946076664caaf53 Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
GET /landings/277110/1669380007/images/shutterstock_573865690_web_b.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277110/1669380007/css/comments.css?1669380007 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: da39a37f32440fb074d58320f676132e84efdfec267bd899d9b9ffad5e554faa 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: FDD9qjYbKoTbaMxsh9tVKeq0saXg4GOz5ID4VrW5mOmG8Amlyc7r95hn7uP6xYwBxY+EVzrATxQ= x-amz-request-id: SPWDQZN2XPRHZMDV Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "1cdde30f2b7ab4cca657e99f0fb65ed3" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 84727 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced\012- data Size: 84727 Md5: 1cdde30f2b7ab4cca657e99f0fb65ed3 Sha1: a3a606c66ea29bcba25b0ed96d0d3eed75d7e3cb Sha256: da39a37f32440fb074d58320f676132e84efdfec267bd899d9b9ffad5e554faa
GET /css2?family=Roboto:wght@300;400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Roboto:wght@300;400;70 (...) FQDN: fonts.googleapis.com IP: 142.250.74.10 HASH: 18e7b321940d9733dd6ac398bb1f2398b5c36814577879112adc3d957a51da43 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 29 Nov 2022 10:58:38 GMT date: Tue, 29 Nov 2022 10:58:38 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 151744 Md5: 5b96f5f7558fdd034df07d8647434781 Sha1: b98e33c03487b695a6d6b1766c51be61fa9ee900 Sha256: 18e7b321940d9733dd6ac398bb1f2398b5c36814577879112adc3d957a51da43
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 10:58:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 49eee25f3ccd585a29e34e80cf5bb160 Sha1: 73eca8be91deedd049304862759a3d8084c0b07e Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://mdjdg.prodlgiousdates.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4 (...) FQDN: fonts.gstatic.com IP: 216.58.207.195 HASH: 6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e 216.58.207.195 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 9644 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 19:34:41 GMT expires: Thu, 23 Nov 2023 19:34:41 GMT cache-control: public, max-age=31536000 age: 487437 last-modified: Wed, 11 May 2022 19:24:50 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 9644, version 1.0\012- data Size: 9644 Md5: 6f112ec2b932ee12379442c42853244e Sha1: b2e73c8c70d6261e1d187f41693c43ac4fe0809d Sha256: 6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 10:58:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 49eee25f3ccd585a29e34e80cf5bb160 Sha1: 73eca8be91deedd049304862759a3d8084c0b07e Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 10:58:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 49eee25f3ccd585a29e34e80cf5bb160 Sha1: 73eca8be91deedd049304862759a3d8084c0b07e Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://mdjdg.prodlgiousdates.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 FQDN: fonts.gstatic.com IP: 216.58.207.195 HASH: 495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9 216.58.207.195 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 9628 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 24 Nov 2022 06:19:49 GMT expires: Fri, 24 Nov 2023 06:19:49 GMT cache-control: public, max-age=31536000 age: 448729 last-modified: Wed, 11 May 2022 19:24:42 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data Size: 9628 Md5: d9ac47c7e500fb7083b8d595eaf6fe12 Sha1: 112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933 Sha256: 495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 10:58:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 49eee25f3ccd585a29e34e80cf5bb160 Sha1: 73eca8be91deedd049304862759a3d8084c0b07e Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://mdjdg.prodlgiousdates.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4 (...) FQDN: fonts.gstatic.com IP: 216.58.207.195 HASH: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 216.58.207.195 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 18:53:49 GMT expires: Thu, 23 Nov 2023 18:53:49 GMT cache-control: public, max-age=31536000 age: 489889 last-modified: Wed, 11 May 2022 19:24:42 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size: 15860 Md5: e9f5aaf547f165386cd313b995dddd8e Sha1: acdef5603c2387b0e5bffd744b679a24a8bc1968 Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://mdjdg.prodlgiousdates.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 FQDN: fonts.gstatic.com IP: 216.58.207.195 HASH: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 216.58.207.195 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 19:34:08 GMT expires: Thu, 23 Nov 2023 19:34:08 GMT cache-control: public, max-age=31536000 age: 487470 last-modified: Wed, 11 May 2022 19:24:48 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size: 15744 Md5: 15d9f621c3bd1599f0169dcf0bd5e63e Sha1: 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
POST /ortb HTTP/1.1 Host: mdjdg.prodlgiousdates.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 292 Origin: https://mdjdg.prodlgiousdates.com Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/c/da57dc555e50572d?s1=17969&s2=1086665&s3=KAYU&s5=backuser&click_id=S0FZVSxOTyw5MS45MC40Mi4xNTQsV0VCLElNT05FVElaRUlU&iexpp=1&j1=1&j8=1 Cookie: unique_id=6385e5de000ccdd8; unique_id2=6385e5de000eae7a; 6385e5de000eae7a_c=1; ref_token=17969; impression=; 6385e5de000eae7a_sl=[277110] Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	URL: mdjdg.prodlgiousdates.com/ortb FQDN: mdjdg.prodlgiousdates.com IP: 52.19.101.114 HASH: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208 52.19.101.114 HTTP/2 200 OK content-type: text/plain; charset=utf-8 server: nginx date: Tue, 29 Nov 2022 10:58:38 GMT content-length: 13 X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 13 Md5: 1031bf08481e45e42ceb3fd978c3d379 Sha1: 3d6d43df4c45f09f5d68593646fd83352323a5ea Sha256: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208 Alerts: Blocklists: - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 10:58:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 49eee25f3ccd585a29e34e80cf5bb160 Sha1: 73eca8be91deedd049304862759a3d8084c0b07e Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
GET /landings/277110/1669380007/images/favicon.png?t=20221129105838 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 39b439471019cb16f819e05166d23492593310fd55cce8471062d8f2dc5de423 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: 2pebgRNohFTDEF97cw553QwwUbgCpYAJBzmU6zyD2ANRqpR0khVU0lj1L3lcJ7nkCZMB7i7vL0c= x-amz-request-id: F5CBPDDNQSZQ8E4G Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT ETag: "40a54c3ecf143b64096b063ff793fdbb" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 4093 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size: 4093 Md5: 40a54c3ecf143b64096b063ff793fdbb Sha1: 017eafffc5e55226a2aec0dd3c03f1b6130a6bab Sha256: 39b439471019cb16f819e05166d23492593310fd55cce8471062d8f2dc5de423
GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.gstatic.com/firebasejs/5.0.2/firebase-app.js FQDN: www.gstatic.com IP: 142.250.74.163 HASH: b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5 142.250.74.163 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 8604 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 18:32:45 GMT expires: Thu, 23 Nov 2023 18:32:45 GMT cache-control: public, max-age=31536000 age: 491153 last-modified: Thu, 10 May 2018 20:35:51 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (25088) Size: 8604 Md5: 73069e532b7039778d3a7128c997c61a Sha1: c523bbf1ac7f4e612c8ade75434c42fbca885adc Sha256: b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5
GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js FQDN: www.gstatic.com IP: 142.250.74.163 HASH: 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7 142.250.74.163 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 10017 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 28 Nov 2022 18:29:53 GMT expires: Tue, 28 Nov 2023 18:29:53 GMT cache-control: public, max-age=31536000 age: 59325 last-modified: Thu, 10 May 2018 20:35:52 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (35547) Size: 10017 Md5: fa9987a23f5a9d865766e952511baa30 Sha1: f2e620b99ee61a01671ba6a9e22ca75d58a1b52d Sha256: 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3337 Expires: Tue, 29 Nov 2022 11:54:15 GMT Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
GET /c/da57dc555e50572d?s1=17969&s2=1086665&s3=KAYU&click_id=S0FZVSxOTyw5MS45MC40Mi4xNTQsV0VCLElNT05FVElaRUlU&j1=1&j8=1 HTTP/1.1 Host: mdjdg.prodlgiousdates.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site	URL: mdjdg.prodlgiousdates.com/c/da57dc555e50572d?s1=17969&s (...) FQDN: mdjdg.prodlgiousdates.com IP: 52.19.101.114 HASH: f7dba4dc7b797edfb2fa42bb833dd6822db8e78969857631f31de0c226ad7413 52.19.101.114 HTTP/2 200 OK content-type: text/html; charset=utf-8 server: nginx date: Tue, 29 Nov 2022 10:58:38 GMT set-cookie: unique_id=6385e5de000ccdd8; Path=/; Expires=Sat, 28 Jan 2023 10:58:38 GMT; Secure; SameSite=None unique_id2=6385e5de000eae7a; Path=/; Expires=Mon, 27 Feb 2023 10:58:38 GMT; Secure; SameSite=None 6385e5de000eae7a_c=1; Path=/; Expires=Mon, 27 Feb 2023 10:58:38 GMT; Secure; SameSite=None ref_token=17969; Path=/; Expires=Thu, 29 Dec 2022 10:58:38 GMT; Secure; SameSite=None impression=; Path=/; Expires=Tue, 29 Nov 2022 10:58:38 GMT; Secure; SameSite=None 6385e5de000eae7a_sl=[277110]; Path=/; Expires=Tue, 13 Dec 2022 10:58:38 GMT; Secure; SameSite=None content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 8520 Md5: 9f6a832771f1bc1062cf871b9e4b8933 Sha1: bee2cffc1ae0ac270280041ed3ff42506a6f4f2b Sha256: f7dba4dc7b797edfb2fa42bb833dd6822db8e78969857631f31de0c226ad7413
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3337 Expires: Tue, 29 Nov 2022 11:54:15 GMT Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10176 x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cMpbgEFOIAMF71A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 04:52:21 GMT age: 21977 etag: "772d86ad983042a728ee3490630a9cf1134ad0dd" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10176 Md5: 03014221d7f49b50ffc2d1b0a0e75457 Sha1: 772d86ad983042a728ee3490630a9cf1134ad0dd Sha256: 81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: b4f820555c4daf6e112c1a395bc57e22f0ef8e2e4299a0ffbb54e0bf18c87f47 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8578 x-amzn-requestid: 4f948bb9-74db-4a5d-927d-a6b893735531 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cFxnWHq-IAMF4LQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637efc95-2f9e98ca2dad65a80e2195c2;Sampled=0 x-amzn-remapped-date: Thu, 24 Nov 2022 05:09:41 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: X2x9_hXC0JvEktFODEMuasu3QDg4ChtTLKJOmDVasT7IIsKlxkwXCQ== via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 04:24:31 GMT age: 23647 etag: "5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8578 Md5: 4b7d3821d0bd11c196724846a7b9fe22 Sha1: 5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c Sha256: b4f820555c4daf6e112c1a395bc57e22f0ef8e2e4299a0ffbb54e0bf18c87f47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4871 x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cLDUUEy_oAMFgSQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0 x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 9BUuT9WFwAQMnl8JiTDKo-zHgDL0AdjAAAIh0Mx405zbGwhvRouebQ== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google date: Mon, 28 Nov 2022 12:30:42 GMT age: 80876 etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4871 Md5: a4058fd62595d15c58b3d3266de9865a Sha1: d0dff35eb78f129b5da407043037bcf9c27e55c0 Sha256: ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4916 x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cPYcrELFoAMFaeQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg== via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 03:01:17 GMT age: 28641 etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4916 Md5: 83c1fedec73299637cc7dc47c48af758 Sha1: 2e3f7326aeea6be8a34bf2c39b34862c07bfdc41 Sha256: 1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9203 x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cHcHmGmQoAMF6dQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0 x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: UmhWm03jrsV8dFagrzIA0E-8eL8dykoO5kw3cYOBd172dCGqNdAX-Q== via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 04:05:38 GMT age: 24780 etag: "433061bbb226048765a711deca3026ee3e52372f" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9203 Md5: 5d574c4db20a68295dbd06cb08f5990b Sha1: 433061bbb226048765a711deca3026ee3e52372f Sha256: 8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: d75dd5b6f57d9c9290725c5be76cc7d7a39682ca569bea18eceb9bdc13d444f9 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10813 x-amzn-requestid: 5a3c9584-1389-45ac-968d-0a2301f82eda x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR6_KG00oAMFpig= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d860-6ffc3ff67f7f7e75399834e8;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Ir-Zzqt3ErueryuLgIxlgEtX-TQwpCC1brzCCzfURhjLnuUT8m03wQ== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 08:43:30 GMT age: 8108 etag: "238a7439d887fb3aa7f1302eeb43fce62f08441a" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10813 Md5: 005e5ba3c9588cf389a58195001b64e3 Sha1: 238a7439d887fb3aa7f1302eeb43fce62f08441a Sha256: d75dd5b6f57d9c9290725c5be76cc7d7a39682ca569bea18eceb9bdc13d444f9
GET /landings/277110/1669380007/images/2.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: c8d05f7eda85f68f0a08307eeee4e481282fda95570dd53f300b8aadd4f504f6 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 2SS0ccQiImX7GK6Z2uPJiu1s3NQUjgFcnDfwC3OpNZqfeFxGwnDCnvQbEA9NIax5M9HT1+9madA= x-amz-request-id: XEPYD4CV3JPFPJGT Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT ETag: "3b8b455b24c71ae1f928266241e9517e" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 102832 Date: Tue, 29 Nov 2022 10:58:40 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 960x1280, components 3\012- data Size: 102832 Md5: 3b8b455b24c71ae1f928266241e9517e Sha1: 8b98ca60c92b83e039c3b996f090883ed8b7ca75 Sha256: c8d05f7eda85f68f0a08307eeee4e481282fda95570dd53f300b8aadd4f504f6
GET /landings/277110/1669380007/images/3.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 10dedae19a11a0cf1cea2db4646bde720e63e35140f38ae3453fa2a4e4649e1c 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: mujQkU5bBZxk2esbQzkJw8R2YF+eM2odlv+AwUGp4LhSGFsVJsBE6mUyaQiQTARWACoIOhF7hWM= x-amz-request-id: XEPRXN6QMY0CFMNK Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT ETag: "8ff03d86c53d978e5527374b5bcd5114" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 149812 Date: Tue, 29 Nov 2022 10:58:40 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1108x1280, components 3\012- data Size: 149812 Md5: 8ff03d86c53d978e5527374b5bcd5114 Sha1: 2b63b0853d74e24d74d26dbf9622c407e3c74ea9 Sha256: 10dedae19a11a0cf1cea2db4646bde720e63e35140f38ae3453fa2a4e4649e1c
GET /landings/277110/1669380007/images/1.mp4 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: video/webm,video/ogg,video/;q=0.9,application/ogg;q=0.7,audio/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: video Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 5635dd2c6c23dfdc3e4eb82afc4231a27e8522ec332b8568a3fc7ae8755fec94 184.31.15.67 HTTP/1.1 206 Partial Content Content-Type: video/mp4 x-amz-id-2: PbeNqnv1aqRlWQmB6KNWzh8Rvru2G8OhIH8n6BdwcBEP05Y53X9D7/xXHaogL4NZf20cWNbP+FE= x-amz-request-id: XCHWYJP04CJXDZED Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT ETag: "379ddec6d7d6e118bd7565d1c83dbb90" Accept-Ranges: bytes Server: AmazonS3 Date: Tue, 29 Nov 2022 10:58:40 GMT Content-Range: bytes 0-1560163/1560164 Content-Length: 1560164 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data Size: 1560164 Md5: 379ddec6d7d6e118bd7565d1c83dbb90 Sha1: 16becb1b44f3f35b0fa239668901338cba6eff06 Sha256: 5635dd2c6c23dfdc3e4eb82afc4231a27e8522ec332b8568a3fc7ae8755fec94
GET /DkoTp2RUgvb HTTP/1.1 Host: h7mhl.app.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://l.wl.co/ Connection: keep-alive Cookie: _s=%2F31SILt7P19jZ7KS8kYPQ1uvv6lIK49jS2sQqA846IjvTr%2Fva2wjaW9hs%2FuemTYW Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site	URL: h7mhl.app.link/DkoTp2RUgvb FQDN: h7mhl.app.link IP: 54.230.111.120 54.230.111.120 HTTP/2 307 Temporary Redirect location: http://sydney.kayuu.xyz/TGZQWVosS0FZVSwxNjY5NDcxNjk1LCww?_branch_match_id=1062369509546216292&utm_source=facebook&utm_campaign=facebook&_branch_referrer=H4sIAAAAAAAAA8soKSkottLXzzDPzcjRSywo0MvJzMvWd8nODykwCgpNL0sCAHRlri4iAAAA server: openresty date: Tue, 29 Nov 2022 10:58:37 GMT set-cookie: _s=%2F31SILt7P19jZ7KS8kYPQ1uvv6lIK49jS2sQqA846IjvTr%2Fva2wjaW9hs%2FuemTYW; Max-Age=31536000; Domain=.app.link; Path=/; Expires=Wed, 29 Nov 2023 10:58:37 GMT; Secure last-modified: Tue, 29 Nov 2022 10:58:37 GMT strict-transport-security: max-age=31536000; includeSubDomains x-cache: Miss from cloudfront via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 4WqjiEPU8Nv3iBZm6Qvi6Rt40rIdd5P99O3WGhcrar4k17PlkUBjRQ== X-Firefox-Spdy: h2 --- Additional Info ---
GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1 Host: mdjdg.prodlgiousdates.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/c/da57dc555e50572d?s1=17969&s2=1086665&s3=KAYU&s5=backuser&click_id=S0FZVSxOTyw5MS45MC40Mi4xNTQsV0VCLElNT05FVElaRUlU&iexpp=1&j1=1&j8=1 Cookie: unique_id=6385e5de000ccdd8; unique_id2=6385e5de000eae7a; 6385e5de000eae7a_c=1; ref_token=17969; impression=; 6385e5de000eae7a_sl=[277110] Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: mdjdg.prodlgiousdates.com/js/pushjs/1.0.0/subscriber.js FQDN: mdjdg.prodlgiousdates.com IP: 52.19.101.114 52.19.101.114 HTTP/2 200 OK content-type: application/javascript server: nginx date: Tue, 29 Nov 2022 10:58:38 GMT expires: Tue, 06 Dec 2022 10:58:38 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Alerts: Blocklists: - fortinet: Phishing
GET /js/service-worker.js HTTP/1.1 Host: mdjdg.prodlgiousdates.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Service-Worker: script Connection: keep-alive Cookie: unique_id=6385e5de000ccdd8; unique_id2=6385e5de000eae7a; 6385e5de000eae7a_c=1; ref_token=17969; impression=; 6385e5de000eae7a_sl=[277110] Sec-Fetch-Dest: serviceworker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers	URL: mdjdg.prodlgiousdates.com/js/service-worker.js FQDN: mdjdg.prodlgiousdates.com IP: 52.19.101.114 52.19.101.114 HTTP/2 200 OK content-type: application/javascript server: nginx date: Tue, 29 Nov 2022 10:58:38 GMT expires: Tue, 06 Dec 2022 10:58:38 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Alerts: Blocklists: - fortinet: Phishing
GET /l?u=https://h7mhl.app.link/DkoTp2RUgvb HTTP/1.1 Host: l.wl.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: l.wl.co/l?u=https://h7mhl.app.link/DkoTp2RUgvb FQDN: l.wl.co IP: 31.13.72.8 31.13.72.8 HTTP/2 200 OK content-type: text/html; charset="utf-8" vary: Accept-Encoding content-encoding: br refresh: 1;URL=https://h7mhl.app.link/DkoTp2RUgvb referrer-policy: origin x-robots-tag: noindex, nofollow content-security-policy: default-src 'self' 'unsafe-inline' data: blob: https://.wl.co https://.fbcdn.net;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; document-policy: force-load-at-top cross-origin-resource-policy: rollout cross-origin-opener-policy: same-origin-allow-popups pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 x-frame-options: DENY x-fb-debug: 9FulUOKggQ9tNANkvB85VBQsj+l70geGU6GqYsfEySN8KFT5JDyPU+e7s9C0HYV2mRjF9sVqLMu8Xve8P+Myfg== date: Tue, 29 Nov 2022 10:58:36 GMT alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---
GET /js/pushjs/1.0.0/utils.js HTTP/1.1 Host: mdjdg.prodlgiousdates.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/c/da57dc555e50572d?s1=17969&s2=1086665&s3=KAYU&s5=backuser&click_id=S0FZVSxOTyw5MS45MC40Mi4xNTQsV0VCLElNT05FVElaRUlU&iexpp=1&j1=1&j8=1 Cookie: unique_id=6385e5de000ccdd8; unique_id2=6385e5de000eae7a; 6385e5de000eae7a_c=1; ref_token=17969; impression=; 6385e5de000eae7a_sl=[277110] Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: mdjdg.prodlgiousdates.com/js/pushjs/1.0.0/utils.js FQDN: mdjdg.prodlgiousdates.com IP: 52.19.101.114 52.19.101.114 HTTP/2 200 OK content-type: application/javascript server: nginx date: Tue, 29 Nov 2022 10:58:38 GMT expires: Tue, 06 Dec 2022 10:58:38 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Alerts: Blocklists: - fortinet: Phishing
GET /landings/277110/1669380007/images/1.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mdjdg.prodlgiousdates.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277110/1669380007/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: IP39waPnZRmPQYSxiMQ3R7r+ER/ouey24ZCI2ectFX7zeNMJwQkULHSb3JK6deLne6wq4/5kWkE= x-amz-request-id: HXPDAM29RWPPJPC6 Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT ETag: "765620bf3d6dcdb5495b70409b6b4ba8" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 62164 Date: Tue, 29 Nov 2022 10:58:38 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info ---

                                        
                                            GET /l?u=https://h7mhl.app.link/DkoTp2RUgvb HTTP/1.1 

                                        
                                            
Host: l.wl.co

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         31.13.72.8

                                        
                                            HTTP/1.1 301 Moved Permanently 

                                        
                                            
Content-Type: text/plain

                                        

                                        
                                            
Location: https://l.wl.co/l?u=https://h7mhl.app.link/DkoTp2RUgvb 

                                        
                                            
Server: proxygen-bolt 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:36 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Content-Length: 0 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 4335 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:36 GMT 

                                        
                                            
Last-Modified: Tue, 29 Nov 2022 09:46:21 GMT 

                                        
                                            
Server: ECS (ska/F709) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    9408cc0694fcbea57966c3a3ba906092

                                                Sha1:   fddcee1fdcf3209298e41a4b1b5560357fa165f0

                                                Sha256: 6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 939 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 10:19:36 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 2340 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    30db107dcf4380cef05efea409c2e6a3

                                                Sha1:   96e6a306fbc07299aba64e5c14e2bfca35872fa9

                                                Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 412 

                                        
                                            
Cache-Control: max-age=109294 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:36 GMT 

                                        
                                            
Etag: "6384ec2e-1d7" 

                                        
                                            
Expires: Wed, 30 Nov 2022 17:20:10 GMT 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 17:13:18 GMT 

                                        
                                            
Server: ECS (amb/6B72) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    eacfe27ce5dea4c3da2d05021fc8ce6c

                                                Sha1:   73f9cd7e4b383b53c2eb086177f002f0d72e57fa

                                                Sha256: 3273360f8428124506452ba0c96a14c8274b1009156b5c991aad86a429e358a7

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 29 Nov 2022 10:58:36 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 1942 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:37 GMT 

                                        
                                            
Last-Modified: Tue, 29 Nov 2022 10:26:15 GMT 

                                        
                                            
Server: ECS (ska/F709) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    af25abbc1f9776cf78b07837dbea38a0

                                                Sha1:   1883049bac2e92f8b3107f6435f00b83d8f4c117

                                                Sha256: 663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 1942 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:37 GMT 

                                        
                                            
Last-Modified: Tue, 29 Nov 2022 10:26:15 GMT 

                                        
                                            
Server: ECS (ska/F709) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    af25abbc1f9776cf78b07837dbea38a0

                                                Sha1:   1883049bac2e92f8b3107f6435f00b83d8f4c117

                                                Sha256: 663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17

                                        
                                            GET /TGZQWVosS0FZVSwxNjY5NDcxNjk1LCww?_branch_match_id=1062369509546216292&utm_source=facebook&utm_campaign=facebook&_branch_referrer=H4sIAAAAAAAAA8soKSkottLXzzDPzcjRSywo0MvJzMvWd8nODykwCgpNL0sCAHRlri4iAAAA HTTP/1.1 

                                        
                                            
Host: sydney.kayuu.xyz

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Referer: https://l.wl.co/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         185.168.111.241

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8

                                        

                                        
                                            
Connection: Keep-Alive 

                                        
                                            
Keep-Alive: timeout=5, max=100 

                                        
                                            
x-powered-by: PHP/7.4.33 

                                        
                                            
cache-control: no-cache 

                                        
                                            
pragma: no-cache 

                                        
                                            
content-length: 495 

                                        
                                            
content-encoding: gzip 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
date: Tue, 29 Nov 2022 10:58:37 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubDomains 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1003), with no line terminators

                                                Size:   495

                                                Md5:    ca6afa65e847d33edc43d6453ff0a30d

                                                Sha1:   4b183dfca7af5b7b320a9c0aaf7cab73f215ba3b

                                                Sha256: 7f9024d22521ae59257d102eca7e50dd3fd125c2c64de7a3ed8f0d710d8c212d

                                        
                                            GET /_meetups/?click_id=KAYU&country_code=NO&user_agent=WEB&ip_address=91.90.42.154&user_lp=IMONETIZEIT HTTP/1.1 

                                        
                                            
Host: sydney.kayuu.xyz

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         185.168.111.241

                                        
                                            HTTP/1.1 302 Found 

                                        
                                            
content-type: text/html; charset=UTF-8

                                        

                                        
                                            
Connection: Keep-Alive 

                                        
                                            
Keep-Alive: timeout=5, max=100 

                                        
                                            
x-powered-by: PHP/7.4.33 

                                        
                                            
cache-control: no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
pragma: no-cache 

                                        
                                            
location: /_meetups/r.php?click_id=KAYU&country_code=no&user_agent=web&ip_address=91.90.42.154&user_lp=imonetizeit 

                                        
                                            
content-length: 0 

                                        
                                            
date: Tue, 29 Nov 2022 10:58:37 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubDomains 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "ABF19431B118F7918C077329C1A72CB8C46AF1DB2E27B8E1193AC56F97A6E626" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=18758 

                                        
                                            
Expires: Tue, 29 Nov 2022 16:11:16 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    7a363baa17d7f58d9840babcfa3f52b2

                                                Sha1:   4a47c32d50c4d975dc5f9259c0974f83c7e82ad6

                                                Sha256: abf19431b118f7918c077329c1a72cb8c46af1db2e27b8e1193ac56f97a6e626

                                        
                                            GET /landings/277110/1669380007/js/vegas.js?1669380007 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: rZXZ+X6E8VbZX75uL9nrT0rRNje9gHHGsBncz0i4XPbgt1NdtQe0qkC9PD3OgZjmpjKMxRip7BQ= 

                                        
                                            
x-amz-request-id: YHWQY9B6YRTSJJKK 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT 

                                        
                                            
ETag: "9acc66fdf18dea05bd75165eb5a96259" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Content-Length: 3401 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (11568), with CRLF line terminators

                                                Size:   3401

                                                Md5:    156c4046496d16408b06eb605ce1ab09

                                                Sha1:   0dde2c6bbb3cf64132989866bdc1161be62474e3

                                                Sha256: 657aac4fd9cd122e452b9da290c486d115af6b8fe8d409f39ab1d1d3dff44144

                                        
                                            GET /landings/277110/1669380007/css/safety-block.css?1669380007 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
x-amz-id-2: Q4UKoP3RH+IoQKg7vu/xPLCAnxkYZ9FK9wPdsOvvcjLU/HB1npe867Y1vAyupdjj7O243zeBmiA= 

                                        
                                            
x-amz-request-id: SE3AV5V17Q2XXGQ6 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "ccfc3e7113030d2214cc5a04295fbaec" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Content-Length: 474 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with CRLF line terminators

                                                Size:   474

                                                Md5:    e38fd88cdc96e7cecbe4ec577e08b70e

                                                Sha1:   8da300538dd2b191464fc932c74fe5ebbed418b7

                                                Sha256: e07a2aa384841da50892bc7f5d92b1675d291c498ffbe88a89197e9b3f884bf1

                                        
                                            GET /landings/277110/1669380007/js/jquery-2.2.4.min.js?1669380007 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: hA8E0YW8mwo6To7la5raHy1SkF41I2Ljw8eext4bdrxVFbg6y/6v08ew2rpw5VlaORk9AGy5v0Y= 

                                        
                                            
x-amz-request-id: SE3CG9YYWR15EZY5 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT 

                                        
                                            
ETag: "2f6b11a7e914718e0290410e85366fe9" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Content-Length: 29855 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (32065)

                                                Size:   29855

                                                Md5:    2fa28552f1ee4e1382ee43930b53afb8

                                                Sha1:   803670da6a35378bf4eb73acc8e72fe4feb5ca30

                                                Sha256: ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494

                                        
                                            GET /landings/277110/1669380007/js/tn_pHash.js?1669380007 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: l24II4je276eDM3kgUQPWR30kPx/oD56tIlmVlUFPfdsJjV+y8vTad6IIGIbUajDuulRqA2F+IQ= 

                                        
                                            
x-amz-request-id: YHWRJCHJWMMN929M 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT 

                                        
                                            
ETag: "3544c08851825a863747a126548d6993" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 252 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   252

                                                Md5:    3544c08851825a863747a126548d6993

                                                Sha1:   01882998e61b9f93d5f346386fa633f6b8d95b2d

                                                Sha256: 9804b1c7443db74b2d7fe81cf11d84c8f0d9a7dee281b4fe8c15552bdc7eed69

                                        
                                            GET /landings/277110/1669380007/js/translates-review.js?1669380007 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: TUwNMEorlVhmmQRTvZ4PtKvXYpQ8TiSuIyrxEGkaKPfCGqbDvjUX3Yu9ffd2yHzolZR17YcL9i0= 

                                        
                                            
x-amz-request-id: HXP25N7MQS75YACF 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:12 GMT 

                                        
                                            
ETag: "fe0aae6f9135f4ae6b865596d5536572" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Content-Length: 14009 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text

                                                Size:   14009

                                                Md5:    c7fe64ab27fa6636d47e268eb6097573

                                                Sha1:   4095663454037fe276f45bd45c88f3742cc8618d

                                                Sha256: 5f7d54f2a3e32dea4d98b026e24552def3b8eb2c6971cbf453613fc65e7468ae

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    07b8296613be09905e34b09dce4a203f

                                                Sha1:   c97c67e8c4b1247423d089c028c31e05734f124e

                                                Sha256: c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2

                                        
                                            GET /landings/277110/1669380007/images/6-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: gDkfNqzfF0VuoA/PUPrrC3TAHfAkT1jcbvXqT4U+ZTfqb1nzuZ5Wv1Vn/oyBFQlQ4j+nUAFOAZA= 

                                        
                                            
x-amz-request-id: 6S4VWG7RHN8T71Y4 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "9a6870069cb979e16b239f9ed485fb3c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 3256 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   3256

                                                Md5:    9a6870069cb979e16b239f9ed485fb3c

                                                Sha1:   c1dc7f3620c8cc391648c550f91b269b04d3c612

                                                Sha256: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818

                                        
                                            GET /landings/277110/1669380007/images/5-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: a2K4LJJYSCMlfkpdi7XYV4YxqqmNrySXxPzHJRPUWKWgf50MnGtJWoxvXiEXZ5AG+GAVRZcig0w= 

                                        
                                            
x-amz-request-id: M1E8E3SXYSEQ0EA2 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "27109a247208262e6293950ca8f5450d" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2879 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   2879

                                                Md5:    27109a247208262e6293950ca8f5450d

                                                Sha1:   cea89616d15ad45a0f2b04082dff608abd96b800

                                                Sha256: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96

                                        
                                            GET /landings/277110/1669380007/images/logo-white.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: 0hnTOMjaLTEcee6jvhffHOUAVV+6wuHj7snluSjlJDrrvjUYE6vmNQY6i3mHcaQwOxeFjpx0sVQ= 

                                        
                                            
x-amz-request-id: KJC2M7FG6P8NF19M 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT 

                                        
                                            
ETag: "27a8fdccc08741c52422bd4852f87c3a" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 9461 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 300 x 124, 8-bit colormap, non-interlaced\012- data

                                                Size:   9461

                                                Md5:    27a8fdccc08741c52422bd4852f87c3a

                                                Sha1:   b103730d95829f64c0746b97a85e0ada4f6c18a2

                                                Sha256: 7afbc6f7cb728a9b4dfd7791a8207c60bdd255ea2f00ba12880bee15f7fbdff0

                                        
                                            GET /landings/277110/1669380007/images/shield.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: InmWGGtJz/XQ98t1JAeohiMuTlJ68ZQnVArn6+3DgSaePSKh2X/I9GPw/cnRlcu8xz8Bp8c3e0s= 

                                        
                                            
x-amz-request-id: KJCA28RWFTHW9SXT 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1539 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310)

                                                Size:   1539

                                                Md5:    0c7a0dfd64cf020cd8a6dc0c3df1dbdf

                                                Sha1:   f705635388aebebae1223d828c38233067f28ab1

                                                Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888

                                        
                                            GET /landings/277110/1669380007/images/8-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: ebHJnUW9OQynVlfVfc5upD9XgOsodCkggKEk07o9WeB5SmFM87tyICuWsgs3ugcumJ9BL235Vec= 

                                        
                                            
x-amz-request-id: SPW2ABQ9XMXC4J3S 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "41bbda91cef3f22db1d45d66f7ca0961" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2458 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   2458

                                                Md5:    41bbda91cef3f22db1d45d66f7ca0961

                                                Sha1:   e2f8f56674e0180063a4f8287931dc0b273baf8e

                                                Sha256: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e

                                        
                                            GET /landings/277110/1669380007/images/password.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: S3QKCYrVfXLOPatQoEsuzKWreDpdH2pXAeAZjqiLuW6WSrQEcQlaDc/An6BtrU9jqLlUIUK/v70= 

                                        
                                            
x-amz-request-id: AD6BFCVABJEZ35K3 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "f42aef7f97d4c9bdb074673081f38ac7" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1339 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (330)

                                                Size:   1339

                                                Md5:    f42aef7f97d4c9bdb074673081f38ac7

                                                Sha1:   0231df782e371d139c826e091279acd9a07e691c

                                                Sha256: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac

                                        
                                            GET /landings/277110/1669380007/images/2-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: 94B+qg44bfwckEWeh/+FXoD0JuETZNY2gkuV45MB6Wux/V7D90illuhFfcsY9TOtFhQEl5/uUFA= 

                                        
                                            
x-amz-request-id: 6S4WJE4RA6GX4PCE 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "66b6dc51bd19c799dcadf1dbeb628d9c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2009 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   2009

                                                Md5:    66b6dc51bd19c799dcadf1dbeb628d9c

                                                Sha1:   ff7fe6049e944186764bfc5041d624ec11f8d362

                                                Sha256: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0

                                        
                                            GET /landings/277110/1669380007/images/7-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: dJTxFgCe1D5Hjh/iDcl9FvMPp+SKYz53rnoP6jF0PAQCBVeEo2tH0gmtMpQvswLw54gmtu1wjHg= 

                                        
                                            
x-amz-request-id: 6S4QB2JNDJC2VTVX 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "8155d8ecc7dc2d9b29cf99ab85c3d2a8" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2282 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   2282

                                                Md5:    8155d8ecc7dc2d9b29cf99ab85c3d2a8

                                                Sha1:   ba784563c7787760b318af24ea274ad6df2c5b89

                                                Sha256: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27

                                        
                                            GET /landings/277110/1669380007/images/action_icons_20px_2x.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/landings/277110/1669380007/css/comments.css?1669380007 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: n0JrO/Dcp5bv4kj739clPJZtLl2z6zFl4iFa9ByEtIH2m0pyfO+XmspHHiOoapNjpwjSOlEGR6I= 

                                        
                                            
x-amz-request-id: M1E03VDK0MDFGEGQ 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:11 GMT 

                                        
                                            
ETag: "b699975b5fe73b087e711a33ff24ee1e" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1726 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data

                                                Size:   1726

                                                Md5:    b699975b5fe73b087e711a33ff24ee1e

                                                Sha1:   0e33cc5c32a5e7d18440751e3946076664caaf53

                                                Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e

                                        
                                            GET /css2?family=Roboto:wght@300;400;700&display=swap HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.10

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
expires: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
cache-control: private, max-age=86400 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   151744

                                                Md5:    5b96f5f7558fdd034df07d8647434781

                                                Sha1:   b98e33c03487b695a6d6b1766c51be61fa9ee900

                                                Sha256: 18e7b321940d9733dd6ac398bb1f2398b5c36814577879112adc3d957a51da43

                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://mdjdg.prodlgiousdates.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://fonts.googleapis.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         216.58.207.195

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 9644 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Wed, 23 Nov 2022 19:34:41 GMT 

                                        
                                            
expires: Thu, 23 Nov 2023 19:34:41 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 487437 

                                        
                                            
last-modified: Wed, 11 May 2022 19:24:50 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 9644, version 1.0\012- data

                                                Size:   9644

                                                Md5:    6f112ec2b932ee12379442c42853244e

                                                Sha1:   b2e73c8c70d6261e1d187f41693c43ac4fe0809d

                                                Sha256: 6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    49eee25f3ccd585a29e34e80cf5bb160

                                                Sha1:   73eca8be91deedd049304862759a3d8084c0b07e

                                                Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    49eee25f3ccd585a29e34e80cf5bb160

                                                Sha1:   73eca8be91deedd049304862759a3d8084c0b07e

                                                Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://mdjdg.prodlgiousdates.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://fonts.googleapis.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         216.58.207.195

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 15744 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Wed, 23 Nov 2022 19:34:08 GMT 

                                        
                                            
expires: Thu, 23 Nov 2023 19:34:08 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 487470 

                                        
                                            
last-modified: Wed, 11 May 2022 19:24:48 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data

                                                Size:   15744

                                                Md5:    15d9f621c3bd1599f0169dcf0bd5e63e

                                                Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52

                                                Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    49eee25f3ccd585a29e34e80cf5bb160

                                                Sha1:   73eca8be91deedd049304862759a3d8084c0b07e

                                                Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

                                        
                                            GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1 

                                        
                                            
Host: www.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript; charset=UTF-8

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" 

                                        
                                            
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} 

                                        
                                            
content-length: 8604 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Wed, 23 Nov 2022 18:32:45 GMT 

                                        
                                            
expires: Thu, 23 Nov 2023 18:32:45 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 491153 

                                        
                                            
last-modified: Thu, 10 May 2018 20:35:51 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (25088)

                                                Size:   8604

                                                Md5:    73069e532b7039778d3a7128c997c61a

                                                Sha1:   c523bbf1ac7f4e612c8ade75434c42fbca885adc

                                                Sha256: b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3337 

                                        
                                            
Expires: Tue, 29 Nov 2022 11:54:15 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    a97c452e75cf1d4833e777d7ba7f2c47

                                                Sha1:   58f15763fd33f742ce870f49f1c2dbed5b41205f

                                                Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3337 

                                        
                                            
Expires: Tue, 29 Nov 2022 11:54:15 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    a97c452e75cf1d4833e777d7ba7f2c47

                                                Sha1:   58f15763fd33f742ce870f49f1c2dbed5b41205f

                                                Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8578 

                                        
                                            
x-amzn-requestid: 4f948bb9-74db-4a5d-927d-a6b893735531 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cFxnWHq-IAMF4LQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-637efc95-2f9e98ca2dad65a80e2195c2;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Thu, 24 Nov 2022 05:09:41 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: X2x9_hXC0JvEktFODEMuasu3QDg4ChtTLKJOmDVasT7IIsKlxkwXCQ== 

                                        
                                            
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 04:24:31 GMT 

                                        
                                            
age: 23647 

                                        
                                            
etag: "5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8578

                                                Md5:    4b7d3821d0bd11c196724846a7b9fe22

                                                Sha1:   5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c

                                                Sha256: b4f820555c4daf6e112c1a395bc57e22f0ef8e2e4299a0ffbb54e0bf18c87f47

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 4916 

                                        
                                            
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cPYcrELFoAMFaeQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg== 

                                        
                                            
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 03:01:17 GMT 

                                        
                                            
age: 28641 

                                        
                                            
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4916

                                                Md5:    83c1fedec73299637cc7dc47c48af758

                                                Sha1:   2e3f7326aeea6be8a34bf2c39b34862c07bfdc41

                                                Sha256: 1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 10813 

                                        
                                            
x-amzn-requestid: 5a3c9584-1389-45ac-968d-0a2301f82eda 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cR6_KG00oAMFpig= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6383d860-6ffc3ff67f7f7e75399834e8;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: Ir-Zzqt3ErueryuLgIxlgEtX-TQwpCC1brzCCzfURhjLnuUT8m03wQ== 

                                        
                                            
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 08:43:30 GMT 

                                        
                                            
age: 8108 

                                        
                                            
etag: "238a7439d887fb3aa7f1302eeb43fce62f08441a" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   10813

                                                Md5:    005e5ba3c9588cf389a58195001b64e3

                                                Sha1:   238a7439d887fb3aa7f1302eeb43fce62f08441a

                                                Sha256: d75dd5b6f57d9c9290725c5be76cc7d7a39682ca569bea18eceb9bdc13d444f9

                                        
                                            GET /landings/277110/1669380007/images/3.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://mdjdg.prodlgiousdates.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: mujQkU5bBZxk2esbQzkJw8R2YF+eM2odlv+AwUGp4LhSGFsVJsBE6mUyaQiQTARWACoIOhF7hWM= 

                                        
                                            
x-amz-request-id: XEPRXN6QMY0CFMNK 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:40:10 GMT 

                                        
                                            
ETag: "8ff03d86c53d978e5527374b5bcd5114" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 149812 

                                        
                                            
Date: Tue, 29 Nov 2022 10:58:40 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1108x1280, components 3\012- data

                                                Size:   149812

                                                Md5:    8ff03d86c53d978e5527374b5bcd5114

                                                Sha1:   2b63b0853d74e24d74d26dbf9622c407e3c74ea9

                                                Sha256: 10dedae19a11a0cf1cea2db4646bde720e63e35140f38ae3453fa2a4e4649e1c

                                        
                                            GET /DkoTp2RUgvb HTTP/1.1 

                                        
                                            
Host: h7mhl.app.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://l.wl.co/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: _s=%2F31SILt7P19jZ7KS8kYPQ1uvv6lIK49jS2sQqA846IjvTr%2Fva2wjaW9hs%2FuemTYW 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         54.230.111.120

                                        
                                            HTTP/2 307 Temporary Redirect

                                        

                                        
                                            
location: http://sydney.kayuu.xyz/TGZQWVosS0FZVSwxNjY5NDcxNjk1LCww?_branch_match_id=1062369509546216292&utm_source=facebook&utm_campaign=facebook&_branch_referrer=H4sIAAAAAAAAA8soKSkottLXzzDPzcjRSywo0MvJzMvWd8nODykwCgpNL0sCAHRlri4iAAAA 

                                        
                                            
server: openresty 

                                        
                                            
date: Tue, 29 Nov 2022 10:58:37 GMT 

                                        
                                            
set-cookie: _s=%2F31SILt7P19jZ7KS8kYPQ1uvv6lIK49jS2sQqA846IjvTr%2Fva2wjaW9hs%2FuemTYW; Max-Age=31536000; Domain=.app.link; Path=/; Expires=Wed, 29 Nov 2023 10:58:37 GMT; Secure 

                                        
                                            
last-modified: Tue, 29 Nov 2022 10:58:37 GMT 

                                        
                                            
strict-transport-security: max-age=31536000; includeSubDomains 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-P1 

                                        
                                            
x-amz-cf-id: 4WqjiEPU8Nv3iBZm6Qvi6Rt40rIdd5P99O3WGhcrar4k17PlkUBjRQ== 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	l.wl.co/l?u=h7mhl.app.link/DkoTp2RUgvb
IP	31.13.72.8 (Sweden)
ASN	#32934 FACEBOOK
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-11-29 10:58:48 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	4
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (17)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 31.13.72.8

Last 5 reports on ASN: FACEBOOK

Last 5 reports on domain: wl.co

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (24)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (82)

Overview

Domain Summary (17)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 31.13.72.8

Last 5 reports on ASN: FACEBOOK

Last 5 reports on domain: wl.co

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (24)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (82)

Network Intrusion Detection Systems