urlquery - report: lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=3098&click

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
push.services.mozilla.com (1)	2140	2015-09-03 10:29:36 UTC	2022-09-24 05:36:42 UTC	54.189.35.180
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-09-24 04:22:29 UTC	34.120.237.76
cdn-dimi.akamaized.net (13)	0	2022-07-07 13:18:25 UTC	2022-09-24 12:22:55 UTC	184.31.15.107	Domain (akamaized.net) ranked at: 280
ocsp.pki.goog (5)	175	2017-06-14 07:23:31 UTC	2022-09-24 04:23:20 UTC	142.250.74.3
fonts.googleapis.com (2)	8877	2013-06-10 20:14:26 UTC	2022-09-24 19:28:53 UTC	216.58.211.10
getpocket.cdn.mozilla.net (1)	1369	2017-08-31 07:41:15 UTC	2022-09-24 11:51:39 UTC	34.120.5.221
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-09-24 04:22:23 UTC	34.117.237.239
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-09-24 19:48:02 UTC	143.204.55.115
fonts.gstatic.com (1)	0	2014-08-29 13:43:22 UTC	2022-09-24 04:21:47 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
ocsp.digicert.com (1)	86	2012-05-21 07:02:23 UTC	2022-09-24 19:30:16 UTC	93.184.220.29
lavavq.amazlngdate.com (3)	0	2022-06-03 21:18:27 UTC	2022-09-24 18:56:02 UTC	52.19.101.114	Unknown ranking
r3.o.lencr.org (7)	344	2020-12-02 08:52:13 UTC	2022-09-24 04:21:50 UTC	23.36.76.226
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-09-24 04:26:56 UTC	143.204.55.35

Scan Date	Severity	Indicator	Comment
2022-09-25	2	lavavq.amazlngdate.com/js/pushjs/1.0.0/subscriber.js	Phishing
2022-09-25	2	lavavq.amazlngdate.com/js/pushjs/1.0.0/utils.js	Phishing

Date	UQ / IDS / BL	URL	IP
2023-02-08 10:02:22 +0000	0 - 5 - 0	tvi.promotionsandsurvey.site/c/ad0a3413b4338d (...)	52.19.101.114
2023-02-07 04:38:47 +0000	0 - 0 - 2	maklj.unantlcipatedlucks.com/c/1f0a2cb367c37d (...)	52.19.101.114
2023-02-07 03:21:57 +0000	0 - 0 - 1	gsft.gottatopsweeps.com/	52.19.101.114
2023-02-06 21:01:04 +0000	0 - 0 - 9	www.mydataanalisys.com/redirect/index?type=sc (...)	52.19.101.114
2023-02-06 15:23:07 +0000	0 - 0 - 1	qvewmj.delicatedate.net/c/da57dc555e50572d?s1 (...)	52.19.101.114

Date	UQ / IDS / BL	URL	IP
2023-02-08 10:54:19 +0000	1 - 0 - 11	track.supercosmo.xyz/1e5d321c-e363-4b44-ae0d- (...)	18.192.108.151
2023-02-08 10:52:58 +0000	0 - 1 - 0	movemnet.com/?jmtj&qrc=	3.144.6.128
2023-02-08 10:51:24 +0000	0 - 1 - 1	trc.bobspeech.com/3a1e3135-6e23-4123-9484-c21 (...)	35.157.125.133
2023-02-08 10:50:12 +0000	0 - 0 - 6	up-holdlginvc.mystrikingly.com/	54.230.111.7
2023-02-08 10:48:36 +0000	0 - 2 - 1	michaelortiz.com/	15.197.142.173

Date	UQ / IDS / BL	URL	IP
2023-01-14 17:17:22 +0000	0 - 0 - 3	lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...)	52.19.101.114
2023-01-08 01:58:15 +0000	0 - 0 - 3	lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...)	52.19.101.114
2023-01-06 23:33:07 +0000	0 - 0 - 3	lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...)	52.19.101.114
2022-12-28 05:53:19 +0000	0 - 0 - 3	lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...)	52.19.101.114
2022-12-05 01:47:42 +0000	0 - 0 - 3	lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...)	52.19.101.114

Date	UQ / IDS / BL	URL	IP
2023-02-06 20:11:41 +0000	0 - 0 - 3	qgxvbz.exceilentdate.com/?utm_source=da57dc55 (...)	63.32.216.166
2023-02-06 17:01:07 +0000	0 - 3 - 1	t.ly/zItj?7782586	172.67.75.122
2023-02-06 15:23:07 +0000	0 - 0 - 1	qvewmj.delicatedate.net/c/da57dc555e50572d?s1 (...)	52.19.101.114
2023-02-04 19:41:43 +0000	0 - 2 - 0	is.gd/GOZOdQ	172.67.83.132
2023-02-04 15:56:04 +0000	0 - 2 - 0	is.gd/Go6ftj	172.67.83.132

Request	Response
GET /c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=3098&click_id=e2d0cead59a1392014c13dc325e0dd05&j1=1 HTTP/1.1 Host: lavavq.amazlngdate.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2= (...) FQDN: lavavq.amazlngdate.com IP: 52.19.101.114 HASH: e7573543240ebbe18cab4feb3b87296be7956768cec5c7d57cacc2e60bc16217 52.19.101.114 HTTP/1.1 200 OK Content-Type: text/html; charset=utf-8 Server: nginx Date: Sun, 25 Sep 2022 02:27:44 GMT Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: unique_id=632fb3f30004dc15; Path=/; Expires=Thu, 24 Nov 2022 02:27:44 GMT unique_id2=632fb3f30006a59e; Path=/; Expires=Sat, 24 Dec 2022 02:27:44 GMT 632fb3f30006a59e_c=1; Path=/; Expires=Sat, 24 Dec 2022 02:27:44 GMT ref_token=120749_152840; Path=/; Expires=Tue, 25 Oct 2022 02:27:44 GMT impression=; Path=/; Expires=Sun, 25 Sep 2022 02:27:44 GMT 632fb3f30006a59e_sl=[274421]; Path=/; Expires=Sun, 09 Oct 2022 02:27:44 GMT Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (814) Size: 5608 Md5: 6ba0bd550ee1af75bb88827f689534ae Sha1: 908bc5a1e786aed0c40db622b061653c4290a1b8 Sha256: e7573543240ebbe18cab4feb3b87296be7956768cec5c7d57cacc2e60bc16217
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80" Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3702 Expires: Sun, 25 Sep 2022 03:29:26 GMT Date: Sun, 25 Sep 2022 02:27:44 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 09a973de929ab7452edc342c780d3668 Sha1: 3f14f6e0a36f76863c0aea6fb561c266404a7ea3 Sha256: e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 3e2af0de9417181121ad7f17ea3c4921afbe84c9beb5f2bd5287c3cec3d4a9c6 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "3E2AF0DE9417181121AD7F17EA3C4921AFBE84C9BEB5F2BD5287C3CEC3D4A9C6" Last-Modified: Thu, 22 Sep 2022 13:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7355 Expires: Sun, 25 Sep 2022 04:30:19 GMT Date: Sun, 25 Sep 2022 02:27:44 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 999cba3a77eef9ee50947f38c9ee6c5d Sha1: 818310602249f4512f252835c27e62914f39d584 Sha256: 3e2af0de9417181121ad7f17ea3c4921afbe84c9beb5f2bd5287c3cec3d4a9c6
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 143.204.55.35 HASH: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770 143.204.55.35 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sat, 10 Sep 2022 18:47:45 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Sat, 24 Sep 2022 04:35:15 GMT etag: "6113f8408c59aebe188d6af273b90743" x-cache: Hit from cloudfront via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: f-VHWzbgvqfxaxB183z-BkV8sIZXMLbrQzpocb57WqvRXbWcvMuNjA== age: 78750 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 6113f8408c59aebe188d6af273b90743 Sha1: 7398873bf00f99944eaa77ad3ebc0d43c23dba6b Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30 HTTP/1.1 Host: getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: getpocket.cdn.mozilla.net/v3/firefox/global-recs?versio (...) FQDN: getpocket.cdn.mozilla.net IP: 34.120.5.221 HASH: 578c578f2e8da240b423e8fcdf5394e1ed55a38a8aecadfed66f0a03146e8828 34.120.5.221 HTTP/2 200 OK content-type: application/json server: nginx vary: Accept-Encoding content-location: global-recs.php tcn: choice x-frame-options: SAMEORIGIN status: 200 OK x-source: Pocket pragma: cache p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE" x-cache: Hit from cloudfront x-amz-cf-pop: SEA73-P2 x-amz-cf-id: pWBWTJTGTP9AHE6gHVuPezmWyx57DOgnDaqam69L-j7haK3DBvDg9Q== content-encoding: gzip via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google date: Sun, 25 Sep 2022 02:16:03 GMT age: 701 content-length: 38343 cache-control: s-maxage=900,public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (65536), with no line terminators Size: 38343 Md5: d3c514753da81081f65096eb4d8ef1ff Sha1: 4a11efbe70a1078bcfa25c4a7fdeb974793934f2 Sha256: 578c578f2e8da240b423e8fcdf5394e1ed55a38a8aecadfed66f0a03146e8828
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Sun, 25 Sep 2022 02:27:44 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /landings/274421/1662542857/css/popup.css?1662542858 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/css/p (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: bcc5d06c7b102eed1477b062020dc4414e4f6c4f9e390e3e67fa675a5f0fa363 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: ddOYh3YdFDGiVPOjyqGBM6wAh8Ol6RMtsu1ZgKmNI3cqdW76VZ2rZo3ZhQD9e+O7IK8l7DK9suA= x-amz-request-id: GWA5KF29YZYFYQCZ Last-Modified: Wed, 07 Sep 2022 09:27:41 GMT ETag: "5a61d45142ce5764a2b36dc75343fcd5" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 25 Sep 2022 02:27:44 GMT Content-Length: 635 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: assembler source, ASCII text Size: 635 Md5: 4ed05a608a8ec589e8aa5b040f7bb878 Sha1: c58649a707ba64aed8b285d3be9f6b06a85ea6cb Sha256: bcc5d06c7b102eed1477b062020dc4414e4f6c4f9e390e3e67fa675a5f0fa363
GET /landings/274421/1662542857/css/style.css?1662542858 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/css/s (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: c469f18bd2ee010417fc8d74c3386b48ff52ce6fc8716111b9f4e806fa50da83 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: jRQUbZtkMUyhDbYqjNe0xjQIn+ZkZZbLIUFODBYrdDARj4X2b1NrBW/webgZB2Ub5VPSyK4uRZw= x-amz-request-id: GWA5JVC61R1BBDKY Last-Modified: Wed, 07 Sep 2022 09:27:41 GMT ETag: "62e4fcadb228731d5cec4c0f22c1f3ee" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 25 Sep 2022 02:27:44 GMT Content-Length: 2983 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 2983 Md5: a996d284700fdfc5eec5573149941366 Sha1: 14e500aad09e7a9124c1dfe35bc9aa1cbc469db8 Sha256: c469f18bd2ee010417fc8d74c3386b48ff52ce6fc8716111b9f4e806fa50da83
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.115 HASH: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551 143.204.55.115 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert Cache-Control: max-age=3600 Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Sun, 25 Sep 2022 01:59:01 GMT X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 5QZe7YeL8iJmFthAWqHJ89_v5_2DkvzVgVYMWg6bI5ckRS0o0HzK_Q== Age: 1723 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 2d12f67fe57a87e7366b662d153a5582 Sha1: d7b02d81cc74f24a251d9363e0f4b0a149264ec1 Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /landings/274421/1662542857/js/vegas.js?1662542858 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/js/ve (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 657aac4fd9cd122e452b9da290c486d115af6b8fe8d409f39ab1d1d3dff44144 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: j9fj9K0jAAlbi56A174AmiFHUnflBNGxqrEYLu8/WE2AKbCcXvAeF8VTGeLt4pQxT5T1Vj5ron0= x-amz-request-id: GWA0AQA1GBZP5Z67 Last-Modified: Wed, 07 Sep 2022 09:27:41 GMT ETag: "9acc66fdf18dea05bd75165eb5a96259" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 25 Sep 2022 02:27:44 GMT Content-Length: 3401 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with very long lines (11568), with CRLF line terminators Size: 3401 Md5: 156c4046496d16408b06eb605ce1ab09 Sha1: 0dde2c6bbb3cf64132989866bdc1161be62474e3 Sha256: 657aac4fd9cd122e452b9da290c486d115af6b8fe8d409f39ab1d1d3dff44144
GET /landings/274421/1662542857/js/function.js?1662542858 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/js/fu (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 303187afb2cbbbf6095724df7eaf8c7967bb019dc17e1224d9e2366ac7f381c5 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: liab8UeBT3W3AT/bneG+cvmNHhaVKJM92+VcsIgMdpVEokY4a37n6tu+RBvFC1t05GVMs62UBbc= x-amz-request-id: GWA0T25S86MZ70A0 Last-Modified: Wed, 07 Sep 2022 09:27:41 GMT ETag: "5da2c51949f2a873bf0091a104658e72" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 25 Sep 2022 02:27:44 GMT Content-Length: 688 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 688 Md5: ba7deda1bcbc1e2d5c127678e05b71a1 Sha1: 4707fef7ab43a522b3cf7f5c0db4c148c5a43701 Sha256: 303187afb2cbbbf6095724df7eaf8c7967bb019dc17e1224d9e2366ac7f381c5
GET /landings/274421/1662542857/js/jquery-2.2.4.min.js?1662542858 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/js/jq (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: 2YGXjoH4O0SzJO8ipW8pW5dOv8o7vBZojiso6G5E2cu1zHAGdd603sH0z22bBUeCcNmNx4XY5MU= x-amz-request-id: GWABPP633F2RBPQG Last-Modified: Wed, 07 Sep 2022 09:27:41 GMT ETag: "2f6b11a7e914718e0290410e85366fe9" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 25 Sep 2022 02:27:44 GMT Content-Length: 29855 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with very long lines (32065) Size: 29855 Md5: 2fa28552f1ee4e1382ee43930b53afb8 Sha1: 803670da6a35378bf4eb73acc8e72fe4feb5ca30 Sha256: ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494
GET /landings/274421/1662542857/js/translates.js?1662542858 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 73c4aa8abb0450fbb7eef37c3afc3d6f11f0c2bc3f0a101323364b59298e4e2f 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: OXFYZHT4YvUk+KUMr0N0CI8d2yUOUNvt3MAP3XcTOYbm6pr57SAq1+qbQbaoEwU/jwUIaqSBp88= x-amz-request-id: GWAAPT6A8SYRBME3 Last-Modified: Wed, 07 Sep 2022 09:27:41 GMT ETag: "07cee83d1be10af1ca991d1c60abd6e2" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 25 Sep 2022 02:27:44 GMT Content-Length: 10048 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 10048 Md5: f54e5331f7d782d475a884cce1db33fd Sha1: d5145e3ebcab1a21d4cdff8632c9901db93b962f Sha256: 73c4aa8abb0450fbb7eef37c3afc3d6f11f0c2bc3f0a101323364b59298e4e2f
GET /landings/274421/1662542857/js/tn_pHash.js?1662542858 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/js/tn (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 9804b1c7443db74b2d7fe81cf11d84c8f0d9a7dee281b4fe8c15552bdc7eed69 184.31.15.107 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: 71eTykaC0NAIYDaxTIADxFYajIeFBtJL+i7U0yPBt5Ared+ny5oFo3NWTJhvYs5ZJVY5aeahDSE= x-amz-request-id: P88FSYB9BE0Y84EW Last-Modified: Wed, 07 Sep 2022 09:27:41 GMT ETag: "3544c08851825a863747a126548d6993" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 252 Date: Sun, 25 Sep 2022 02:27:44 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 252 Md5: 3544c08851825a863747a126548d6993 Sha1: 01882998e61b9f93d5f346386fa633f6b8d95b2d Sha256: 9804b1c7443db74b2d7fe81cf11d84c8f0d9a7dee281b4fe8c15552bdc7eed69
GET /landings/274421/1662542857/images/logo-white.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 7afbc6f7cb728a9b4dfd7791a8207c60bdd255ea2f00ba12880bee15f7fbdff0 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: 7ZAH5KV1T5E4tllgJ/I7XKq9d8Ul4Vvef6udhyYU5AwFMnU34q779ftJ47G7tZ/bHU40y4JvOWo= x-amz-request-id: K9QTE3PTCDQ46836 Last-Modified: Wed, 07 Sep 2022 09:27:40 GMT ETag: "27a8fdccc08741c52422bd4852f87c3a" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 9461 Date: Sun, 25 Sep 2022 02:27:44 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 300 x 124, 8-bit colormap, non-interlaced\012- data Size: 9461 Md5: 27a8fdccc08741c52422bd4852f87c3a Sha1: b103730d95829f64c0746b97a85e0ada4f6c18a2 Sha256: 7afbc6f7cb728a9b4dfd7791a8207c60bdd255ea2f00ba12880bee15f7fbdff0
GET /landings/274421/1662542857/images/1.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: e0d65a21b743f7fe6de2f4bd57316546e7f30c7810740d68322a44dfe3004373 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: eUWyLc+8ziViZADtTw5rDVrJAaa2gq6hlK5ZrSo1BYSaq/2wKs9UbaP5dOL+wQYn18/YA8Jlsqg= x-amz-request-id: K9QS8XCHQASQKRWN Last-Modified: Wed, 07 Sep 2022 09:27:40 GMT ETag: "765620bf3d6dcdb5495b70409b6b4ba8" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 62164 Date: Sun, 25 Sep 2022 02:27:44 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 900x1280, components 3\012- data Size: 62164 Md5: 765620bf3d6dcdb5495b70409b6b4ba8 Sha1: f4a00a38ca93130e5e0398deea0ba2f928e2172b Sha256: e0d65a21b743f7fe6de2f4bd57316546e7f30c7810740d68322a44dfe3004373
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 25 Sep 2022 02:27:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: cfbe772bfdcc656e94ceed53256863ca Sha1: 34055ed3761ab4b69af25a2cb70ca7a337a9f79b Sha256: 7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 25 Sep 2022 02:27:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: cfbe772bfdcc656e94ceed53256863ca Sha1: 34055ed3761ab4b69af25a2cb70ca7a337a9f79b Sha256: 7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
GET /css2?family=Roboto:wght@300;400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Roboto:wght@300;400;70 (...) FQDN: fonts.googleapis.com IP: 216.58.211.10 HASH: 722287a3bb2b47d7e39c09a0f23ea0b4a8b101b90420721667f35595daf58b99 216.58.211.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 25 Sep 2022 02:27:44 GMT date: Sun, 25 Sep 2022 02:27:44 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 1131 Md5: 73faf0d34b62e963861ebd4221b82b77 Sha1: 84bc8392d9ba72e8c097a51cf40464da9251c8d4 Sha256: 722287a3bb2b47d7e39c09a0f23ea0b4a8b101b90420721667f35595daf58b99
GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1 Host: lavavq.amazlngdate.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=3098&s5=backuser&click_id=e2d0cead59a1392014c13dc325e0dd05&iexpp=1&j1=1 Cookie: unique_id=632fb3f30004dc15; unique_id2=632fb3f30006a59e; 632fb3f30006a59e_c=1; ref_token=120749_152840; impression=; 632fb3f30006a59e_sl=[274421]	URL: lavavq.amazlngdate.com/js/pushjs/1.0.0/subscriber.js FQDN: lavavq.amazlngdate.com IP: 52.19.101.114 HASH: 740aacdd2752459683dc7986658f1ac667048404bc12ce6dd233813d68aa4131 52.19.101.114 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sun, 25 Sep 2022 02:27:45 GMT Transfer-Encoding: chunked Connection: keep-alive Expires: Sun, 02 Oct 2022 02:27:45 GMT Cache-Control: max-age=604800 Content-Encoding: gzip --- Additional Info --- Magic: C source, ASCII text, with very long lines (9389) Size: 3297 Md5: 3fc959642390ff4dc8b17be4e706c3fc Sha1: 107f4500b048c2060c53260ef3c5a0c2286499a8 Sha256: 740aacdd2752459683dc7986658f1ac667048404bc12ce6dd233813d68aa4131 Alerts: Blocklists: - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 25 Sep 2022 02:27:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: da681c2f112645651e5b32be2cfcd052 Sha1: 2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946 Sha256: 302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 25 Sep 2022 02:27:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: da681c2f112645651e5b32be2cfcd052 Sha1: 2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946 Sha256: 302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
GET /css2?family=Ubuntu:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Ubuntu:wght@400;700&di (...) FQDN: fonts.googleapis.com IP: 216.58.211.10 HASH: 83d2e5cc4c1a635bb277843c8bd36dcba921f39307320b8e64048ac805f0d84a 216.58.211.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 25 Sep 2022 02:27:44 GMT date: Sun, 25 Sep 2022 02:27:44 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 16285 Md5: f2e37acf22ee9ac97fda17ebfce01be9 Sha1: 5e12d8f62cbd976695cc2d1fab2b06638e5cd6e8 Sha256: 83d2e5cc4c1a635bb277843c8bd36dcba921f39307320b8e64048ac805f0d84a
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://lavavq.amazlngdate.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4 (...) FQDN: fonts.gstatic.com IP: 142.250.74.163 HASH: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 142.250.74.163 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 21 Sep 2022 19:34:08 GMT expires: Thu, 21 Sep 2023 19:34:08 GMT cache-control: public, max-age=31536000 age: 284017 last-modified: Wed, 11 May 2022 19:24:42 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size: 15860 Md5: e9f5aaf547f165386cd313b995dddd8e Sha1: acdef5603c2387b0e5bffd744b679a24a8bc1968 Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /js/pushjs/1.0.0/utils.js HTTP/1.1 Host: lavavq.amazlngdate.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=3098&s5=backuser&click_id=e2d0cead59a1392014c13dc325e0dd05&iexpp=1&j1=1 Cookie: unique_id=632fb3f30004dc15; unique_id2=632fb3f30006a59e; 632fb3f30006a59e_c=1; ref_token=120749_152840; impression=; 632fb3f30006a59e_sl=[274421]	URL: lavavq.amazlngdate.com/js/pushjs/1.0.0/utils.js FQDN: lavavq.amazlngdate.com IP: 52.19.101.114 HASH: 1b0a79f9e94716392c53169b6f43442b5228c54c3043be131d72b3bf60ca972a 52.19.101.114 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sun, 25 Sep 2022 02:27:45 GMT Transfer-Encoding: chunked Connection: keep-alive Expires: Sun, 02 Oct 2022 02:27:45 GMT Cache-Control: max-age=604800 Content-Encoding: gzip --- Additional Info --- Magic: C source, ASCII text, with very long lines (7071), with no line terminators Size: 3387 Md5: be3b25b851473bc70a884cb177fd7076 Sha1: 51db0baf5c4fd8a8b09ca7ffde3ffa987635cbd0 Sha256: 1b0a79f9e94716392c53169b6f43442b5228c54c3043be131d72b3bf60ca972a Alerts: Blocklists: - fortinet: Phishing
GET /images/favicon.ico HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/images/favicon.ico FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/x-icon x-amz-id-2: 3PLd1JbxzMUZnvLfJ08LlqJVa0X1bm3g8lDKKuDaPcpHRGpUOyvL763tb+Zgy/zeSb8kMvb/P10= x-amz-request-id: 2XWP9N688THY1C8H Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT ETag: "4cdf3256cd7b8ec3917adb79d6bf457e" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 4103 Date: Sun, 25 Sep 2022 02:27:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size: 4103 Md5: 4cdf3256cd7b8ec3917adb79d6bf457e Sha1: bc615337e9223183a126c8fb649774866fb53e69 Sha256: fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 25 Sep 2022 02:27:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: da681c2f112645651e5b32be2cfcd052 Sha1: 2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946 Sha256: 302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.115 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 143.204.55.115 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Cache-Control: max-age=3600, max-age=3600 Date: Sun, 25 Sep 2022 02:04:17 GMT Expires: Sun, 25 Sep 2022 03:03:11 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 9HUA_VjFcd4k3onrx5xJ2LK9u1sWTooFdqwMFKEH16jjcfNN4QHJCw== Age: 1408 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2977 Cache-Control: 'max-age=158059' Date: Sun, 25 Sep 2022 02:27:45 GMT Last-Modified: Sun, 25 Sep 2022 01:38:08 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: a7809de115ea73f8b61f3d20a9978493 Sha1: 01fc65a2b694d7aadd5204d21801e87b2b55b73e Sha256: 72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: zvsqSiOnUacshbz2SET4mg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 54.189.35.180 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 54.189.35.180 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: EhnBmlWw39pXg9ELbnmNTmSND7w= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /landings/274421/1662542857/images/2.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: c8d05f7eda85f68f0a08307eeee4e481282fda95570dd53f300b8aadd4f504f6 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: gp+KW+XsF1eQMR6ru1ICTiI9NPOyrlTud/NqgB36ZFfadebh4ucJpcBIoPjYE07UBAv8h11Qnhg= x-amz-request-id: S7YEGPE37SG28KHD Last-Modified: Wed, 07 Sep 2022 09:27:40 GMT ETag: "3b8b455b24c71ae1f928266241e9517e" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 102832 Date: Sun, 25 Sep 2022 02:27:46 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 960x1280, components 3\012- data Size: 102832 Md5: 3b8b455b24c71ae1f928266241e9517e Sha1: 8b98ca60c92b83e039c3b996f090883ed8b7ca75 Sha256: c8d05f7eda85f68f0a08307eeee4e481282fda95570dd53f300b8aadd4f504f6
GET /landings/274421/1662542857/images/3.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 10dedae19a11a0cf1cea2db4646bde720e63e35140f38ae3453fa2a4e4649e1c 184.31.15.107 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: PJXEaesO2MayljWdvNJCu5HeZAYazV9pENLftMzTFMSpLWEOktW+X5+JBuKRPWn8dQz7TyzRX1g= x-amz-request-id: S7YCNA1EH6Q0J77N Last-Modified: Wed, 07 Sep 2022 09:27:41 GMT ETag: "8ff03d86c53d978e5527374b5bcd5114" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 149812 Date: Sun, 25 Sep 2022 02:27:46 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1108x1280, components 3\012- data Size: 149812 Md5: 8ff03d86c53d978e5527374b5bcd5114 Sha1: 2b63b0853d74e24d74d26dbf9622c407e3c74ea9 Sha256: 10dedae19a11a0cf1cea2db4646bde720e63e35140f38ae3453fa2a4e4649e1c
GET /landings/274421/1662542857/images/1.mp4 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: video/webm,video/ogg,video/;q=0.9,application/ogg;q=0.7,audio/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- Connection: keep-alive Referer: http://lavavq.amazlngdate.com/ Sec-Fetch-Dest: video Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/274421/1662542857/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.107 HASH: 5635dd2c6c23dfdc3e4eb82afc4231a27e8522ec332b8568a3fc7ae8755fec94 184.31.15.107 HTTP/1.1 206 Partial Content Content-Type: video/mp4 x-amz-id-2: GbYGyun+5RA0M2MnBCzcNmNAY0OKRDXOfebKxarP9zvd0eRe3feVuwlHbyhcFSd2aPFHcgzRBqA= x-amz-request-id: FWGFKQ02G78VHADJ Last-Modified: Wed, 07 Sep 2022 09:27:40 GMT ETag: "379ddec6d7d6e118bd7565d1c83dbb90" Accept-Ranges: bytes Server: AmazonS3 Date: Sun, 25 Sep 2022 02:27:46 GMT Content-Range: bytes 0-1560163/1560164 Content-Length: 1560164 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data Size: 1560164 Md5: 379ddec6d7d6e118bd7565d1c83dbb90 Sha1: 16becb1b44f3f35b0fa239668901338cba6eff06 Sha256: 5635dd2c6c23dfdc3e4eb82afc4231a27e8522ec332b8568a3fc7ae8755fec94
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6423 Expires: Sun, 25 Sep 2022 04:14:49 GMT Date: Sun, 25 Sep 2022 02:27:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7038cca95198779d8bb479045eb56652 Sha1: e9dcf9451e849f4d55b0909b33a51bd0b1a35296 Sha256: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6423 Expires: Sun, 25 Sep 2022 04:14:49 GMT Date: Sun, 25 Sep 2022 02:27:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7038cca95198779d8bb479045eb56652 Sha1: e9dcf9451e849f4d55b0909b33a51bd0b1a35296 Sha256: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6423 Expires: Sun, 25 Sep 2022 04:14:49 GMT Date: Sun, 25 Sep 2022 02:27:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7038cca95198779d8bb479045eb56652 Sha1: e9dcf9451e849f4d55b0909b33a51bd0b1a35296 Sha256: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6423 Expires: Sun, 25 Sep 2022 04:14:49 GMT Date: Sun, 25 Sep 2022 02:27:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7038cca95198779d8bb479045eb56652 Sha1: e9dcf9451e849f4d55b0909b33a51bd0b1a35296 Sha256: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6423 Expires: Sun, 25 Sep 2022 04:14:49 GMT Date: Sun, 25 Sep 2022 02:27:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7038cca95198779d8bb479045eb56652 Sha1: e9dcf9451e849f4d55b0909b33a51bd0b1a35296 Sha256: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 9f381d59d2e4b086d43d784d7660e27f6f7760dc2b4eb9beee4b6e94801cb6db 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4723 x-amzn-requestid: 4be5e73a-e648-40a4-8566-cb3417e5843b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Y-_EKHYcoAMFgMw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-632f7880-4682134275162910149d09ec;Sampled=0 x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:04 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 67JgCuzx90IROr0JQJq0jbsntmkbD0dReobbS4G1V6pPD22qOosLrg== via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google date: Sat, 24 Sep 2022 22:15:14 GMT age: 15152 etag: "8324b383c89771a2b1155ec6d069bf5a47338acd" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4723 Md5: 3d35df1f57d0736995615b0d8f50b8a3 Sha1: 8324b383c89771a2b1155ec6d069bf5a47338acd Sha256: 9f381d59d2e4b086d43d784d7660e27f6f7760dc2b4eb9beee4b6e94801cb6db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 12826 x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YfVRNFP-oAMFgrA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0 x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA== via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google date: Sat, 24 Sep 2022 21:37:19 GMT age: 17427 etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data Size: 12826 Md5: b3a72e81317074689a71dac7059e4b6a Sha1: b6d56333d7f1ea7ddc8838d84de498ff913c5464 Sha256: e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb009e5a9-dad2-4c57-9637-c9930d6b3f05.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 8096b89e6b868d9e40b5c31b80309472695b9cd085cca2f872159f4e35056c08 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6671 x-amzn-requestid: c99d94f4-5a09-44d2-a2ce-0daac62d2087 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Y-_EAHQ2oAMFaqA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-632f787f-7fbe302d3e7587263e61cb0d;Sampled=0 x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:03 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: FuhBG1wzZ7q3UXGwFA32yLn9Rn4DzcpPODW1HivGDtB-2-9F4Q3gBA== via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google date: Sat, 24 Sep 2022 21:37:05 GMT etag: "752c2278004a98fcfacf4c3f16470d610ffd2daa" age: 17441 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6671 Md5: 328516d7184ca4b4f6e50bf895b9bce0 Sha1: 752c2278004a98fcfacf4c3f16470d610ffd2daa Sha256: 8096b89e6b868d9e40b5c31b80309472695b9cd085cca2f872159f4e35056c08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30df3bb6-8eae-49ae-ba75-f6dd462463ac.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 9b4878cf451b7bc5c7467d1e35e2fa12f54e516c878dd54d0293a4ef4947ba5b 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4237 x-amzn-requestid: 9e56dfd3-fa01-4f17-88fd-524f6385b515 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YpOJQHZDoAMFayQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6326c3d4-41be4896776c43940ec21f10;Sampled=0 x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 8nuwiFa5MQt6e3rfHwJlWcVejM-299WEDNFiscddW4iOVQjazIabtQ== via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google date: Sat, 24 Sep 2022 21:39:27 GMT age: 17299 etag: "2d97861b35e3d0ffe6a614037e4ff7946018b4ef" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4237 Md5: 8abddb2cad9c262667f358ecb9b084ae Sha1: 2d97861b35e3d0ffe6a614037e4ff7946018b4ef Sha256: 9b4878cf451b7bc5c7467d1e35e2fa12f54e516c878dd54d0293a4ef4947ba5b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8914 x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Y-_EUHqJoAMF7MQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0 x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: kdF6En2vbJhRH1bkYMOuNm5XOIsT1qs3FE281N1SKn1FbyW-oNZsEw== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google date: Sat, 24 Sep 2022 21:37:06 GMT etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5" age: 17440 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8914 Md5: dfdacc8edea3c24dad020d7e9c11b3f4 Sha1: 2b6e37596e88b62f288dc8e8c937fd904fae28d5 Sha256: 338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3056f6d6-1a08-46ac-94a1-eb08e1b784e1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: ee3839246f3bada3e3190c240c8ac64d8012a87c062c5e006ed80a7edcd773a5 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7404 x-amzn-requestid: ef623ade-f397-40a9-b88d-0394f22a8d8b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YpOJPGYyoAMFVEA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6326c3d4-2da73ceb54b36ade5bf4ce1a;Sampled=0 x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: jqPyyJr0H9dHTBuQb9Z8bNBwMXhBz5pz09u_j1R0Qpp-iGUGFXm0VQ== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google date: Sat, 24 Sep 2022 02:52:44 GMT age: 84902 etag: "3a69c08b4d25d1dae1abbabd103d6d295a2f5425" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7404 Md5: 9bbdad67489e993cebd23ffb04ebd02c Sha1: 3a69c08b4d25d1dae1abbabd103d6d295a2f5425 Sha256: ee3839246f3bada3e3190c240c8ac64d8012a87c062c5e006ed80a7edcd773a5

                                        
                                            GET /c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=3098&click_id=e2d0cead59a1392014c13dc325e0dd05&j1=1 HTTP/1.1 

                                        
                                            
Host: lavavq.amazlngdate.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         52.19.101.114

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html; charset=utf-8

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:44 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Set-Cookie: unique_id=632fb3f30004dc15; Path=/; Expires=Thu, 24 Nov 2022 02:27:44 GMT
unique_id2=632fb3f30006a59e; Path=/; Expires=Sat, 24 Dec 2022 02:27:44 GMT
632fb3f30006a59e_c=1; Path=/; Expires=Sat, 24 Dec 2022 02:27:44 GMT
ref_token=120749_152840; Path=/; Expires=Tue, 25 Oct 2022 02:27:44 GMT
impression=; Path=/; Expires=Sun, 25 Sep 2022 02:27:44 GMT
632fb3f30006a59e_sl=[274421]; Path=/; Expires=Sun, 09 Oct 2022 02:27:44 GMT 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (814)

                                                Size:   5608

                                                Md5:    6ba0bd550ee1af75bb88827f689534ae

                                                Sha1:   908bc5a1e786aed0c40db622b061653c4290a1b8

                                                Sha256: e7573543240ebbe18cab4feb3b87296be7956768cec5c7d57cacc2e60bc16217

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "3E2AF0DE9417181121AD7F17EA3C4921AFBE84C9BEB5F2BD5287C3CEC3D4A9C6" 

                                        
                                            
Last-Modified: Thu, 22 Sep 2022 13:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=7355 

                                        
                                            
Expires: Sun, 25 Sep 2022 04:30:19 GMT 

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:44 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    999cba3a77eef9ee50947f38c9ee6c5d

                                                Sha1:   818310602249f4512f252835c27e62914f39d584

                                                Sha256: 3e2af0de9417181121ad7f17ea3c4921afbe84c9beb5f2bd5287c3cec3d4a9c6

                                        
                                            GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30 HTTP/1.1 

                                        
                                            
Host: getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.5.221

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-location: global-recs.php 

                                        
                                            
tcn: choice 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
status: 200 OK 

                                        
                                            
x-source: Pocket 

                                        
                                            
pragma: cache 

                                        
                                            
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE" 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-pop: SEA73-P2 

                                        
                                            
x-amz-cf-id: pWBWTJTGTP9AHE6gHVuPezmWyx57DOgnDaqam69L-j7haK3DBvDg9Q== 

                                        
                                            
content-encoding: gzip 

                                        
                                            
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 25 Sep 2022 02:16:03 GMT 

                                        
                                            
age: 701 

                                        
                                            
content-length: 38343 

                                        
                                            
cache-control: s-maxage=900,public,max-age=3600 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators

                                                Size:   38343

                                                Md5:    d3c514753da81081f65096eb4d8ef1ff

                                                Sha1:   4a11efbe70a1078bcfa25c4a7fdeb974793934f2

                                                Sha256: 578c578f2e8da240b423e8fcdf5394e1ed55a38a8aecadfed66f0a03146e8828

                                        
                                            GET /landings/274421/1662542857/css/popup.css?1662542858 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://lavavq.amazlngdate.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
x-amz-id-2: ddOYh3YdFDGiVPOjyqGBM6wAh8Ol6RMtsu1ZgKmNI3cqdW76VZ2rZo3ZhQD9e+O7IK8l7DK9suA= 

                                        
                                            
x-amz-request-id: GWA5KF29YZYFYQCZ 

                                        
                                            
Last-Modified: Wed, 07 Sep 2022 09:27:41 GMT 

                                        
                                            
ETag: "5a61d45142ce5764a2b36dc75343fcd5" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:44 GMT 

                                        
                                            
Content-Length: 635 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  assembler source, ASCII text

                                                Size:   635

                                                Md5:    4ed05a608a8ec589e8aa5b040f7bb878

                                                Sha1:   c58649a707ba64aed8b285d3be9f6b06a85ea6cb

                                                Sha256: bcc5d06c7b102eed1477b062020dc4414e4f6c4f9e390e3e67fa675a5f0fa363

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.55.115

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/json

                                        

                                        
                                            
Content-Length: 939 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert 

                                        
                                            
Cache-Control: max-age=3600 

                                        
                                            
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
Date: Sun, 25 Sep 2022 01:59:01 GMT 

                                        
                                            
X-Content-Type-Options: nosniff 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: 5QZe7YeL8iJmFthAWqHJ89_v5_2DkvzVgVYMWg6bI5ckRS0o0HzK_Q== 

                                        
                                            
Age: 1723 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    2d12f67fe57a87e7366b662d153a5582

                                                Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1

                                                Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

                                        
                                            GET /landings/274421/1662542857/js/function.js?1662542858 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://lavavq.amazlngdate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: liab8UeBT3W3AT/bneG+cvmNHhaVKJM92+VcsIgMdpVEokY4a37n6tu+RBvFC1t05GVMs62UBbc= 

                                        
                                            
x-amz-request-id: GWA0T25S86MZ70A0 

                                        
                                            
Last-Modified: Wed, 07 Sep 2022 09:27:41 GMT 

                                        
                                            
ETag: "5da2c51949f2a873bf0091a104658e72" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:44 GMT 

                                        
                                            
Content-Length: 688 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   688

                                                Md5:    ba7deda1bcbc1e2d5c127678e05b71a1

                                                Sha1:   4707fef7ab43a522b3cf7f5c0db4c148c5a43701

                                                Sha256: 303187afb2cbbbf6095724df7eaf8c7967bb019dc17e1224d9e2366ac7f381c5

                                        
                                            GET /landings/274421/1662542857/js/translates.js?1662542858 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://lavavq.amazlngdate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: OXFYZHT4YvUk+KUMr0N0CI8d2yUOUNvt3MAP3XcTOYbm6pr57SAq1+qbQbaoEwU/jwUIaqSBp88= 

                                        
                                            
x-amz-request-id: GWAAPT6A8SYRBME3 

                                        
                                            
Last-Modified: Wed, 07 Sep 2022 09:27:41 GMT 

                                        
                                            
ETag: "07cee83d1be10af1ca991d1c60abd6e2" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:44 GMT 

                                        
                                            
Content-Length: 10048 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text

                                                Size:   10048

                                                Md5:    f54e5331f7d782d475a884cce1db33fd

                                                Sha1:   d5145e3ebcab1a21d4cdff8632c9901db93b962f

                                                Sha256: 73c4aa8abb0450fbb7eef37c3afc3d6f11f0c2bc3f0a101323364b59298e4e2f

                                        
                                            GET /landings/274421/1662542857/images/logo-white.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://lavavq.amazlngdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: 7ZAH5KV1T5E4tllgJ/I7XKq9d8Ul4Vvef6udhyYU5AwFMnU34q779ftJ47G7tZ/bHU40y4JvOWo= 

                                        
                                            
x-amz-request-id: K9QTE3PTCDQ46836 

                                        
                                            
Last-Modified: Wed, 07 Sep 2022 09:27:40 GMT 

                                        
                                            
ETag: "27a8fdccc08741c52422bd4852f87c3a" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 9461 

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:44 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 300 x 124, 8-bit colormap, non-interlaced\012- data

                                                Size:   9461

                                                Md5:    27a8fdccc08741c52422bd4852f87c3a

                                                Sha1:   b103730d95829f64c0746b97a85e0ada4f6c18a2

                                                Sha256: 7afbc6f7cb728a9b4dfd7791a8207c60bdd255ea2f00ba12880bee15f7fbdff0

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:44 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    cfbe772bfdcc656e94ceed53256863ca

                                                Sha1:   34055ed3761ab4b69af25a2cb70ca7a337a9f79b

                                                Sha256: 7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722

                                        
                                            GET /css2?family=Roboto:wght@300;400;700&display=swap HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         216.58.211.10

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
expires: Sun, 25 Sep 2022 02:27:44 GMT 

                                        
                                            
date: Sun, 25 Sep 2022 02:27:44 GMT 

                                        
                                            
cache-control: private, max-age=86400 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   1131

                                                Md5:    73faf0d34b62e963861ebd4221b82b77

                                                Sha1:   84bc8392d9ba72e8c097a51cf40464da9251c8d4

                                                Sha256: 722287a3bb2b47d7e39c09a0f23ea0b4a8b101b90420721667f35595daf58b99

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:45 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    da681c2f112645651e5b32be2cfcd052

                                                Sha1:   2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946

                                                Sha256: 302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7

                                        
                                            GET /css2?family=Ubuntu:wght@400;700&display=swap HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         216.58.211.10

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
expires: Sun, 25 Sep 2022 02:27:44 GMT 

                                        
                                            
date: Sun, 25 Sep 2022 02:27:44 GMT 

                                        
                                            
cache-control: private, max-age=86400 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   16285

                                                Md5:    f2e37acf22ee9ac97fda17ebfce01be9

                                                Sha1:   5e12d8f62cbd976695cc2d1fab2b06638e5cd6e8

                                                Sha256: 83d2e5cc4c1a635bb277843c8bd36dcba921f39307320b8e64048ac805f0d84a

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:45 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    da681c2f112645651e5b32be2cfcd052

                                                Sha1:   2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946

                                                Sha256: 302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 2977 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:45 GMT 

                                        
                                            
Last-Modified: Sun, 25 Sep 2022 01:38:08 GMT 

                                        
                                            
Server: ECS (ska/F719) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    a7809de115ea73f8b61f3d20a9978493

                                                Sha1:   01fc65a2b694d7aadd5204d21801e87b2b55b73e

                                                Sha256: 72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52

                                        
                                            GET /landings/274421/1662542857/images/2.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://lavavq.amazlngdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: gp+KW+XsF1eQMR6ru1ICTiI9NPOyrlTud/NqgB36ZFfadebh4ucJpcBIoPjYE07UBAv8h11Qnhg= 

                                        
                                            
x-amz-request-id: S7YEGPE37SG28KHD 

                                        
                                            
Last-Modified: Wed, 07 Sep 2022 09:27:40 GMT 

                                        
                                            
ETag: "3b8b455b24c71ae1f928266241e9517e" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 102832 

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:46 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 960x1280, components 3\012- data

                                                Size:   102832

                                                Md5:    3b8b455b24c71ae1f928266241e9517e

                                                Sha1:   8b98ca60c92b83e039c3b996f090883ed8b7ca75

                                                Sha256: c8d05f7eda85f68f0a08307eeee4e481282fda95570dd53f300b8aadd4f504f6

                                        
                                            GET /landings/274421/1662542857/images/1.mp4 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Range: bytes=0- 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://lavavq.amazlngdate.com/ 

                                        
                                            
Sec-Fetch-Dest: video 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.107

                                        
                                            HTTP/1.1 206 Partial Content 

                                        
                                            
Content-Type: video/mp4

                                        

                                        
                                            
x-amz-id-2: GbYGyun+5RA0M2MnBCzcNmNAY0OKRDXOfebKxarP9zvd0eRe3feVuwlHbyhcFSd2aPFHcgzRBqA= 

                                        
                                            
x-amz-request-id: FWGFKQ02G78VHADJ 

                                        
                                            
Last-Modified: Wed, 07 Sep 2022 09:27:40 GMT 

                                        
                                            
ETag: "379ddec6d7d6e118bd7565d1c83dbb90" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:46 GMT 

                                        
                                            
Content-Range: bytes 0-1560163/1560164 

                                        
                                            
Content-Length: 1560164 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data

                                                Size:   1560164

                                                Md5:    379ddec6d7d6e118bd7565d1c83dbb90

                                                Sha1:   16becb1b44f3f35b0fa239668901338cba6eff06

                                                Sha256: 5635dd2c6c23dfdc3e4eb82afc4231a27e8522ec332b8568a3fc7ae8755fec94

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" 

                                        
                                            
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6423 

                                        
                                            
Expires: Sun, 25 Sep 2022 04:14:49 GMT 

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:46 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    7038cca95198779d8bb479045eb56652

                                                Sha1:   e9dcf9451e849f4d55b0909b33a51bd0b1a35296

                                                Sha256: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" 

                                        
                                            
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6423 

                                        
                                            
Expires: Sun, 25 Sep 2022 04:14:49 GMT 

                                        
                                            
Date: Sun, 25 Sep 2022 02:27:46 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    7038cca95198779d8bb479045eb56652

                                                Sha1:   e9dcf9451e849f4d55b0909b33a51bd0b1a35296

                                                Sha256: 0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 4723 

                                        
                                            
x-amzn-requestid: 4be5e73a-e648-40a4-8566-cb3417e5843b 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: Y-_EKHYcoAMFgMw= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-632f7880-4682134275162910149d09ec;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:04 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: 67JgCuzx90IROr0JQJq0jbsntmkbD0dReobbS4G1V6pPD22qOosLrg== 

                                        
                                            
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 24 Sep 2022 22:15:14 GMT 

                                        
                                            
age: 15152 

                                        
                                            
etag: "8324b383c89771a2b1155ec6d069bf5a47338acd" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4723

                                                Md5:    3d35df1f57d0736995615b0d8f50b8a3

                                                Sha1:   8324b383c89771a2b1155ec6d069bf5a47338acd

                                                Sha256: 9f381d59d2e4b086d43d784d7660e27f6f7760dc2b4eb9beee4b6e94801cb6db

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb009e5a9-dad2-4c57-9637-c9930d6b3f05.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 6671 

                                        
                                            
x-amzn-requestid: c99d94f4-5a09-44d2-a2ce-0daac62d2087 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: Y-_EAHQ2oAMFaqA= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-632f787f-7fbe302d3e7587263e61cb0d;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:03 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: FuhBG1wzZ7q3UXGwFA32yLn9Rn4DzcpPODW1HivGDtB-2-9F4Q3gBA== 

                                        
                                            
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 24 Sep 2022 21:37:05 GMT 

                                        
                                            
etag: "752c2278004a98fcfacf4c3f16470d610ffd2daa" 

                                        
                                            
age: 17441 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   6671

                                                Md5:    328516d7184ca4b4f6e50bf895b9bce0

                                                Sha1:   752c2278004a98fcfacf4c3f16470d610ffd2daa

                                                Sha256: 8096b89e6b868d9e40b5c31b80309472695b9cd085cca2f872159f4e35056c08

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8914 

                                        
                                            
x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: Y-_EUHqJoAMF7MQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: kdF6En2vbJhRH1bkYMOuNm5XOIsT1qs3FE281N1SKn1FbyW-oNZsEw== 

                                        
                                            
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 24 Sep 2022 21:37:06 GMT 

                                        
                                            
etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5" 

                                        
                                            
age: 17440 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8914

                                                Md5:    dfdacc8edea3c24dad020d7e9c11b3f4

                                                Sha1:   2b6e37596e88b62f288dc8e8c937fd904fae28d5

                                                Sha256: 338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff

URL	lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1=152840&s2=1396495&s3=3098&click_id=e2d0cead59a1392014c13dc325e0dd05&j1=1
IP	52.19.101.114 (Ireland)
ASN	#16509 AMAZON-02
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-09-25 02:27:55 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	2
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (13)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 52.19.101.114

Last 5 reports on ASN: AMAZON-02

Last 5 reports on domain: amazlngdate.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (18)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (44)

Overview

Domain Summary (13)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 52.19.101.114

Last 5 reports on ASN: AMAZON-02

Last 5 reports on domain: amazlngdate.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (18)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (44)

Network Intrusion Detection Systems