urlquery - report: erasmus-lean.eu/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
fonts.gstatic.com (2)	0	2014-09-09 00:40:21 UTC	2022-11-26 10:10:14 UTC	216.58.207.195	Domain (gstatic.com) ranked at: 540
www.gstatic.com (2)	0	2016-07-26 09:37:06 UTC	2022-11-26 09:57:59 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
r3.o.lencr.org (4)	344	No data	No data	23.36.77.32
content-signature-2.cdn.mozilla.net (1)	1152	No data	No data	34.160.144.191
jqkkq.excelientdates.net (5)	0	No data	No data	63.32.216.166	Unknown ranking
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-11-26 05:33:20 UTC	34.102.187.140
cdn-dimi.akamaized.net (38)	0	No data	No data	184.31.15.67	Domain (akamaized.net) ranked at: 280
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2020-05-03 10:09:39 UTC	54.69.181.45
ocsp.pki.goog (8)	175	2018-07-01 06:43:07 UTC	2020-05-02 20:58:16 UTC	142.250.74.3
img-getpocket.cdn.mozilla.net (6)	1631	2018-06-21 23:36:00 UTC	2020-02-19 04:43:25 UTC	34.120.237.76
fonts.googleapis.com (2)	8877	2013-06-10 20:14:26 UTC	2022-11-26 07:22:52 UTC	142.250.74.10
ocsp.digicert.com (2)	86	2012-05-21 07:02:23 UTC	2020-05-02 20:58:10 UTC	93.184.220.29
erasmus-lean.eu (7)	0	2018-05-05 20:02:08 UTC	2022-11-26 06:41:28 UTC	104.21.23.203	Unknown ranking
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-11-26 05:33:16 UTC	34.117.237.239

Scan Date	Severity	Indicator	Comment
2022-11-26	2	jqkkq.excelientdates.net/ortb	Phishing
2022-11-26	2	jqkkq.excelientdates.net/js/pushjs/1.0.0/utils.js	Phishing
2022-11-26	2	jqkkq.excelientdates.net/js/service-worker.js	Phishing
2022-11-26	2	jqkkq.excelientdates.net/js/pushjs/1.0.0/subscriber.js	Phishing

Date	UQ / IDS / BL	URL	IP
2022-12-31 14:42:29 +0000	0 - 0 - 4	erasmus-lean.eu/	104.21.23.203
2022-12-02 04:41:42 +0000	0 - 0 - 4	erasmus-lean.eu/	104.21.23.203
2022-12-01 00:41:50 +0000	0 - 0 - 4	erasmus-lean.eu/	104.21.23.203
2022-11-26 22:41:55 +0000	0 - 0 - 4	erasmus-lean.eu/	104.21.23.203
2022-11-26 06:41:46 +0000	0 - 0 - 5	erasmus-lean.eu/	104.21.23.203

Date	UQ / IDS / BL	URL	IP
2023-02-06 02:45:30 +0000	0 - 1 - 0	cdn.discordapp.com/attachments/83342746793882 (...)	162.159.133.233
2023-02-06 02:45:28 +0000	0 - 1 - 0	cdn.discordapp.com/attachments/99161285258459 (...)	162.159.135.233
2023-02-06 02:44:45 +0000	0 - 0 - 11	crackdare.com/http:/crackdare.com/wp-includes (...)	188.114.97.1
2023-02-06 02:44:07 +0000	0 - 2 - 2	cdn.discordapp.com/attachments/10681005304984 (...)	162.159.134.233
2023-02-06 02:43:20 +0000	2 - 0 - 12	ntutdc1995.com/wp-content/plugins/advanced-fl (...)	104.26.0.51

Date	UQ / IDS / BL	URL	IP
2023-01-12 06:42:36 +0000	0 - 0 - 3	erasmus-lean.eu/	172.67.213.61
2022-12-31 14:42:29 +0000	0 - 0 - 4	erasmus-lean.eu/	104.21.23.203
2022-12-02 04:41:42 +0000	0 - 0 - 4	erasmus-lean.eu/	104.21.23.203
2022-12-01 22:44:33 +0000	0 - 0 - 4	erasmus-lean.eu/	172.67.213.61
2022-12-01 00:41:50 +0000	0 - 0 - 4	erasmus-lean.eu/	104.21.23.203

Date	UQ / IDS / BL	URL	IP
2022-11-28 17:48:40 +0000	0 - 0 - 3	qgvwam.excelientdates.net/?utm_source=da57dc5 (...)	63.32.216.166
2022-11-28 14:37:04 +0000	0 - 0 - 1	to-get-laid.com/tds/rsl?tdsId=s7889mak_r&tds_ (...)	52.57.39.237
2022-11-28 13:48:52 +0000	0 - 0 - 3	nvlkjd.excelientdates.net/?utm_source=da57dc5 (...)	63.32.216.166
2022-11-28 09:14:49 +0000	0 - 0 - 3	tennis-elite.de/blog/142/50542163.htm	172.67.183.118
2022-11-27 22:25:34 +0000	0 - 0 - 4	nrgzgb.impreslvedate.com/c/da57dc555e50572d	52.19.101.114

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F" Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5430 Expires: Sun, 27 Nov 2022 00:12:14 GMT Date: Sat, 26 Nov 2022 22:41:44 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a9f1d4d98705c281fed3b60343463200 Sha1: db6f8aa98d2eda4e5473b116a222c3055568bb78 Sha256: 164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5127 Cache-Control: max-age=134091 Date: Sat, 26 Nov 2022 22:41:44 GMT Etag: "6381eaec-1d7" Expires: Mon, 28 Nov 2022 11:56:35 GMT Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT Server: ECS (ska/F718) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 15b59d5e62caedb4bec3ba6724906c1e Sha1: 960f801e608a56fdd11449f4face29f62cad2b21 Sha256: 8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2" Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6280 Expires: Sun, 27 Nov 2022 00:26:24 GMT Date: Sat, 26 Nov 2022 22:41:44 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 260e9998c20d831b66f1029c8f47aac9 Sha1: 716d630f647c54dc69a7f9c63a6cac294b3df7f7 Sha256: c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 26 Nov 2022 22:17:33 GMT cache-control: public,max-age=3600 age: 1451 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 4d7e4eed097b9c4e5d509419f1cfc85a Sha1: 290bb3d428a7c6330e2e3d73a952b16f820896c8 Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET / HTTP/1.1 Host: erasmus-lean.eu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: erasmus-lean.eu/ FQDN: erasmus-lean.eu IP: 104.21.23.203 HASH: 2f5441e124dec55746ee280cb64bf47ca6f1544d9777b692d4b66d1a952de30f 104.21.23.203 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Sat, 26 Nov 2022 22:41:44 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R7Qt%2FMiSEPsQ9L4CsxO1TWLmzHXpeCcbDKURgeaKgBYhd23g90CJvx9qXk9wZ9oGf2LdeH8ZWW2yAuSN2nMM7eA%2BLw%2Fcj5ynq%2BVOVDGk2R%2FDu4APS%2BLgy7aO%2FeUt%2F7kBdWY%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7706221abb4db524-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (48593) Size: 42115 Md5: 68696453e2df314caa216a095a0d05fb Sha1: 4600d36d957474642c8f63d134a220404926fee9 Sha256: 2f5441e124dec55746ee280cb64bf47ca6f1544d9777b692d4b66d1a952de30f
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: +pjkQCuK+5scuQEk/+TzN35RJ6icKNbu7Sa0BR/55GoT2jyy8V0QZBwqcTMwXfyxbdtmw508Ng4= x-amz-request-id: 7NXRCXR18XNSNEDT content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 26 Nov 2022 21:44:23 GMT age: 3441 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Sat, 26 Nov 2022 22:41:44 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /templates/crumbs/wp-content/themes/crumbs/assets/css/font-awesome.min.css HTTP/1.1 Host: erasmus-lean.eu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://erasmus-lean.eu/	URL: erasmus-lean.eu/templates/crumbs/wp-content/themes/crum (...) FQDN: erasmus-lean.eu IP: 104.21.23.203 HASH: 717be8b870f8b65bea0ae9bcb34180e43b8187dad2e23e30122a7df81b6a03c6 104.21.23.203 HTTP/1.1 200 OK Content-Type: text/css Date: Sat, 26 Nov 2022 22:41:44 GMT Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 04 Dec 2018 12:48:41 GMT Vary: Accept-Encoding ETag: W/"5c0677a9-791a" Content-Encoding: gzip Cache-Control: max-age=14400 CF-Cache-Status: REVALIDATED Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wYPfncxyES%2B79zgLHsIgY9%2B0c%2B3m6mNuUd2Dn47DnAq1mm2N4UkrhyTNPQyjKLV%2BAn9RiB8ZwWL3pww0w8DR1MOfTob9fFARY9uNgmchRCsd7MILSx%2Bmymy6TVpJ8pz8va4%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7706221d9e7ab524-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: ASCII text, with very long lines (30839) Size: 7953 Md5: 562dfb9750f196f924d9f733043f832a Sha1: e4b67d67c473a71116d865a8b4b0b277df46c74e Sha256: 717be8b870f8b65bea0ae9bcb34180e43b8187dad2e23e30122a7df81b6a03c6
GET /templates/crumbs/wp-content/themes/crumbs/style.css HTTP/1.1 Host: erasmus-lean.eu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://erasmus-lean.eu/	URL: erasmus-lean.eu/templates/crumbs/wp-content/themes/crum (...) FQDN: erasmus-lean.eu IP: 104.21.23.203 HASH: 9c468f14f4aeb0ca9fa69f0ad3f101003b4df7a224fd9a2138239262e2e7dfbe 104.21.23.203 HTTP/1.1 200 OK Content-Type: text/css Date: Sat, 26 Nov 2022 22:41:44 GMT Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Wed, 30 May 2018 16:24:23 GMT Vary: Accept-Encoding ETag: W/"5b0ed037-47bf" Content-Encoding: gzip Cache-Control: max-age=14400 CF-Cache-Status: REVALIDATED Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=To4IvjSCGhhOmZn5fPHTDyPtxmQD5NURo0uoCy21bT0o%2F8rMtv5WWHeeFSNeKxSrfPaktP%2Bhy9Frfcy6pqYfDCWS2JVx3dWLXPsA6aeEYZf5fBNX7Vjxo5yezMpPXAaboTk%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7706221dafd7b511-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 5210 Md5: ac9180e0d28262fb33fa82bded385483 Sha1: b6b842d17264e2a2f8db259ef44f67059d2e3588 Sha256: 9c468f14f4aeb0ca9fa69f0ad3f101003b4df7a224fd9a2138239262e2e7dfbe
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 26 Nov 2022 22:41:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 5af61422c4eaa1b995ec63e463abda26 Sha1: db75634681ed688840773ce828c169ac9da7d131 Sha256: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
GET /content/photos/1/15/5a/78/db/785adb623e83991606545c65479a0e35/hon-onanerar-och-cums-ung-naken-slampa-marockansk-slampa-tv%C3%A5-mognar-f%C3%B6r-mycket-sperma-i-munnen-gratis-chattk%C3%A4rlek.jpg HTTP/1.1 Host: erasmus-lean.eu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://erasmus-lean.eu/	URL: erasmus-lean.eu/content/photos/1/15/5a/78/db/785adb623e (...) FQDN: erasmus-lean.eu IP: 104.21.23.203 HASH: b3ebf31682d6b6bb55f3567a3de23f0a69648a5136b56eb379bfeb02860e34f7 104.21.23.203 HTTP/1.1 200 OK Content-Type: image/jpeg Date: Sat, 26 Nov 2022 22:41:44 GMT Content-Length: 7790 Connection: keep-alive Cache-Control: public, max-age=10368000 Expires: Sat, 17 Dec 2022 18:28:29 GMT Last-Modified: Sat, 06 Jan 2018 08:51:59 GMT Access-Control-Allow-Origin: * X-Frame-Options: sameorigin Age: 295201 CF-Cache-Status: HIT Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qJHZpQvZUPREzX0DNJZ2Huvql2D%2FlDUpf3%2BBY95uLlL1FJApcLWQiOmigFgl3GUFhRYVt9W0p6BVwrhKgHlf63CyXTEad2EPSFPsUKistOoXEGawH0kyHyFfI2ffiLApzf8%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7706221e792bb511-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 180x135, components 3\012- data Size: 7790 Md5: b845208386f1b1763e8f8f50774934e8 Sha1: ef7a11081166b719b84246341ab789bf533d9ab1 Sha256: b3ebf31682d6b6bb55f3567a3de23f0a69648a5136b56eb379bfeb02860e34f7
GET /content/photos/1/15/7b/6d/c7/6d7bc7355cbe59ecdd77a052ff0441e6/ledsagare-hitta-hur-man-onanerar-flickor-av-horor-sidor-med-kvinnliga-eskorter-franska-porrfilmer-eskort-flicka-avallon.jpg HTTP/1.1 Host: erasmus-lean.eu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://erasmus-lean.eu/	URL: erasmus-lean.eu/content/photos/1/15/7b/6d/c7/6d7bc7355c (...) FQDN: erasmus-lean.eu IP: 104.21.23.203 HASH: 61aab88275c9ee06ee5a103e639e8a09e5081120889a469d344a48ee84786d0e 104.21.23.203 HTTP/1.1 200 OK Content-Type: image/jpeg Date: Sat, 26 Nov 2022 22:41:44 GMT Content-Length: 7484 Connection: keep-alive Cache-Control: public, max-age=10368000 Expires: Sat, 25 Mar 2023 00:41:35 GMT Last-Modified: Wed, 19 Oct 2016 00:07:46 GMT Access-Control-Allow-Origin: * Age: 165609 CF-Cache-Status: HIT Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pZxdqYPOCZbIafPlusnIBg8ef5jJKxkhNLOQDg9u4KaS8cEEbcdboUjTE3y0lZ%2FZaEHUw%2FcvLyph8kkSjbef1B0x3i%2F1zgwODH5NpRjg%2BW4EwJPJCS1%2FKorzc5l9wTW%2Fo%2B8%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7706221e7f93b524-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 180x135, components 3\012- data Size: 7484 Md5: 2827dfd2f3237d23b33b4dc212d2022b Sha1: 647001ad4676009e8e39a5843659e6f400986d7e Sha256: 61aab88275c9ee06ee5a103e639e8a09e5081120889a469d344a48ee84786d0e
GET /content/photos/1/15/69/d4/10/d46910a5c9589659e26d3f7d79deb5a6/gratis-porrfilmer-av-svarta-slampor-xxx-b%C3%A4sta-sexposition-f%C3%B6r-sexig-kvinna-och-naken-ton%C3%A5rsfoton-fr%C3%A5n-kashmir-silikon-sexdocka-sexhistorien.jpg HTTP/1.1 Host: erasmus-lean.eu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://erasmus-lean.eu/	URL: erasmus-lean.eu/content/photos/1/15/69/d4/10/d46910a5c9 (...) FQDN: erasmus-lean.eu IP: 104.21.23.203 HASH: 433b3d08afe811c98aea7eee90df33be346b47ef25f7c6daad526b338280c046 104.21.23.203 HTTP/1.1 200 OK Content-Type: image/jpeg Date: Sat, 26 Nov 2022 22:41:44 GMT Content-Length: 6143 Connection: keep-alive Cache-Control: public, max-age=10368000 Expires: Fri, 25 Nov 2022 17:41:27 GMT Last-Modified: Fri, 14 Oct 2016 07:14:13 GMT Access-Control-Allow-Origin: * x-frame-options: sameorigin Age: 165609 CF-Cache-Status: HIT Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dd2%2FHNEtJwo4aPFLGAjiH1bgXZJ4Kx32NZzsRdLfDM6Rq1niUvqshxO4JopAu31ALgh8RIX8j%2BQAGdo8QYbYx6swoP7zLh0cLVxcgkKMm254%2FI%2FxFxO%2FOMkWxrxX6zMo2xg%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7706221e7dbab527-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 180x135, components 3\012- data Size: 6143 Md5: 502256a57a339bfd40638dc45cca8b42 Sha1: 0653294856883c38a0a58b58daa2ff8af10a67be Sha256: 433b3d08afe811c98aea7eee90df33be346b47ef25f7c6daad526b338280c046
GET /content/photos/1/15/0e/80/f3/800ef3b54ea8c3ff3281aacf1c0c3217/popul%C3%A4ra-swingers-cum-i-munnen-sexkontakt-eindhoven-sn%C3%A4va-fittor-70-talet-italienska-erotiska-filmer-m%C3%B6ter-singlar.jpg HTTP/1.1 Host: erasmus-lean.eu User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://erasmus-lean.eu/	URL: erasmus-lean.eu/content/photos/1/15/0e/80/f3/800ef3b54e (...) FQDN: erasmus-lean.eu IP: 104.21.23.203 HASH: de6cfbac5026721fdacad753d31a101fee6e752b621dab834dbced39841a01cb 104.21.23.203 HTTP/1.1 200 OK Content-Type: image/jpeg Date: Sat, 26 Nov 2022 22:41:44 GMT Content-Length: 5637 Connection: keep-alive Cache-Control: public, max-age=10368000 Expires: Mon, 13 Mar 2023 16:00:55 GMT Last-Modified: Mon, 19 Apr 2021 14:46:57 GMT Access-Control-Allow-Origin: * Age: 136812 CF-Cache-Status: HIT Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wI6uohpB9xt2yAEbRpnd9s8Oj4%2F0DCMBlwWVLR6AflEpSi1WYJbDIpT34kwGn9Ed6uPrYLNieEoJcAnBwCzGgZg%2FQcut2iOXH%2Fraog3jHT4LMl%2BrIgilmZTgvuI%2F0ug%2B0DQ%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7706221e8945b511-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 180x135, components 3\012- data Size: 5637 Md5: de38c47527d42e57007079b5e491b569 Sha1: 3d9254fe98a7a7fef29b799e7ae6fe8620386a01 Sha256: de6cfbac5026721fdacad753d31a101fee6e752b621dab834dbced39841a01cb
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 26 Nov 2022 22:41:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 619fa0039b94697fc8a5bd24f57e8aa2 Sha1: 53a366391a51d625029cc6d32fb4e8b6060990fd Sha256: dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 1e32a32225758dcf4a906c6807debc8d0409467ac9a4d0f1e8bad8afe9635094 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "1E32A32225758DCF4A906C6807DEBC8D0409467AC9A4D0F1E8BAD8AFE9635094" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15640 Expires: Sun, 27 Nov 2022 03:02:24 GMT Date: Sat, 26 Nov 2022 22:41:44 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 86df31df5e233ea6a8ef5823dd5ee0aa Sha1: fde766f527f3c2eb3ad28e84682c8f9540817258 Sha256: 1e32a32225758dcf4a906c6807debc8d0409467ac9a4d0f1e8bad8afe9635094
GET /landings/277113/1669379644/css/style.css?1669379644 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/css/s (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: ea324b86019fee76fb3c06d71b443d16521418246c28a63414c0db2054d527bd 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: Qrg+vAO+SQn+1FbDlmKGStipa+nq8q0wOpIAVk9TxpgWIgOuaL8TTGaV1/0BJ/hQsISS06Z1CV3doDuu8WgOOg== x-amz-request-id: 8ZDE8G65FVY418H9 Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "b0a18d4c0c4e835b4cfd183edd56d8e0" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Length: 2823 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 2823 Md5: c2e5f269277ed4cc86da543794383c7f Sha1: 2d83272d8ce7d52806d4e3916a58389dacfa2fdd Sha256: ea324b86019fee76fb3c06d71b443d16521418246c28a63414c0db2054d527bd
GET /landings/277113/1669379644/css/popup.css?1669379644 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/css/p (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 9ecb28f3218d360ef0eff18d3f79b74ab22a71207c38bcdcf97dfc688abcbc4d 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: +7T2BtiyPa1frrOltKeMS9ZEcYH5yh1PkcTfU4jqALeieU8Zg6R5XJ3ORGg0L7ndb0vvkVBV66g= x-amz-request-id: M55N49SMTT4CKVBE Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "2e00ee9876f735c923694355afe61cd4" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Length: 593 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: assembler source, ASCII text Size: 593 Md5: 9f82e6efd86daeb6f83add3e364356b6 Sha1: 0486a2cfb24ef9c92048934ad4033a04c18e7368 Sha256: 9ecb28f3218d360ef0eff18d3f79b74ab22a71207c38bcdcf97dfc688abcbc4d
GET /landings/277113/1669379644/css/reviews.css?1669379644 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/css/r (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 659aba77e0539ef308a9ca25e0606a64a2f8b107d5f59e2d430f83fb0a5fada0 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: SPKaNj9TAy+Zti7vzq2mIFmVUoUOzmOvWjVcvhRU3MR1Y/2i9hQFkBLtPUZRXwEz/9hHS9o6U+g= x-amz-request-id: 8ZD6N1VFVAS2BEAM Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "57c354e6c648cc2f6540c9164a47b213" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Length: 1145 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 1145 Md5: 8aa2f14f962ada38928836a4872fc64d Sha1: c51b9483dd48a720fd67decf16c3878b469964e0 Sha256: 659aba77e0539ef308a9ca25e0606a64a2f8b107d5f59e2d430f83fb0a5fada0
GET /landings/277113/1669379644/css/timer.css?1669379644 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/css/t (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 7a8ad02cdec0e7e5e49112001431dcba243f148c35e4f1a722733ed400c02a06 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: ZbwFeuBBGe5uBmley+ncyunM1Rom4/QDD2yUjzbi/qcWvRCZKJk4JIlkekgPNWt46Id6qe5/ylU= x-amz-request-id: M55R5KHNQ2BD4S0T Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "9ec38af926ee0d5ce953930a92f3955b" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Length: 706 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 706 Md5: 4c41cb67e8ba22c9dd2bb8077689991a Sha1: 711413f121b71479e1578549b444fd3c37e0b938 Sha256: 7a8ad02cdec0e7e5e49112001431dcba243f148c35e4f1a722733ed400c02a06
GET /landings/277113/1669379644/js/jquery.validate.min.js?1669379644 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/js/jq (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 21e11160c5ba11e65a1c97b0306a9f5dec06c8fd3d4a7d69dd0a80e263577958 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: nVtEQovJdxzoCEz1eVnL5L3kUFwR4jLQAeo6sLjYrm8kJRzt8YHVYbtv0SDls4ISkAkcTaFTgBU= x-amz-request-id: 8ZD45Z5HNYX7SKNQ Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "23d73c6bd6cbea8f06d0cc227896a827" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Length: 7815 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (24228) Size: 7815 Md5: f808399407c6ac496fe830d5deacb05f Sha1: 151039ee8631ce8ff989c5cf795c2feba950a499 Sha256: 21e11160c5ba11e65a1c97b0306a9f5dec06c8fd3d4a7d69dd0a80e263577958
GET /landings/277113/1669379644/js/jquery-2.2.4.min.js?1669379644 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/js/jq (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: UNjoUnxaFIrr1Wx3QucjZKaqvw0mB2k0lY8F+mMSxFXUcy5lbhfijaHTEa/7WWslugcXIyynLl8= x-amz-request-id: 8ZDE2BPJM94DW4HS Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "2f6b11a7e914718e0290410e85366fe9" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Length: 29855 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with very long lines (32065) Size: 29855 Md5: 2fa28552f1ee4e1382ee43930b53afb8 Sha1: 803670da6a35378bf4eb73acc8e72fe4feb5ca30 Sha256: ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494
GET /landings/277113/1669379644/js/title_tanslate.js?1669379644 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/js/ti (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: 7p8dwI+JyY1uh/Yiuxznu8X65HMk+bbh1hc6pboCrhFLwaY4oH3lWw7uQSAeV3amNGW6ABuneV0= x-amz-request-id: M55RHD3DXR7K3MB3 Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "5f373fa5bf21c44b9ad23b70ef96e73d" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Length: 1298 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text, with CRLF line terminators Size: 1298 Md5: 0e212ad4454c941c45c2e57df42c2b4f Sha1: fe9d7c484c2c0d7a6475692ef984c53a06c95406 Sha256: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3
GET /landings/277113/1669379644/js/translates.js?1669379644 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: c7813b66c17adb4e7c356ef0fe6a215bd8f99ba562f5b0f6f37508debd5a1c80 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: s0uWuo6MSA3ZQTPo8Upw+DBKX4VKY7Ap+ny20arDpuCHV9Y9uX2aHuBPZLclTBxB2pXnJ1DwogY= x-amz-request-id: 8ZDDWY686H60S7M0 Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "b9627d60572ae478211faf00a5dbb72e" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Length: 29792 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 29792 Md5: 8942f742642e48afd843395edc850387 Sha1: 5bb7401d364efee9e973b49c14e20a89b0067feb Sha256: c7813b66c17adb4e7c356ef0fe6a215bd8f99ba562f5b0f6f37508debd5a1c80
GET /landings/277113/1669379644/js/timer.js?1669379644 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/js/ti (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 52fe1029652b5a0576cdae96e8278900eb7eee3f81a1ae66ea88129aa6f3f924 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: xgypPKkSMWCJ46InwdpDgljWJHKdYX+G945egqbSPzM8WztodMFsAgEzO/D7qkF/9VAJ79Zd6Uo= x-amz-request-id: M55J0VGE3RDNFZMA Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "3350ef7fbc19030e06999dbb12a2c9b0" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Length: 903 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 903 Md5: 24af8e8209962d30b5e6bb428d28489c Sha1: a00033869880cf83bc81fde7874242d838b59e34 Sha256: 52fe1029652b5a0576cdae96e8278900eb7eee3f81a1ae66ea88129aa6f3f924
GET /landings/277113/1669379644/js/translate-popup-timer.js?1669379644 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d72877ab0432583bfed248050bf32ad260c7b06c4e20a714d07ee65e7948ee0c 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: IYn3yaYEZulJO1wFv2tgPY0aJyVyGi6/omGGYd4vcsAMMHwqV04b4i2wVLkUVYrCAPmzmw/i0fk= x-amz-request-id: 8ZD63TD5MGB7NTT1 Last-Modified: Fri, 25 Nov 2022 12:34:09 GMT ETag: "e87a84612ebce6b2a84f41ef7f6d40b0" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Length: 1080 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text, with CRLF line terminators Size: 1080 Md5: b8caed488bbb08c2414fb1c79c9c8d35 Sha1: 8bda431010a9d7666cd6c2c15f9a3b7f81634ed8 Sha256: d72877ab0432583bfed248050bf32ad260c7b06c4e20a714d07ee65e7948ee0c
GET /landings/277113/1669379644/js/translates-review.js?1669379644 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 51370edca224a86fc7ed3ea85308c34f1527b62420f659594eaf90f46a8c6a9e 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: I3nRYB40LbsMR+7R9eRH0KJUkIGvz6X0HzCwZ03FJiynlhFIvKwiUYIyLvKIiY6r/7b3jSC1QxA= x-amz-request-id: 8ZD8ZG9BDYSWSP49 Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "9061bd0c6ff627d3a43a9e6c125350a7" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Length: 14059 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 14059 Md5: 7e68f840e901ef970f740ce8219ceced Sha1: b6acb9f49a8fc69974bb3af8b94df3812f60850c Sha256: 51370edca224a86fc7ed3ea85308c34f1527b62420f659594eaf90f46a8c6a9e
GET /landings/277113/1669379644/images/shield.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: PAsGTUVXFFboWoMfFzn6iUFD1Bl2xwrJ1ZaucTpqJ2755r+VFkA1JehFRiLrxWB7E+4YjQU3GKw= x-amz-request-id: 7HCFVMFS8SWHEE7E Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1539 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310) Size: 1539 Md5: 0c7a0dfd64cf020cd8a6dc0c3df1dbdf Sha1: f705635388aebebae1223d828c38233067f28ab1 Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 26 Nov 2022 22:08:54 GMT cache-control: public,max-age=3600 age: 1971 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3583 Cache-Control: 'max-age=158059' Date: Sat, 26 Nov 2022 22:41:45 GMT Last-Modified: Sat, 26 Nov 2022 21:42:02 GMT Server: ECS (ska/F718) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: d3df71aab146eefc49acb608796aab63 Sha1: 8401892995193919376dfcd798b09c8261579454 Sha256: a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 26 Nov 2022 22:41:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 619fa0039b94697fc8a5bd24f57e8aa2 Sha1: 53a366391a51d625029cc6d32fb4e8b6060990fd Sha256: dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
GET /landings/277113/1669379644/images/icon-message.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 5b52df3b82f51d9330bf1b66b9683545368475ed5f25362c64feb438fb14bd4f 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: YX79zNvcbLGoZ9Hf6uijAC1kNUHhAY7h+caL/mVjX7ZeA75RsPSs1TlG6eoXW14iNxybgnkmvlo= x-amz-request-id: CDYXJ9GXGDFNK5E2 Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "8f91b2bbb14c2fac1a9be78688501512" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 883 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (779) Size: 883 Md5: 8f91b2bbb14c2fac1a9be78688501512 Sha1: 631540540c371fe7074b5736dce68f10d76700f0 Sha256: 5b52df3b82f51d9330bf1b66b9683545368475ed5f25362c64feb438fb14bd4f
GET /landings/277113/1669379644/images/8-eu.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 4e54bd6e80377744a79017ba800639924466266601a06ca194aaeea290e086fa 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: 8p9qBjS6p7Vz6BD3ZlJCEKZn1RSu1xn96D4+kVxLkG3jZzMRi9NN4Dm5Kwz8BLIVHcyq47BMAEc= x-amz-request-id: 4MJ6N7ZWBC8X8M1F Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "ef40a69fcb961a0677eaf2e29b93aa3a" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 13479 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Size: 13479 Md5: ef40a69fcb961a0677eaf2e29b93aa3a Sha1: eb5624143cf58053ab45715cf155f92fc875aefc Sha256: 4e54bd6e80377744a79017ba800639924466266601a06ca194aaeea290e086fa
GET /landings/277113/1669379644/images/logo_inst3.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d7b396cbae8aa719a1a277fa8fcf7df40f61b50e59b5937fcb347c679c6e990c 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: V1/p5jwt8DocbQOuXC9f9MRfO+grUIxUWsjVMazE4W08o9EMK50Eblq57iktl5miRulaUn22mQc= x-amz-request-id: 7HC5VTA0951XRY7Q Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT ETag: "0025657d9d2274a15aed06a9eadd2ab2" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 7042 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (6173) Size: 7042 Md5: 0025657d9d2274a15aed06a9eadd2ab2 Sha1: 2838a36bfaa63abfe8b9f4bca8f8fe1a7ab7405d Sha256: d7b396cbae8aa719a1a277fa8fcf7df40f61b50e59b5937fcb347c679c6e990c
GET /landings/277113/1669379644/images/3-eu.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: a7bc234fdfee5b1fbd7558be17adc06905c4667dc6e93ad6b0783642a6b314fe 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: +C3W/qzNpYE0Tpc+Q7u1FjZOrD8WaD0lH1P+zv7XTj07pAIjXCkcUexqPBmsUfH/5ZSdoL7nC7I= x-amz-request-id: MY9J5SJRSZ932SW5 Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "d8f5f0299333c22c41ab084120961d49" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 15013 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Size: 15013 Md5: d8f5f0299333c22c41ab084120961d49 Sha1: 6c2d6cb9323765201658e9ba588d6e0d43d5df67 Sha256: a7bc234fdfee5b1fbd7558be17adc06905c4667dc6e93ad6b0783642a6b314fe
GET /landings/277113/1669379644/images/4-eu.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 34eae0af9c07a88aa5002540d93c2b02a557199f5c73a15909aba6eb1f0bdd03 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: vRqnrMVcXwNsYs8gbOKo5JLuaaA1p0pVQ8n3beTmHwYUEugLP1nG9OhLIyp4n7LwyzTDN+UxgDs= x-amz-request-id: MY9N880CMX7BKNNP Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "4031404ec6ab92ac12eea40f1a074794" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 16220 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Size: 16220 Md5: 4031404ec6ab92ac12eea40f1a074794 Sha1: 21787edc4ce197faebbe7f14996dc00374a63c06 Sha256: 34eae0af9c07a88aa5002540d93c2b02a557199f5c73a15909aba6eb1f0bdd03
GET /landings/277113/1669379644/images/icon-flag.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: ab6ed8c891db0448668e8711a25e42cd27f6e4375fc3e780f041dd24f1544229 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: 4G4uJITBl9TC8u9zkCSOup1Ra7aP8EoKEZAqdlgmuWSUqI5k87Z4rKOUj3UaqrzrdRPhk4WGfqA= x-amz-request-id: CDYM7X891MNSQSMN Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "5da118a4447db10c8aceb6cb0e69e89c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 658 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (554) Size: 658 Md5: 5da118a4447db10c8aceb6cb0e69e89c Sha1: 343954956bcd542cdae0ee819584ee05f2b69d4c Sha256: ab6ed8c891db0448668e8711a25e42cd27f6e4375fc3e780f041dd24f1544229
GET /landings/277113/1669379644/images/2-eu.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: c30bd722ab48311f023fc896cedf6032b03961b4395962dfa919284c5d2c9d33 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: tEliFtSIPi7M4FXZimO7dx6s8o7hR31kbXRt3fucnDfLOVvbcRPwIigp20dyunV9Z/Wb61tNsR8= x-amz-request-id: CDYQTW20JS3J4G7P Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "8406e97c1968881d481cd55c66743204" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 14098 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Size: 14098 Md5: 8406e97c1968881d481cd55c66743204 Sha1: 73f0e213341a617f9405726ca05af91c0b3f32fd Sha256: c30bd722ab48311f023fc896cedf6032b03961b4395962dfa919284c5d2c9d33
GET /landings/277113/1669379644/images/6-eu.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 4b82ecdaeda6d935e3dcf4ab5684d2393018ba6b604d63e9a52d6af976f069e8 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: YT2Vzcfd7/G9rdVaV5mKMOXZh9E06T2xt+pmuUiA00NDKNoOgTJe4GdRFZxc6yooJa6ZLIYM4RQ= x-amz-request-id: EPFKDPPNM6WJ5GXY Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "f424c0e5631daf23b07f1ecdcaf8f69c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 14265 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Size: 14265 Md5: f424c0e5631daf23b07f1ecdcaf8f69c Sha1: 30a7543a419fa3ffac589f53aee088af4ed767c5 Sha256: 4b82ecdaeda6d935e3dcf4ab5684d2393018ba6b604d63e9a52d6af976f069e8
GET /landings/277113/1669379644/images/7-eu.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 89b5109517f86d9ed451390ef0d377979d75511a5d83e8ea5397cb33f5826dff 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: OHypwmIwXITjZ8yiTkXKIBDkkB0J/uIAmD6KIXgVSGjgZlidd9HToisV0ctNXzHOT4CVWcEozEk= x-amz-request-id: 4MJBB6Z3T79ZJWQ8 Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "12ec30bbdbaf0895e9b0757dfa2db143" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 15653 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Size: 15653 Md5: 12ec30bbdbaf0895e9b0757dfa2db143 Sha1: 3af93753793232dacc7b8d2383ded325965d7d65 Sha256: 89b5109517f86d9ed451390ef0d377979d75511a5d83e8ea5397cb33f5826dff
GET /landings/277113/1669379644/images/110010_4.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 42b2fe5d347c3c56725d0addd7129d13ce335df871730534ecee42d2df3a637b 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 5KBsv4rhIAaLrLac3Ir6+vZncneXocapwcfUwZ3FZGH1McNHLtbjqBDM4sjP3ZyqmAZkDxUTDiw= x-amz-request-id: 2WC5ESVR5ZYN9R99 Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT ETag: "daf4cb58fb756b1ed20036941b7a6b72" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 55243 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 682x388, components 3\012- data Size: 55243 Md5: daf4cb58fb756b1ed20036941b7a6b72 Sha1: f59a45cb83366de64071b3a35dfcb54aabbdcd9a Sha256: 42b2fe5d347c3c56725d0addd7129d13ce335df871730534ecee42d2df3a637b
GET /landings/277113/1669379644/images/icon-city.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d71e36a5403717ee163d4dfe676d92b5cf91a20b5112e0c8441fb891673ca6d5 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: N9DLfFJ/ViMrOHktYxZqJZj4dPnG+tgHsgYiit0+5WYLj5X+68pfaj2sebYwg80ROklpoLHBT94= x-amz-request-id: 2WC8CHK8WWZA4C20 Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "cd4eb61df231131a053d0a4e680d22fa" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 839 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (735) Size: 839 Md5: cd4eb61df231131a053d0a4e680d22fa Sha1: ca5b873e0f24fb900b2740048506b7ab322a44fa Sha256: d71e36a5403717ee163d4dfe676d92b5cf91a20b5112e0c8441fb891673ca6d5
GET /landings/277113/1669379644/images/icon-direct.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: e0705f46c1c0c8fd1c1d82f60925008491aa7a2b2ed0351fac96c76d5f2bf13d 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: fjG69IIwDfwulG7VLDD9468A6iF188MaYcyYWjZAgx5eAv3MMIroX+tvwCy6xETM9rtMSc8ylps= x-amz-request-id: MY9JD3YTK4Q482CE Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "9adf524396b45e89252717b159cfb95d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1141 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1037) Size: 1141 Md5: 9adf524396b45e89252717b159cfb95d Sha1: 39a3a6bc588085fc604976c6bb4cfe42dfc8dc50 Sha256: e0705f46c1c0c8fd1c1d82f60925008491aa7a2b2ed0351fac96c76d5f2bf13d
GET /landings/277113/1669379644/images/blocked-icon.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: f7a4b3fb74b9e06f243f23ede51a801a0aa3fa2c0040bc44a49a97444780923d 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: b2kfpKUxKCSnxTcdrY1XYKmU3DNimYvchDc5FDDQNmfuvvc+LLIbpt6fvdpoHsho3Wj+a4/HXAk= x-amz-request-id: CDYQN28XQKF7J5GW Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "87487ad255dde0624f59abb85602defc" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 502 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 23 x 32, 8-bit/color RGBA, non-interlaced\012- data Size: 502 Md5: 87487ad255dde0624f59abb85602defc Sha1: caafad17df41875bed690353ead6cc495a9bf8c2 Sha256: f7a4b3fb74b9e06f243f23ede51a801a0aa3fa2c0040bc44a49a97444780923d
GET /landings/277113/1669379644/images/unlock.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: R6//fMBZ+WqzZlUwNOK5K9jsfpLLzsT8sqtp2bzwrxSIEtTBBduJqe9iYOqOpOw2mwT4UIH/aB0= x-amz-request-id: 7HCCF2VQGNYFD9MT Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT ETag: "a732e1e06affb4575c050fdb0131e5ca" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2378 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944) Size: 2378 Md5: a732e1e06affb4575c050fdb0131e5ca Sha1: da4f4f204a4d22c7424274a91520e0ea993c48c7 Sha256: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f
GET /landings/277113/1669379644/images/icon-like2.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 9d56addf8e2312e9df672eb51ee9f4cf8081613ff05e3ff99cb0ec23bcde7d7f 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: O8oWmbGmh7V2E6DxX8i5sCCxfoxEq890rNZGIyKHCm4qSidOLJTmq7fuqF+2kK6sYemKVXlV7zk= x-amz-request-id: CDYX7QF0M6E6EEW5 Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "a1d69d8f51567ce108bdd71df17be930" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 473 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (369) Size: 473 Md5: a1d69d8f51567ce108bdd71df17be930 Sha1: ee47468e7ce8b6736092f038625b904a7735f0ee Sha256: 9d56addf8e2312e9df672eb51ee9f4cf8081613ff05e3ff99cb0ec23bcde7d7f
GET /landings/277113/1669379644/images/5-eu.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 0d825e2c84a926c72864a619b1d587c3716a9043321fba9913db5d3c8e3e444a 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: G/6VM0YcktryTJG8EXYBfrJdNKigyOLS2f+EHwCyYMCu1J+i/GGMsDxWr/mCZNIvsQEhSO2K9ig= x-amz-request-id: MY9H4T3JSXZMASGT Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "08c6cea7e489f3caf50bfa02fcffc8d5" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 15153 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Size: 15153 Md5: 08c6cea7e489f3caf50bfa02fcffc8d5 Sha1: 0cfe3d1447e01aaea5fc2fada138c1fa21a93c86 Sha256: 0d825e2c84a926c72864a619b1d587c3716a9043321fba9913db5d3c8e3e444a
GET /landings/277113/1669379644/images/1-eu.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 55e214ad65a4e7402c23c8a9f8f8d94ed849cdaf9925bc730d3f4ce27dba16d2 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: pi2RNz/thx1wkqalBYcKEj+pUZWuc+pD8ODOm4puJw60oVRNS4Nj+W0gRIY4eXxYJ9Gj/In2dtQ= x-amz-request-id: CDYRM49AT69VGA9A Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "0b2eb782c549d40b2bcb97934ab6f821" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 15567 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Size: 15567 Md5: 0b2eb782c549d40b2bcb97934ab6f821 Sha1: fb97adbc62515352937ab61093322449676dd0df Sha256: 55e214ad65a4e7402c23c8a9f8f8d94ed849cdaf9925bc730d3f4ce27dba16d2
GET /landings/277113/1669379644/images/icon-home.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277113/1669379644/css/style.css?1669379644 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: ce26e303b33d69ca20eb3079b4c37ed364eacb8c633260c56315d6db74414b74 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: oisjDBEIid/BWS1VMF7M8BXj5nQrOoS8zpVUKO4dSf0VzQ/DY0g2b/v1qKnSSY4JW53z+j58k4A= x-amz-request-id: 7HC2X2BSH88RYRSB Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "02866968d59a649b76df83c300d2d8f6" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 889 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (785) Size: 889 Md5: 02866968d59a649b76df83c300d2d8f6 Sha1: 8293027c754094ab05cb7d6daa7f7cdb1be5c98e Sha256: ce26e303b33d69ca20eb3079b4c37ed364eacb8c633260c56315d6db74414b74
GET /landings/277113/1669379644/images/icon-search.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277113/1669379644/css/style.css?1669379644 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 4aa4713ccd74ad24299b1558cb49061c90076e841b3b1177fb3b056a8448b4c5 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: Qs0LhHQU6rsQQ66h+OUe+dMx+BwpcsQwluBfBf1UZXXnc+VMZUUmwBXxhVpNmgrJp3J1PHboAOk= x-amz-request-id: 2WC9056NN0EZAEDT Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "aa6ea58a389a3ebe541d5f9d622dedd7" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1189 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1085) Size: 1189 Md5: aa6ea58a389a3ebe541d5f9d622dedd7 Sha1: 9fb684b6f6cd982396bd8c8e745997c3a01dd6be Sha256: 4aa4713ccd74ad24299b1558cb49061c90076e841b3b1177fb3b056a8448b4c5
GET /landings/277113/1669379644/images/icon-plus.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277113/1669379644/css/style.css?1669379644 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 7b023c50adbfe6554e1bf1986a12de8ba9e47c5d14a3e57318d117004ea6a641 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: ezyYnUJiRM+5IyxrvKoeVfN9lnIBO5MRuhZEZ0h9S26hyWQ5+nTTPhft40XM6JbGZV3Rp/XoLT4= x-amz-request-id: MY9T8MG2YGG6SWZW Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "f89e15ef5cf4b32ca987f73bd4a2ef9d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1117 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (513) Size: 1117 Md5: f89e15ef5cf4b32ca987f73bd4a2ef9d Sha1: 0f55d36995906b78bd98f23c7fdc67778212b7fc Sha256: 7b023c50adbfe6554e1bf1986a12de8ba9e47c5d14a3e57318d117004ea6a641
GET /landings/277113/1669379644/images/icon-like.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277113/1669379644/css/style.css?1669379644 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: c1a26e7a024fd0e566423b10e91c63854979ce89f3fe2625043dc52dfe20891b 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: 9W23aoyu0YI3y4zgNqs13KqwG5gcnmgpTZ9ja205U0aU7SqKcHpvrl3zPmtCq/w61DNE+8erkxE= x-amz-request-id: CDYYJMDTS51ZA4G7 Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT ETag: "2457f6954df5056e25151bcdd05a2718" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 914 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (810) Size: 914 Md5: 2457f6954df5056e25151bcdd05a2718 Sha1: 41ab46311796f9ade12cae960687a422ee8ff0a0 Sha256: c1a26e7a024fd0e566423b10e91c63854979ce89f3fe2625043dc52dfe20891b
GET /landings/277113/1669379644/images/icon-user.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277113/1669379644/css/style.css?1669379644 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: ed65348e7b16bbe9b436282214590814692d0fb779fc2155c82ca0d94fe5a94e 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: tPfnQ1EthpTH1eHB+buH6lURHZbtTFqB1z0EZQG3XRrROOPEXq8pi/MG03t3J9M+fqv0/yKWj6g= x-amz-request-id: 7HC7N8985FT3D365 Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT ETag: "00aa56c530f0df6ddbb8805f25376920" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 844 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (437) Size: 844 Md5: 00aa56c530f0df6ddbb8805f25376920 Sha1: 2331bb67d5538e5fb2c010ef41541ce8dc8acfc1 Sha256: ed65348e7b16bbe9b436282214590814692d0fb779fc2155c82ca0d94fe5a94e
GET /landings/277113/1669379644/images/shutterstock_1549109471_web_b.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277113/1669379644/css/reviews.css?1669379644 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: a9805559cf56d84ce03f90c590433b357a68dd44a6ae9254920092c64d480ad6 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: qpOUIUtwh5cA0+D/NQ++5tHmfFg7Wg+TKMFdtheuGigmRORLJeh7TXtiXea36iwdhXg9oc9dK3c= x-amz-request-id: MY9QTJQQHPNKX5E7 Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT ETag: "9f4ed965bedfba73789bc5fd69d51ef5" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 86759 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 1920 x 1080, 4-bit colormap, non-interlaced\012- data Size: 86759 Md5: 9f4ed965bedfba73789bc5fd69d51ef5 Sha1: ad03f824892d08a7bf20f2314cfe815a425681e1 Sha256: a9805559cf56d84ce03f90c590433b357a68dd44a6ae9254920092c64d480ad6
GET /landings/277113/1669379644/images/shutterstock_751200268_web_2.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277113/1669379644/css/style.css?1669379644 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 2d5acbd7c7a2e91720c41c64b389b99377d415574911488db2540a5d7770ce09 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: B5x8Hzv84D3d5dr2f4P7zVRoVo/G5Q6pzbSNy8r9PiNqtekTQrHAmJwesMdjcmfSFFNtfDw2G7g= x-amz-request-id: 7HC1AMTN2X4Y2AMZ Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT ETag: "0666da291b2e75b6dfcc14444d83ab13" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 94922 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 1920 x 1080, 4-bit colormap, non-interlaced\012- data Size: 94922 Md5: 0666da291b2e75b6dfcc14444d83ab13 Sha1: 563a6c7c74f65f7fb4505cfc7c5f41b459e26cbe Sha256: 2d5acbd7c7a2e91720c41c64b389b99377d415574911488db2540a5d7770ce09
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: EnH0hNMgQibyQ0AgJOd2uw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 54.69.181.45 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 54.69.181.45 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: m2YFvu/I4qUJst2J0jdewjwSkOY= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 26 Nov 2022 22:41:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: b05606331c6f88a724d9e404e62974e4 Sha1: 72176bc6b618fbbe567b5746ed54e14d381a9815 Sha256: 7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 26 Nov 2022 22:41:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: b05606331c6f88a724d9e404e62974e4 Sha1: 72176bc6b618fbbe567b5746ed54e14d381a9815 Sha256: 7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 26 Nov 2022 22:41:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: b05606331c6f88a724d9e404e62974e4 Sha1: 72176bc6b618fbbe567b5746ed54e14d381a9815 Sha256: 7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa0ZL7SUc.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://jqkkq.excelientdates.net Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwC (...) FQDN: fonts.gstatic.com IP: 216.58.207.195 HASH: 262a1054100218e2efaa4b2e214e4fb8e920c5a30a53300b80145511df3de895 216.58.207.195 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17076 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 24 Nov 2022 16:54:22 GMT expires: Fri, 24 Nov 2023 16:54:22 GMT cache-control: public, max-age=31536000 age: 193643 last-modified: Mon, 11 Jul 2022 21:07:51 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 17076, version 1.0\012- data Size: 17076 Md5: e248902a9f045310063e7a14a46fd9ae Sha1: aec66565f555ee0ca4d39e584a1b484db127fa3b Sha256: 262a1054100218e2efaa4b2e214e4fb8e920c5a30a53300b80145511df3de895
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 26 Nov 2022 22:41:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: b05606331c6f88a724d9e404e62974e4 Sha1: 72176bc6b618fbbe567b5746ed54e14d381a9815 Sha256: 7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://jqkkq.excelientdates.net Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwC (...) FQDN: fonts.gstatic.com IP: 216.58.207.195 HASH: 450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e 216.58.207.195 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 37924 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 24 Nov 2022 06:03:56 GMT expires: Fri, 24 Nov 2023 06:03:56 GMT cache-control: public, max-age=31536000 age: 232669 last-modified: Mon, 11 Jul 2022 20:54:46 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data Size: 37924 Md5: e08be6d5d433944f7ad52902e4d24db5 Sha1: e2600c1d60d12d397b3ee44411a021231d71e974 Sha256: 450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 26 Nov 2022 22:41:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e9895464b828d538dc654c678c82b181 Sha1: af5791cd48761cb3f3f979b481c23e1508692823 Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /ortb HTTP/1.1 Host: jqkkq.excelientdates.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 288 Origin: https://jqkkq.excelientdates.net Connection: keep-alive Referer: https://jqkkq.excelientdates.net/c/da57dc555e50572d?s1=15966&s2=56630&s3=3.testse2&s5=backuser&click_id=68-1381-20221127014141e713a308&iexpp=1&j1=1&j3=1 Cookie: unique_id=6381decd00032e77; unique_id2=63827b4a0003ca5c; 63827b4a0003ca5c_c=1; ref_token=116914_15966_156428_167841_1018_35389_17969_160484_64098_153990_177565_178740_165937_14490; 63827b4a0003ca5c_sl=[277113] Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	URL: jqkkq.excelientdates.net/ortb FQDN: jqkkq.excelientdates.net IP: 63.32.216.166 HASH: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208 63.32.216.166 HTTP/2 200 OK content-type: text/plain; charset=utf-8 server: nginx date: Sat, 26 Nov 2022 22:41:45 GMT content-length: 13 X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 13 Md5: 1031bf08481e45e42ceb3fd978c3d379 Sha1: 3d6d43df4c45f09f5d68593646fd83352323a5ea Sha256: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208 Alerts: Blocklists: - fortinet: Phishing
GET /landings/277113/1669379644/images/favicon.png?t=20221126224144 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 39b439471019cb16f819e05166d23492593310fd55cce8471062d8f2dc5de423 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: nEj51ZZ1wLdIq50AKC1VA1oI/N/I5Vq1pF8Ywlm9ZiUVlt1bfWcCQQW5qZCNqiTLfmUm0+pdMgQ= x-amz-request-id: MAWX1TH0VTXFEY3S Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT ETag: "40a54c3ecf143b64096b063ff793fdbb" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 4093 Date: Sat, 26 Nov 2022 22:41:45 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size: 4093 Md5: 40a54c3ecf143b64096b063ff793fdbb Sha1: 017eafffc5e55226a2aec0dd3c03f1b6130a6bab Sha256: 39b439471019cb16f819e05166d23492593310fd55cce8471062d8f2dc5de423
GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.gstatic.com/firebasejs/5.0.2/firebase-app.js FQDN: www.gstatic.com IP: 142.250.74.163 HASH: b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5 142.250.74.163 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 8604 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 18:32:45 GMT expires: Thu, 23 Nov 2023 18:32:45 GMT cache-control: public, max-age=31536000 age: 274140 last-modified: Thu, 10 May 2018 20:35:51 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (25088) Size: 8604 Md5: 73069e532b7039778d3a7128c997c61a Sha1: c523bbf1ac7f4e612c8ade75434c42fbca885adc Sha256: b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5
GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js FQDN: www.gstatic.com IP: 142.250.74.163 HASH: 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7 142.250.74.163 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 10017 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 21 Nov 2022 18:29:53 GMT expires: Tue, 21 Nov 2023 18:29:53 GMT cache-control: public, max-age=31536000 age: 447112 last-modified: Thu, 10 May 2018 20:35:52 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (35547) Size: 10017 Md5: fa9987a23f5a9d865766e952511baa30 Sha1: f2e620b99ee61a01671ba6a9e22ca75d58a1b52d Sha256: 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9" Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14906 Expires: Sun, 27 Nov 2022 02:50:12 GMT Date: Sat, 26 Nov 2022 22:41:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 6827d82f488045e02e40d6a2fdbae4b3 Sha1: 4944139a4b08769511ffc6aa913857d88a0db7bc Sha256: 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4803 x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cOo4iFHoIAMF2-g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg== via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google date: Sat, 26 Nov 2022 21:42:14 GMT etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc" age: 3572 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4803 Md5: cc0a257323f882caff067adb86d906e4 Sha1: cedf2f21be7cd366bd46055b62b5513db3011dfc Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dafe91-0b1b-40e9-927c-c01863516712.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: b4b6f70603ab79399aeda1d8b7e8f2662da37b51a2d076b8e754c812b6fa5b47 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9073 x-amzn-requestid: 6cf20b75-6b27-4a34-97a8-017d7169f31b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b8JuVHY7IAMFtRg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637b2328-1ca76b3537613fb26358b8f2;Sampled=0 x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:12 GMT x-amz-cf-pop: SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: lg8rdnHT_ndB-9CMrHcVN8a2xZCubuTEpUQ2m6i77l-NfdNfhfITEQ== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google date: Sat, 26 Nov 2022 14:36:38 GMT age: 29108 etag: "c9a5ab962bfdd174aecd4809d770f0fe305ab8e4" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9073 Md5: ccb536b51f31391c89fb2abe3be6c749 Sha1: c9a5ab962bfdd174aecd4809d770f0fe305ab8e4 Sha256: b4b6f70603ab79399aeda1d8b7e8f2662da37b51a2d076b8e754c812b6fa5b47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8817 x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cJ40OEOqIAMFaOg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0 x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT x-amz-cf-pop: SEA19-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA== via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google date: Sat, 26 Nov 2022 10:16:33 GMT etag: "308c08784ce4a0757cbd112807555b83e17a1d56" age: 44713 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8817 Md5: 741ddfb19764ac9a77509e7e87cfbfb2 Sha1: 308c08784ce4a0757cbd112807555b83e17a1d56 Sha256: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaab9de7-1f50-401c-bd84-6bcd72fb53d1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: d95471f66cf6404bfb5400c4c707fbb81bcaf4be1518313d3f513c9b2a3da1fd 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8335 x-amzn-requestid: 3f1c7be1-6140-4fa1-a891-4cb9428436a6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cBcY9FARIAMFzXQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637d4105-0b84411938fe706d2d48751c;Sampled=0 x-amzn-remapped-date: Tue, 22 Nov 2022 21:37:09 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: RqL5rR_zx78-4MFOH8ObPPDTV_qwTP0w1DHrxxPFfJSOeR5jYQsGQg== via: 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google date: Sat, 26 Nov 2022 01:04:08 GMT age: 77858 etag: "b298107232e837ccf8d853e6d2c91f67e74dc2ba" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8335 Md5: c52c26038ed572c870cf2119865907b1 Sha1: b298107232e837ccf8d853e6d2c91f67e74dc2ba Sha256: d95471f66cf6404bfb5400c4c707fbb81bcaf4be1518313d3f513c9b2a3da1fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: d5d0f5518f8346e78f00a57632efe36f3363cabfa9abb30b7bea60261b29910b 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5103 x-amzn-requestid: 203eadee-9375-4290-ae0a-dd48e83df697 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cFGzTE90oAMFTyA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637eb814-2c32253b155d5dd0283fdd07;Sampled=0 x-amzn-remapped-date: Thu, 24 Nov 2022 00:17:24 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: mcJEBmwUhmWYAGJVngi2W0YHXEVdLlSREViZLePCgIlcY7Z755i17w== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google date: Sat, 26 Nov 2022 14:36:46 GMT age: 29100 etag: "10577d9fc19028a0e0303634ec16ad8b2d41fa7a" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5103 Md5: 116eb5028a206e55f758f3e34887c87e Sha1: 10577d9fc19028a0e0303634ec16ad8b2d41fa7a Sha256: d5d0f5518f8346e78f00a57632efe36f3363cabfa9abb30b7bea60261b29910b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a7e16e2-9f5f-4739-817a-8a5447d80ee4.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 01a81962c06247835668581bcdd337320c62ba2121e94570f663396b6647c2b1 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9549 x-amzn-requestid: b99fc256-bdbd-4e59-bdec-b3f453cdfaac x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-50OFDDIAMFr1A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637c3ce7-75bc0aba74d71992450b11cb;Sampled=0 x-amzn-remapped-date: Tue, 22 Nov 2022 03:07:19 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: VOzEGsb5YWPA9-k63Jsb1Ejw9qoHfkH84GtbM2s7evsvv53iuh3Lug== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google date: Sat, 26 Nov 2022 21:55:30 GMT age: 2776 etag: "7b0d859df11485329882daddcdd8ca85a1010e56" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9549 Md5: 099add42d39565e1a14ba60a61261a8d Sha1: 7b0d859df11485329882daddcdd8ca85a1010e56 Sha256: 01a81962c06247835668581bcdd337320c62ba2121e94570f663396b6647c2b1
GET /landings/277113/1669379644/images/4.mp4 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: video/webm,video/ogg,video/;q=0.9,application/ogg;q=0.7,audio/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- Connection: keep-alive Referer: https://jqkkq.excelientdates.net/ Sec-Fetch-Dest: video Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277113/1669379644/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 184.31.15.67 HTTP/1.1 206 Partial Content Content-Type: video/mp4 x-amz-id-2: hTy9Nr2bFgSrHAKSXl+PmlSYpCRoiVwB11zpGS6ogh2uJ653Uq4t/jTpUbpGRvF283qVievUeJs= x-amz-request-id: EPFK1EHHG5V8HAKZ Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT ETag: "7be5f3025f66769e720214f2fd221905" Accept-Ranges: bytes Server: AmazonS3 Date: Sat, 26 Nov 2022 22:41:45 GMT Content-Range: bytes 0-1264919/1264920 Content-Length: 1264920 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info ---
GET /js/pushjs/1.0.0/utils.js HTTP/1.1 Host: jqkkq.excelientdates.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/c/da57dc555e50572d?s1=15966&s2=56630&s3=3.testse2&s5=backuser&click_id=68-1381-20221127014141e713a308&iexpp=1&j1=1&j3=1 Cookie: unique_id=6381decd00032e77; unique_id2=63827b4a0003ca5c; 63827b4a0003ca5c_c=1; ref_token=116914_15966_156428_167841_1018_35389_17969_160484_64098_153990_177565_178740_165937_14490; 63827b4a0003ca5c_sl=[277113] Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: jqkkq.excelientdates.net/js/pushjs/1.0.0/utils.js FQDN: jqkkq.excelientdates.net IP: 63.32.216.166 63.32.216.166 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 26 Nov 2022 22:41:45 GMT expires: Sat, 03 Dec 2022 22:41:45 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Alerts: Blocklists: - fortinet: Phishing
GET /js/service-worker.js HTTP/1.1 Host: jqkkq.excelientdates.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Service-Worker: script Connection: keep-alive Cookie: unique_id=6381decd00032e77; unique_id2=63827b4a0003ca5c; 63827b4a0003ca5c_c=1; ref_token=116914_15966_156428_167841_1018_35389_17969_160484_64098_153990_177565_178740_165937_14490; 63827b4a0003ca5c_sl=[277113] Sec-Fetch-Dest: serviceworker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers	URL: jqkkq.excelientdates.net/js/service-worker.js FQDN: jqkkq.excelientdates.net IP: 63.32.216.166 63.32.216.166 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 26 Nov 2022 22:41:45 GMT expires: Sat, 03 Dec 2022 22:41:45 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Alerts: Blocklists: - fortinet: Phishing
GET /css?family=Roboto%3A300%2C300i%2C500&ver=4.9.6 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://erasmus-lean.eu/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Roboto%3A300%2C300i%2C5 (...) FQDN: fonts.googleapis.com IP: 142.250.74.10 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 26 Nov 2022 22:41:44 GMT date: Sat, 26 Nov 2022 22:41:44 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /c/da57dc555e50572d?s1=15966&s2=56630&j1=1&j3=1&s3=3.testse2&click_id=68-1381-20221127014141e713a308 HTTP/1.1 Host: jqkkq.excelientdates.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://erasmus-lean.eu/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site	URL: jqkkq.excelientdates.net/c/da57dc555e50572d?s1=15966&s2 (...) FQDN: jqkkq.excelientdates.net IP: 63.32.216.166 63.32.216.166 HTTP/2 200 OK content-type: text/html; charset=utf-8 server: nginx date: Sat, 26 Nov 2022 22:41:44 GMT set-cookie: unique_id=6381decd00032e77; Path=/; Expires=Wed, 25 Jan 2023 22:41:44 GMT; Secure; SameSite=None unique_id2=63827b4a0003ca5c; Path=/; Expires=Fri, 24 Feb 2023 22:41:44 GMT; Secure; SameSite=None 63827b4a0003ca5c_c=1; Path=/; Expires=Fri, 24 Feb 2023 22:41:44 GMT; Secure; SameSite=None ref_token=116914_15966_156428_167841_1018_35389_17969_160484_64098_153990_177565_178740_165937_14490; Path=/; Expires=Mon, 26 Dec 2022 22:41:44 GMT; Secure; SameSite=None impression=; Path=/; Expires=Sat, 26 Nov 2022 22:41:44 GMT; Secure; SameSite=None 63827b4a0003ca5c_sl=[277113]; Path=/; Expires=Sat, 10 Dec 2022 22:41:44 GMT; Secure; SameSite=None content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /css2?family=Inter:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Inter:wght@400;700&dis (...) FQDN: fonts.googleapis.com IP: 142.250.74.10 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 26 Nov 2022 22:41:45 GMT date: Sat, 26 Nov 2022 22:41:45 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1 Host: jqkkq.excelientdates.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jqkkq.excelientdates.net/c/da57dc555e50572d?s1=15966&s2=56630&s3=3.testse2&s5=backuser&click_id=68-1381-20221127014141e713a308&iexpp=1&j1=1&j3=1 Cookie: unique_id=6381decd00032e77; unique_id2=63827b4a0003ca5c; 63827b4a0003ca5c_c=1; ref_token=116914_15966_156428_167841_1018_35389_17969_160484_64098_153990_177565_178740_165937_14490; 63827b4a0003ca5c_sl=[277113] Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: jqkkq.excelientdates.net/js/pushjs/1.0.0/subscriber.js FQDN: jqkkq.excelientdates.net IP: 63.32.216.166 63.32.216.166 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 26 Nov 2022 22:41:45 GMT expires: Sat, 03 Dec 2022 22:41:45 GMT cache-control: max-age=604800 content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Alerts: Blocklists: - fortinet: Phishing

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F" 

                                        
                                            
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=5430 

                                        
                                            
Expires: Sun, 27 Nov 2022 00:12:14 GMT 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:44 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    a9f1d4d98705c281fed3b60343463200

                                                Sha1:   db6f8aa98d2eda4e5473b116a222c3055568bb78

                                                Sha256: 164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2" 

                                        
                                            
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6280 

                                        
                                            
Expires: Sun, 27 Nov 2022 00:26:24 GMT 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:44 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    260e9998c20d831b66f1029c8f47aac9

                                                Sha1:   716d630f647c54dc69a7f9c63a6cac294b3df7f7

                                                Sha256: c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: erasmus-lean.eu

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         104.21.23.203

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html; charset=UTF-8

                                        

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:44 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
CF-Cache-Status: DYNAMIC 

                                        
                                            
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R7Qt%2FMiSEPsQ9L4CsxO1TWLmzHXpeCcbDKURgeaKgBYhd23g90CJvx9qXk9wZ9oGf2LdeH8ZWW2yAuSN2nMM7eA%2BLw%2Fcj5ynq%2BVOVDGk2R%2FDu4APS%2BLgy7aO%2FeUt%2F7kBdWY%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 7706221abb4db524-OSL 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
alt-svc: h2=":443"; ma=60 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (48593)

                                                Size:   42115

                                                Md5:    68696453e2df314caa216a095a0d05fb

                                                Sha1:   4600d36d957474642c8f63d134a220404926fee9

                                                Sha256: 2f5441e124dec55746ee280cb64bf47ca6f1544d9777b692d4b66d1a952de30f

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sat, 26 Nov 2022 22:41:44 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            GET /templates/crumbs/wp-content/themes/crumbs/style.css HTTP/1.1 

                                        
                                            
Host: erasmus-lean.eu

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://erasmus-lean.eu/

                                         104.21.23.203

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:44 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Wed, 30 May 2018 16:24:23 GMT 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
ETag: W/"5b0ed037-47bf" 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Cache-Control: max-age=14400 

                                        
                                            
CF-Cache-Status: REVALIDATED 

                                        
                                            
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=To4IvjSCGhhOmZn5fPHTDyPtxmQD5NURo0uoCy21bT0o%2F8rMtv5WWHeeFSNeKxSrfPaktP%2Bhy9Frfcy6pqYfDCWS2JVx3dWLXPsA6aeEYZf5fBNX7Vjxo5yezMpPXAaboTk%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 7706221dafd7b511-OSL 

                                        
                                            
alt-svc: h2=":443"; ma=60 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with CRLF line terminators

                                                Size:   5210

                                                Md5:    ac9180e0d28262fb33fa82bded385483

                                                Sha1:   b6b842d17264e2a2f8db259ef44f67059d2e3588

                                                Sha256: 9c468f14f4aeb0ca9fa69f0ad3f101003b4df7a224fd9a2138239262e2e7dfbe

                                        
                                            GET /content/photos/1/15/5a/78/db/785adb623e83991606545c65479a0e35/hon-onanerar-och-cums-ung-naken-slampa-marockansk-slampa-tv%C3%A5-mognar-f%C3%B6r-mycket-sperma-i-munnen-gratis-chattk%C3%A4rlek.jpg HTTP/1.1 

                                        
                                            
Host: erasmus-lean.eu

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://erasmus-lean.eu/

                                         104.21.23.203

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:44 GMT 

                                        
                                            
Content-Length: 7790 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cache-Control: public, max-age=10368000 

                                        
                                            
Expires: Sat, 17 Dec 2022 18:28:29 GMT 

                                        
                                            
Last-Modified: Sat, 06 Jan 2018 08:51:59 GMT 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
X-Frame-Options: sameorigin 

                                        
                                            
Age: 295201 

                                        
                                            
CF-Cache-Status: HIT 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qJHZpQvZUPREzX0DNJZ2Huvql2D%2FlDUpf3%2BBY95uLlL1FJApcLWQiOmigFgl3GUFhRYVt9W0p6BVwrhKgHlf63CyXTEad2EPSFPsUKistOoXEGawH0kyHyFfI2ffiLApzf8%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 7706221e792bb511-OSL 

                                        
                                            
alt-svc: h2=":443"; ma=60 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 180x135, components 3\012- data

                                                Size:   7790

                                                Md5:    b845208386f1b1763e8f8f50774934e8

                                                Sha1:   ef7a11081166b719b84246341ab789bf533d9ab1

                                                Sha256: b3ebf31682d6b6bb55f3567a3de23f0a69648a5136b56eb379bfeb02860e34f7

                                        
                                            GET /content/photos/1/15/69/d4/10/d46910a5c9589659e26d3f7d79deb5a6/gratis-porrfilmer-av-svarta-slampor-xxx-b%C3%A4sta-sexposition-f%C3%B6r-sexig-kvinna-och-naken-ton%C3%A5rsfoton-fr%C3%A5n-kashmir-silikon-sexdocka-sexhistorien.jpg HTTP/1.1 

                                        
                                            
Host: erasmus-lean.eu

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://erasmus-lean.eu/

                                         104.21.23.203

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:44 GMT 

                                        
                                            
Content-Length: 6143 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cache-Control: public, max-age=10368000 

                                        
                                            
Expires: Fri, 25 Nov 2022 17:41:27 GMT 

                                        
                                            
Last-Modified: Fri, 14 Oct 2016 07:14:13 GMT 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
x-frame-options: sameorigin 

                                        
                                            
Age: 165609 

                                        
                                            
CF-Cache-Status: HIT 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dd2%2FHNEtJwo4aPFLGAjiH1bgXZJ4Kx32NZzsRdLfDM6Rq1niUvqshxO4JopAu31ALgh8RIX8j%2BQAGdo8QYbYx6swoP7zLh0cLVxcgkKMm254%2FI%2FxFxO%2FOMkWxrxX6zMo2xg%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 7706221e7dbab527-OSL 

                                        
                                            
alt-svc: h2=":443"; ma=60 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 180x135, components 3\012- data

                                                Size:   6143

                                                Md5:    502256a57a339bfd40638dc45cca8b42

                                                Sha1:   0653294856883c38a0a58b58daa2ff8af10a67be

                                                Sha256: 433b3d08afe811c98aea7eee90df33be346b47ef25f7c6daad526b338280c046

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:44 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    619fa0039b94697fc8a5bd24f57e8aa2

                                                Sha1:   53a366391a51d625029cc6d32fb4e8b6060990fd

                                                Sha256: dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

                                        
                                            GET /landings/277113/1669379644/css/style.css?1669379644 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
x-amz-id-2: Qrg+vAO+SQn+1FbDlmKGStipa+nq8q0wOpIAVk9TxpgWIgOuaL8TTGaV1/0BJ/hQsISS06Z1CV3doDuu8WgOOg== 

                                        
                                            
x-amz-request-id: 8ZDE8G65FVY418H9 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT 

                                        
                                            
ETag: "b0a18d4c0c4e835b4cfd183edd56d8e0" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Content-Length: 2823 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   2823

                                                Md5:    c2e5f269277ed4cc86da543794383c7f

                                                Sha1:   2d83272d8ce7d52806d4e3916a58389dacfa2fdd

                                                Sha256: ea324b86019fee76fb3c06d71b443d16521418246c28a63414c0db2054d527bd

                                        
                                            GET /landings/277113/1669379644/css/reviews.css?1669379644 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
x-amz-id-2: SPKaNj9TAy+Zti7vzq2mIFmVUoUOzmOvWjVcvhRU3MR1Y/2i9hQFkBLtPUZRXwEz/9hHS9o6U+g= 

                                        
                                            
x-amz-request-id: 8ZD6N1VFVAS2BEAM 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT 

                                        
                                            
ETag: "57c354e6c648cc2f6540c9164a47b213" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Content-Length: 1145 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   1145

                                                Md5:    8aa2f14f962ada38928836a4872fc64d

                                                Sha1:   c51b9483dd48a720fd67decf16c3878b469964e0

                                                Sha256: 659aba77e0539ef308a9ca25e0606a64a2f8b107d5f59e2d430f83fb0a5fada0

                                        
                                            GET /landings/277113/1669379644/js/jquery.validate.min.js?1669379644 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: nVtEQovJdxzoCEz1eVnL5L3kUFwR4jLQAeo6sLjYrm8kJRzt8YHVYbtv0SDls4ISkAkcTaFTgBU= 

                                        
                                            
x-amz-request-id: 8ZD45Z5HNYX7SKNQ 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT 

                                        
                                            
ETag: "23d73c6bd6cbea8f06d0cc227896a827" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Content-Length: 7815 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text, with very long lines (24228)

                                                Size:   7815

                                                Md5:    f808399407c6ac496fe830d5deacb05f

                                                Sha1:   151039ee8631ce8ff989c5cf795c2feba950a499

                                                Sha256: 21e11160c5ba11e65a1c97b0306a9f5dec06c8fd3d4a7d69dd0a80e263577958

                                        
                                            GET /landings/277113/1669379644/js/title_tanslate.js?1669379644 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: 7p8dwI+JyY1uh/Yiuxznu8X65HMk+bbh1hc6pboCrhFLwaY4oH3lWw7uQSAeV3amNGW6ABuneV0= 

                                        
                                            
x-amz-request-id: M55RHD3DXR7K3MB3 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT 

                                        
                                            
ETag: "5f373fa5bf21c44b9ad23b70ef96e73d" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Content-Length: 1298 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text, with CRLF line terminators

                                                Size:   1298

                                                Md5:    0e212ad4454c941c45c2e57df42c2b4f

                                                Sha1:   fe9d7c484c2c0d7a6475692ef984c53a06c95406

                                                Sha256: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3

                                        
                                            GET /landings/277113/1669379644/js/timer.js?1669379644 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: xgypPKkSMWCJ46InwdpDgljWJHKdYX+G945egqbSPzM8WztodMFsAgEzO/D7qkF/9VAJ79Zd6Uo= 

                                        
                                            
x-amz-request-id: M55J0VGE3RDNFZMA 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT 

                                        
                                            
ETag: "3350ef7fbc19030e06999dbb12a2c9b0" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Content-Length: 903 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text

                                                Size:   903

                                                Md5:    24af8e8209962d30b5e6bb428d28489c

                                                Sha1:   a00033869880cf83bc81fde7874242d838b59e34

                                                Sha256: 52fe1029652b5a0576cdae96e8278900eb7eee3f81a1ae66ea88129aa6f3f924

                                        
                                            GET /landings/277113/1669379644/js/translates-review.js?1669379644 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: I3nRYB40LbsMR+7R9eRH0KJUkIGvz6X0HzCwZ03FJiynlhFIvKwiUYIyLvKIiY6r/7b3jSC1QxA= 

                                        
                                            
x-amz-request-id: 8ZD8ZG9BDYSWSP49 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:08 GMT 

                                        
                                            
ETag: "9061bd0c6ff627d3a43a9e6c125350a7" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Content-Length: 14059 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text

                                                Size:   14059

                                                Md5:    7e68f840e901ef970f740ce8219ceced

                                                Sha1:   b6acb9f49a8fc69974bb3af8b94df3812f60850c

                                                Sha256: 51370edca224a86fc7ed3ea85308c34f1527b62420f659594eaf90f46a8c6a9e

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 329 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Sat, 26 Nov 2022 22:08:54 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 1971 

                                        
                                            
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
etag: "1648230346554" 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    619fa0039b94697fc8a5bd24f57e8aa2

                                                Sha1:   53a366391a51d625029cc6d32fb4e8b6060990fd

                                                Sha256: dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

                                        
                                            GET /landings/277113/1669379644/images/8-eu.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: 8p9qBjS6p7Vz6BD3ZlJCEKZn1RSu1xn96D4+kVxLkG3jZzMRi9NN4Dm5Kwz8BLIVHcyq47BMAEc= 

                                        
                                            
x-amz-request-id: 4MJ6N7ZWBC8X8M1F 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT 

                                        
                                            
ETag: "ef40a69fcb961a0677eaf2e29b93aa3a" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 13479 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   13479

                                                Md5:    ef40a69fcb961a0677eaf2e29b93aa3a

                                                Sha1:   eb5624143cf58053ab45715cf155f92fc875aefc

                                                Sha256: 4e54bd6e80377744a79017ba800639924466266601a06ca194aaeea290e086fa

                                        
                                            GET /landings/277113/1669379644/images/3-eu.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: +C3W/qzNpYE0Tpc+Q7u1FjZOrD8WaD0lH1P+zv7XTj07pAIjXCkcUexqPBmsUfH/5ZSdoL7nC7I= 

                                        
                                            
x-amz-request-id: MY9J5SJRSZ932SW5 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT 

                                        
                                            
ETag: "d8f5f0299333c22c41ab084120961d49" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 15013 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   15013

                                                Md5:    d8f5f0299333c22c41ab084120961d49

                                                Sha1:   6c2d6cb9323765201658e9ba588d6e0d43d5df67

                                                Sha256: a7bc234fdfee5b1fbd7558be17adc06905c4667dc6e93ad6b0783642a6b314fe

                                        
                                            GET /landings/277113/1669379644/images/icon-flag.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: 4G4uJITBl9TC8u9zkCSOup1Ra7aP8EoKEZAqdlgmuWSUqI5k87Z4rKOUj3UaqrzrdRPhk4WGfqA= 

                                        
                                            
x-amz-request-id: CDYM7X891MNSQSMN 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT 

                                        
                                            
ETag: "5da118a4447db10c8aceb6cb0e69e89c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 658 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (554)

                                                Size:   658

                                                Md5:    5da118a4447db10c8aceb6cb0e69e89c

                                                Sha1:   343954956bcd542cdae0ee819584ee05f2b69d4c

                                                Sha256: ab6ed8c891db0448668e8711a25e42cd27f6e4375fc3e780f041dd24f1544229

                                        
                                            GET /landings/277113/1669379644/images/6-eu.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: YT2Vzcfd7/G9rdVaV5mKMOXZh9E06T2xt+pmuUiA00NDKNoOgTJe4GdRFZxc6yooJa6ZLIYM4RQ= 

                                        
                                            
x-amz-request-id: EPFKDPPNM6WJ5GXY 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT 

                                        
                                            
ETag: "f424c0e5631daf23b07f1ecdcaf8f69c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 14265 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   14265

                                                Md5:    f424c0e5631daf23b07f1ecdcaf8f69c

                                                Sha1:   30a7543a419fa3ffac589f53aee088af4ed767c5

                                                Sha256: 4b82ecdaeda6d935e3dcf4ab5684d2393018ba6b604d63e9a52d6af976f069e8

                                        
                                            GET /landings/277113/1669379644/images/110010_4.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: 5KBsv4rhIAaLrLac3Ir6+vZncneXocapwcfUwZ3FZGH1McNHLtbjqBDM4sjP3ZyqmAZkDxUTDiw= 

                                        
                                            
x-amz-request-id: 2WC5ESVR5ZYN9R99 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT 

                                        
                                            
ETag: "daf4cb58fb756b1ed20036941b7a6b72" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 55243 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 682x388, components 3\012- data

                                                Size:   55243

                                                Md5:    daf4cb58fb756b1ed20036941b7a6b72

                                                Sha1:   f59a45cb83366de64071b3a35dfcb54aabbdcd9a

                                                Sha256: 42b2fe5d347c3c56725d0addd7129d13ce335df871730534ecee42d2df3a637b

                                        
                                            GET /landings/277113/1669379644/images/icon-direct.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: fjG69IIwDfwulG7VLDD9468A6iF188MaYcyYWjZAgx5eAv3MMIroX+tvwCy6xETM9rtMSc8ylps= 

                                        
                                            
x-amz-request-id: MY9JD3YTK4Q482CE 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT 

                                        
                                            
ETag: "9adf524396b45e89252717b159cfb95d" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1141 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1037)

                                                Size:   1141

                                                Md5:    9adf524396b45e89252717b159cfb95d

                                                Sha1:   39a3a6bc588085fc604976c6bb4cfe42dfc8dc50

                                                Sha256: e0705f46c1c0c8fd1c1d82f60925008491aa7a2b2ed0351fac96c76d5f2bf13d

                                        
                                            GET /landings/277113/1669379644/images/unlock.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: R6//fMBZ+WqzZlUwNOK5K9jsfpLLzsT8sqtp2bzwrxSIEtTBBduJqe9iYOqOpOw2mwT4UIH/aB0= 

                                        
                                            
x-amz-request-id: 7HCCF2VQGNYFD9MT 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT 

                                        
                                            
ETag: "a732e1e06affb4575c050fdb0131e5ca" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2378 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944)

                                                Size:   2378

                                                Md5:    a732e1e06affb4575c050fdb0131e5ca

                                                Sha1:   da4f4f204a4d22c7424274a91520e0ea993c48c7

                                                Sha256: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f

                                        
                                            GET /landings/277113/1669379644/images/5-eu.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: G/6VM0YcktryTJG8EXYBfrJdNKigyOLS2f+EHwCyYMCu1J+i/GGMsDxWr/mCZNIvsQEhSO2K9ig= 

                                        
                                            
x-amz-request-id: MY9H4T3JSXZMASGT 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT 

                                        
                                            
ETag: "08c6cea7e489f3caf50bfa02fcffc8d5" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 15153 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   15153

                                                Md5:    08c6cea7e489f3caf50bfa02fcffc8d5

                                                Sha1:   0cfe3d1447e01aaea5fc2fada138c1fa21a93c86

                                                Sha256: 0d825e2c84a926c72864a619b1d587c3716a9043321fba9913db5d3c8e3e444a

                                        
                                            GET /landings/277113/1669379644/images/icon-home.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/landings/277113/1669379644/css/style.css?1669379644 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: oisjDBEIid/BWS1VMF7M8BXj5nQrOoS8zpVUKO4dSf0VzQ/DY0g2b/v1qKnSSY4JW53z+j58k4A= 

                                        
                                            
x-amz-request-id: 7HC2X2BSH88RYRSB 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT 

                                        
                                            
ETag: "02866968d59a649b76df83c300d2d8f6" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 889 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (785)

                                                Size:   889

                                                Md5:    02866968d59a649b76df83c300d2d8f6

                                                Sha1:   8293027c754094ab05cb7d6daa7f7cdb1be5c98e

                                                Sha256: ce26e303b33d69ca20eb3079b4c37ed364eacb8c633260c56315d6db74414b74

                                        
                                            GET /landings/277113/1669379644/images/icon-plus.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/landings/277113/1669379644/css/style.css?1669379644 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: ezyYnUJiRM+5IyxrvKoeVfN9lnIBO5MRuhZEZ0h9S26hyWQ5+nTTPhft40XM6JbGZV3Rp/XoLT4= 

                                        
                                            
x-amz-request-id: MY9T8MG2YGG6SWZW 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:06 GMT 

                                        
                                            
ETag: "f89e15ef5cf4b32ca987f73bd4a2ef9d" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1117 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (513)

                                                Size:   1117

                                                Md5:    f89e15ef5cf4b32ca987f73bd4a2ef9d

                                                Sha1:   0f55d36995906b78bd98f23c7fdc67778212b7fc

                                                Sha256: 7b023c50adbfe6554e1bf1986a12de8ba9e47c5d14a3e57318d117004ea6a641

                                        
                                            GET /landings/277113/1669379644/images/icon-user.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/landings/277113/1669379644/css/style.css?1669379644 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: tPfnQ1EthpTH1eHB+buH6lURHZbtTFqB1z0EZQG3XRrROOPEXq8pi/MG03t3J9M+fqv0/yKWj6g= 

                                        
                                            
x-amz-request-id: 7HC7N8985FT3D365 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT 

                                        
                                            
ETag: "00aa56c530f0df6ddbb8805f25376920" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 844 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (437)

                                                Size:   844

                                                Md5:    00aa56c530f0df6ddbb8805f25376920

                                                Sha1:   2331bb67d5538e5fb2c010ef41541ce8dc8acfc1

                                                Sha256: ed65348e7b16bbe9b436282214590814692d0fb779fc2155c82ca0d94fe5a94e

                                        
                                            GET /landings/277113/1669379644/images/shutterstock_751200268_web_2.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/landings/277113/1669379644/css/style.css?1669379644 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: B5x8Hzv84D3d5dr2f4P7zVRoVo/G5Q6pzbSNy8r9PiNqtekTQrHAmJwesMdjcmfSFFNtfDw2G7g= 

                                        
                                            
x-amz-request-id: 7HC1AMTN2X4Y2AMZ 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT 

                                        
                                            
ETag: "0666da291b2e75b6dfcc14444d83ab13" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 94922 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 1920 x 1080, 4-bit colormap, non-interlaced\012- data

                                                Size:   94922

                                                Md5:    0666da291b2e75b6dfcc14444d83ab13

                                                Sha1:   563a6c7c74f65f7fb4505cfc7c5f41b459e26cbe

                                                Sha256: 2d5acbd7c7a2e91720c41c64b389b99377d415574911488db2540a5d7770ce09

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    b05606331c6f88a724d9e404e62974e4

                                                Sha1:   72176bc6b618fbbe567b5746ed54e14d381a9815

                                                Sha256: 7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    b05606331c6f88a724d9e404e62974e4

                                                Sha1:   72176bc6b618fbbe567b5746ed54e14d381a9815

                                                Sha256: 7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    b05606331c6f88a724d9e404e62974e4

                                                Sha1:   72176bc6b618fbbe567b5746ed54e14d381a9815

                                                Sha256: 7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    e9895464b828d538dc654c678c82b181

                                                Sha1:   af5791cd48761cb3f3f979b481c23e1508692823

                                                Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

                                        
                                            GET /landings/277113/1669379644/images/favicon.png?t=20221126224144 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: nEj51ZZ1wLdIq50AKC1VA1oI/N/I5Vq1pF8Ywlm9ZiUVlt1bfWcCQQW5qZCNqiTLfmUm0+pdMgQ= 

                                        
                                            
x-amz-request-id: MAWX1TH0VTXFEY3S 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT 

                                        
                                            
ETag: "40a54c3ecf143b64096b063ff793fdbb" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 4093 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   4093

                                                Md5:    40a54c3ecf143b64096b063ff793fdbb

                                                Sha1:   017eafffc5e55226a2aec0dd3c03f1b6130a6bab

                                                Sha256: 39b439471019cb16f819e05166d23492593310fd55cce8471062d8f2dc5de423

                                        
                                            GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1 

                                        
                                            
Host: www.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript; charset=UTF-8

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="firebase-js" 

                                        
                                            
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} 

                                        
                                            
content-length: 10017 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Mon, 21 Nov 2022 18:29:53 GMT 

                                        
                                            
expires: Tue, 21 Nov 2023 18:29:53 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 447112 

                                        
                                            
last-modified: Thu, 10 May 2018 20:35:52 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (35547)

                                                Size:   10017

                                                Md5:    fa9987a23f5a9d865766e952511baa30

                                                Sha1:   f2e620b99ee61a01671ba6a9e22ca75d58a1b52d

                                                Sha256: 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 4803 

                                        
                                            
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cOo4iFHoIAMF2-g= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg== 

                                        
                                            
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 26 Nov 2022 21:42:14 GMT 

                                        
                                            
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc" 

                                        
                                            
age: 3572 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4803

                                                Md5:    cc0a257323f882caff067adb86d906e4

                                                Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc

                                                Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8817 

                                        
                                            
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cJ40OEOqIAMFaOg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA== 

                                        
                                            
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 26 Nov 2022 10:16:33 GMT 

                                        
                                            
etag: "308c08784ce4a0757cbd112807555b83e17a1d56" 

                                        
                                            
age: 44713 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8817

                                                Md5:    741ddfb19764ac9a77509e7e87cfbfb2

                                                Sha1:   308c08784ce4a0757cbd112807555b83e17a1d56

                                                Sha256: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 5103 

                                        
                                            
x-amzn-requestid: 203eadee-9375-4290-ae0a-dd48e83df697 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cFGzTE90oAMFTyA= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-637eb814-2c32253b155d5dd0283fdd07;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Thu, 24 Nov 2022 00:17:24 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: mcJEBmwUhmWYAGJVngi2W0YHXEVdLlSREViZLePCgIlcY7Z755i17w== 

                                        
                                            
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 26 Nov 2022 14:36:46 GMT 

                                        
                                            
age: 29100 

                                        
                                            
etag: "10577d9fc19028a0e0303634ec16ad8b2d41fa7a" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   5103

                                                Md5:    116eb5028a206e55f758f3e34887c87e

                                                Sha1:   10577d9fc19028a0e0303634ec16ad8b2d41fa7a

                                                Sha256: d5d0f5518f8346e78f00a57632efe36f3363cabfa9abb30b7bea60261b29910b

                                        
                                            GET /landings/277113/1669379644/images/4.mp4 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Range: bytes=0- 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jqkkq.excelientdates.net/ 

                                        
                                            
Sec-Fetch-Dest: video 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 206 Partial Content 

                                        
                                            
Content-Type: video/mp4

                                        

                                        
                                            
x-amz-id-2: hTy9Nr2bFgSrHAKSXl+PmlSYpCRoiVwB11zpGS6ogh2uJ653Uq4t/jTpUbpGRvF283qVievUeJs= 

                                        
                                            
x-amz-request-id: EPFK1EHHG5V8HAKZ 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:34:07 GMT 

                                        
                                            
ETag: "7be5f3025f66769e720214f2fd221905" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Date: Sat, 26 Nov 2022 22:41:45 GMT 

                                        
                                            
Content-Range: bytes 0-1264919/1264920 

                                        
                                            
Content-Length: 1264920 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /c/da57dc555e50572d?s1=15966&s2=56630&j1=1&j3=1&s3=3.testse2&click_id=68-1381-20221127014141e713a308 HTTP/1.1 

                                        
                                            
Host: jqkkq.excelientdates.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://erasmus-lean.eu/ 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         63.32.216.166

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=utf-8

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sat, 26 Nov 2022 22:41:44 GMT 

                                        
                                            
set-cookie: unique_id=6381decd00032e77; Path=/; Expires=Wed, 25 Jan 2023 22:41:44 GMT; Secure; SameSite=None
unique_id2=63827b4a0003ca5c; Path=/; Expires=Fri, 24 Feb 2023 22:41:44 GMT; Secure; SameSite=None
63827b4a0003ca5c_c=1; Path=/; Expires=Fri, 24 Feb 2023 22:41:44 GMT; Secure; SameSite=None
ref_token=116914_15966_156428_167841_1018_35389_17969_160484_64098_153990_177565_178740_165937_14490; Path=/; Expires=Mon, 26 Dec 2022 22:41:44 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Sat, 26 Nov 2022 22:41:44 GMT; Secure; SameSite=None
63827b4a0003ca5c_sl=[277113]; Path=/; Expires=Sat, 10 Dec 2022 22:41:44 GMT; Secure; SameSite=None 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	erasmus-lean.eu/
IP	104.21.23.203 ()
ASN	#13335 CLOUDFLARENET
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-11-26 22:41:55 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	4
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (14)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.21.23.203

Last 5 reports on ASN: CLOUDFLARENET

Last 5 reports on domain: erasmus-lean.eu

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (24)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (81)

Overview

Domain Summary (14)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.21.23.203

Last 5 reports on ASN: CLOUDFLARENET

Last 5 reports on domain: erasmus-lean.eu

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (24)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (81)

Network Intrusion Detection Systems