GET /44542/3458/0/?aff_sub4=_bucket&aff_sub=;&aff_sub2=1743&aff_sub3=wsdcj2sg4gv1ca1livjdjadc&source=102695b415cb779a5230954feb815b&aff_sub5=_ HTTP/1.1
Host: t.anmdr.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
 54.230.111.123
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Server: CloudFront
Date: Thu, 08 Dec 2022 10:21:53 GMT
Content-Length: 167
Connection: keep-alive
Location: https://t.anmdr.link/44542/3458/0/?aff_sub4=_bucket&aff_sub=;&aff_sub2=1743&aff_sub3=wsdcj2sg4gv1ca1livjdjadc&source=102695b415cb779a5230954feb815b&aff_sub5=_
X-Cache: Redirect from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TM78BX4ZiLxQzXu0JUyeD_54XgRFo3EYxdsWZymPdJvJX2ShN6VrDw==
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12410
Expires: Thu, 08 Dec 2022 13:48:43 GMT
Date: Thu, 08 Dec 2022 10:21:53 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2350
Expires: Thu, 08 Dec 2022 11:01:03 GMT
Date: Thu, 08 Dec 2022 10:21:53 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 10:08:11 GMT
age: 822
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9834
Expires: Thu, 08 Dec 2022 13:05:47 GMT
Date: Thu, 08 Dec 2022 10:21:53 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: 9EEUNU7FgSoddMMjjihndI1bDnTfc8tFHGO9Vpzh+NaSjaeuwIA1bLgd77Jub6GTDACy6Eg+yZg=
x-amz-request-id: JZ7Z6X9WF9PC7RMC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 09:49:44 GMT
age: 1929
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Thu, 08 Dec 2022 10:21:53 GMT
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=120208
Date: Thu, 08 Dec 2022 10:21:53 GMT
Etag: "6390e59b-1d7"
Expires: Fri, 09 Dec 2022 19:45:21 GMT
Last-Modified: Wed, 07 Dec 2022 19:12:27 GMT
Server: ECS (dcb/7F16)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vV0f_ylCq7iwPXz6h41VGqRiCF4RrT3l6jK9DRxjnTCfB2X-nwX78A==
Age: 1974
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 10:07:58 GMT
age: 836
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /44542/3458/0/?aff_sub4=_bucket&aff_sub=;&aff_sub2=1743&aff_sub3=wsdcj2sg4gv1ca1livjdjadc&source=102695b415cb779a5230954feb815b&aff_sub5=_ HTTP/1.1
Host: t.anmdr.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
54.230.111.38
HTTP/2 303 See Other
content-type: text/html; charset=utf-8
content-length: 438
location: https://jwbvdz.exceilentdate.com?utm_source=1e3a4e532f1c7040&s1=120749&s2=1506505&s3=44542&s5=1743_&click_id=102485bf162f2506881e20258189c3&j1=1&j5=1&j8=1&j9=1
server: nginx/1.19.0
date: Thu, 08 Dec 2022 10:21:54 GMT
set-cookie: enc_aff_session_3458=ENC035e2ff70e216784b0f69f32ccf3d4dba13b024ef81c9c5ce400e9b0ea4f8deae0473537c35da0cd05044843d05ca9809e12e0345b4025990debc99890c11d4f74383ccf0aefb256b478575e97f88b45542527ccd0fe5873197e64ed51bd3ab1e3191d8be488d686d8e84db48f88931d40efee602b349516008c49a4de4dab693a290b7085d173f2c2c95473de33d1cda699ac71ee3ea51dba7815865b29598916d55ee174d04b69a9ddbe6791e85a078079a1429390ac270e940c2f46082eb3091a3d1986; Path=/; Expires=Sat, 07 Dec 2024 10:21:54 GMT; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D; Path=/; Expires=Sat, 01 Nov 2025 21:01:54 GMT; Secure
tracking_id: 102485bf162f2506881e20258189c3
vary: Accept
strict-transport-security: max-age=15724800; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RNKrwkTj-mOWy12w0S7Fobs325kH-qirJ5OXpx4l59qh2DhZT6DjCA==
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 6581
Cache-Control: max-age=88477
Date: Thu, 08 Dec 2022 10:21:54 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 10:56:31 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8DD16DB0C5D2553DE11C0D08A06FF5364125FFFCF0129B2523938777F0C36554"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4705
Expires: Thu, 08 Dec 2022 11:40:19 GMT
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: snaWj1dL+c+8kja7irJNGg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
52.38.139.17
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IDxUqErZIZFn58L6AtzywiQm5Ag=
|
GET /landings/277392/1669911562/css/popup.css?1669911562 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: text/css
x-amz-id-2: d+zhsAaILqma79IJN9B9cPD1xTZWVSAW5eHr5FTq/eLnge2D7FU/Y265g//t+hCjwDJ5ht4N5R8=
x-amz-request-id: 6X6B3K3S78YZGZRZ
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "b47a3a5faf928711066b6f0deb015420"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 08 Dec 2022 10:21:54 GMT
Content-Length: 619
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/css/reviews.css?1669911562 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: text/css
x-amz-id-2: 6mQ4BppGehPDvlY3aZGcLk09imfK3oBWgHLUQmW6ArmwUOkiXQutmSTZH0QDzAcAi8GXWvEj8dU=
x-amz-request-id: 0WE8X99QTY2E2EYM
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "b8b7d60d5363b89bbd495616c2d5c3f3"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 08 Dec 2022 10:21:54 GMT
Content-Length: 898
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/js/script.js?1669911562 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: qUXmane8as/zedBYgOxk9FxGBo0aPbawBPweakxCunLFA+jC/72bfCA3fEPeXBjDPrXcOBIKuas=
x-amz-request-id: 6X6E9P9R9HTGFXX4
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "9a75d29efe08c33843a4d62f7b35836d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 356
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/css/main.css?1669911562 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: text/css
x-amz-id-2: yVfNzihmr2Uf9egiuIKVOvQrtLi/bu6iXu7fd98BSD8jsJQ1m5Jh3UF+lkE38ERPuWHls7Gt/mQ=
x-amz-request-id: 6X6566RFPJS34NXB
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "367c2f8f5022188248358ef69e97c014"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 08 Dec 2022 10:21:54 GMT
Content-Length: 1713
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/js/title_tanslate.js?1669911562 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: N2lfKGpVF+kSjAxDE/G59Bsm7M+FoV8KTXjNLC9+ZmtsAjdh4YRtqhxc3B0i0W5zELvtVIPP6Tc=
x-amz-request-id: 6X6CMJ5TKKV39AD3
Last-Modified: Thu, 01 Dec 2022 16:19:26 GMT
ETag: "5f373fa5bf21c44b9ad23b70ef96e73d"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 08 Dec 2022 10:21:54 GMT
Content-Length: 1298
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/js/trls.js?1669911562 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: rnTlQUsWwXNdSIxLFclvlhBv2OReSqwTDk8bZXPmEbDdPUUdKQTRMxRUr7esb9Y0yV76GwqZTHY=
x-amz-request-id: 6X65ZAX79K0RMP50
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "08398cde9d04669865ac1a40cf30840b"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 08 Dec 2022 10:21:54 GMT
Content-Length: 10725
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/js/translates-review.js?1669911562 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: Q6Ws5ZhRu3BlQgN7PegHxEjUn15gI6IB+cr+H4ei+irX+o6bqKpOQ3QRGbYYqX7fcbcS31yMkDw=
x-amz-request-id: 6X67QSMPM4HBGVNH
Last-Modified: Thu, 01 Dec 2022 16:19:26 GMT
ETag: "8547abc3c71e4428fb56d97051398655"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 08 Dec 2022 10:21:54 GMT
Content-Length: 16488
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/js/jquery-2.2.4.min.js?1669911562 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: UYN2pXcKbo/O/B4D0LGb1nRVLBvd8KBsKKUHgh9E/o3uO1N1eLr5eJbiM6T+Rk7NSbYmVvr3P4U=
x-amz-request-id: 6X65HJP8N9HX8XY4
Last-Modified: Thu, 01 Dec 2022 16:19:26 GMT
ETag: "61a04f254179208c931ebf40f4cfddf5"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 08 Dec 2022 10:21:54 GMT
Content-Length: 36023
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/password.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: hD9MsS/3j/rXCrSjS2FyPpvEpX9gbdTze1cA69ATBH66ZhVy7tI4OHIfU0GBWwFFEcUm4EtZxVU=
x-amz-request-id: J69KSTNWCJ6ATNPP
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT
ETag: "f42aef7f97d4c9bdb074673081f38ac7"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1339
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/1-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/jpeg
x-amz-id-2: C0BudRG8Lud7J3dgPkNjWW0EAVTR+MrD9Ak+8y01yvZ/2MFjQQ+Xy049Up88c2+EUyeQCDwy7rk=
x-amz-request-id: J69PNHW5F4JPFZSS
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "6e6d0b84c81d847e24671a711115a781"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 4292
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/4-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/jpeg
x-amz-id-2: Rfc++k8L0ltvDFau01Dn1JbHyaQuCIVuBTjK/YDmX0DQNoMnleyRcBFfLDN0hZPkABwcAVaeNec=
x-amz-request-id: J69SZX3DEV821DPV
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "cb3aff7c886e4f72a98172b873b5e62d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2586
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/shield.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: oNgvcsrLMFc6qrFTvmpjfGchapYe2pm5WpeKXbTYmd2t71EvuIg/HBQ5LK5q+BFIixMe+siuCq8=
x-amz-request-id: J69MJT6NT790J8Y2
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1539
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/icon-city.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: qOeGLQ68uoaB/TqB/CIxnMIq7FO7LPjYgFYN8qbTFWmB27KwmEul3kDJCgDdLrnP8D6WyQTDIeI=
x-amz-request-id: J69G3E788E874BKY
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT
ETag: "5f5ead641bc30316f498592eec2016a1"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 839
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/unlock.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: XZ946l8iXRFi96LCRQ9oBG6/QM5QavYbdndGVdESX/tFNSabnRUuWDu+2gDuTfIi0SnXd6y+X34=
x-amz-request-id: J69T0ZDGAXN9D088
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "a732e1e06affb4575c050fdb0131e5ca"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2378
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/2-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/jpeg
x-amz-id-2: 1RyjnDxyoTDHa7GvRnRFAl+Xp1h8CI6mAqJe2DGmprnLdJFtUM8VcQJGC2D/axHTqCuvs+hOyKQ=
x-amz-request-id: J69WHDQ5B0ZRYYBD
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "66b6dc51bd19c799dcadf1dbeb628d9c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2009
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/7-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/jpeg
x-amz-id-2: fvVoOHjqN+UIZIZpMxIiYiblcWpEoQOJB25FrI4Sj6LSQm5PqXx8kIR9SE78cAg8c+8sI03D4EA=
x-amz-request-id: J69ZWQ54X57WRRKD
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "8155d8ecc7dc2d9b29cf99ab85c3d2a8"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2282
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/6-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/jpeg
x-amz-id-2: 23a+s1CLd70MT+0kQ4HpctF9Tx5xSFxZG2rkhlkZ6ALvhLloIfdk/ps4rqjCW0TL33jagREEeCU=
x-amz-request-id: J69YH74D9MBBVCF0
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "9a6870069cb979e16b239f9ed485fb3c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 3256
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/filter.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: OthqNb8lTDsqbfiusie+VHtpAJ8QHcBhbpH0TRqAg5/BZYU++VqhOXl33nRSIVoBIbNrSvh5VuE=
x-amz-request-id: FYVBD85XVHDHVGX2
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT
ETag: "4d51ab70b5dfb7e1262bc7b07d0cfdc6"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2287
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/5-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/jpeg
x-amz-id-2: drlY+tgd+E59WIMOIGjohFon9yvMco2gLIchn1SCi/jeGztSeE/ytVDn19Wr21zQ1hOEhSzZh+s=
x-amz-request-id: 2BC8TYAGW0103HX4
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "27109a247208262e6293950ca8f5450d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2879
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 10:21:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 10:21:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /landings/277392/1669911562/images/blocked-icon.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: TNkNaVI5v6sEwcjO/5+cO7pOSsQHTH0xzjnKNP7FEyTpe4knEO9r2f853Bdn2SQmjoqqPUIykjo=
x-amz-request-id: J69JJN04F89SCT9N
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT
ETag: "87487ad255dde0624f59abb85602defc"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 502
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/camera.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: /8KKCBEMaVS78JoOficQEMGZKSFy7HQlPzW1JCEPqf8m7MDMy1M4oaxNDEboostoAT3aV7ywJ5o=
x-amz-request-id: J69MGMF8VGZM8QRT
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT
ETag: "2241535df47e4118224448152eb91b83"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 15843
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/8-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/jpeg
x-amz-id-2: hLfvbgZCvSVUebfSzs/vXeQVqTDwowivXd6K/gHuNOX3QQF7JrsJIcgTgdeoZcdJGHnY7dJDxmk=
x-amz-request-id: J69PMEJ9MHKM6EJR
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "41bbda91cef3f22db1d45d66f7ca0961"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2458
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/110010_1.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/jpeg
x-amz-id-2: ZSd9X+VvgmvmENjQHojycC7JL//Sm4RSvzn06UwIWRF981bX/5MVVUCjmfzCQvT2ZMPr8Qkok+U=
x-amz-request-id: FYV0DEE1XM59J94W
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "f0a79db4dd92694735ee0e6a311fc42c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 56596
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/btn.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: mV/DJgQQ8svvkzBlmb0jNkIUxt9FXdZ2dpNH3QOlCn6/7h20A0n1lMrSKikai4G9M4ylec3Jba0=
x-amz-request-id: J69SD8ZTWZ9WDN78
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT
ETag: "9ec971aedb388ea8b434df05fb1de307"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 3302
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/277392/1669911562/images/preview.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/jpeg
x-amz-id-2: ztM/+lE7rMkSYSNSL3QtLL2k1yXicKOzhIKnKM6qJpivbdOn81TBEfgKhIZXq8Qv/CcC2dG/gO8=
x-amz-request-id: FYVFZ7AWPBNWFENY
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT
ETag: "a04e546bb075c2adba6559501db4e8d9"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 149522
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
--- Additional Info ---
Magic: JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=862, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=593], progressive, precision 8, 593x593, components 3\012- data
Size: 149522
Md5: a04e546bb075c2adba6559501db4e8d9
Sha1: fcc89d946f43be0505427f486e285dda5bedf24f
Sha256: 680b57e32b4b3dbba13d5be961805fbc627d902c40a0821c26ea6454c4b2792a
|
GET /landings/277392/1669911562/images/lightning.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: aka03fKpDEBbDMe/mD2UvHV7esxHW5K8X2Z6V8GEhDVPthWVNdHvzdf1zpTGvNATn9c3WDDthF0=
x-amz-request-id: J69QSM952KY1G4E0
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT
ETag: "f7d041540d78ae007d1fe5aed28bfe22"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 15158
Date: Thu, 08 Dec 2022 10:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 10:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /landings/277392/1669911562/images/action_icons_20px_2x.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/277392/1669911562/css/reviews.css?1669911562
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: WuFViMyHFoayYQqxkC5tVjgTMOxTlnbxU2+YdTvZuSrR7w3OfF4Ynix1XCs9hVHkVulcPoN/RAQ=
x-amz-request-id: R9893TJFQJ09ZK64
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "b699975b5fe73b087e711a33ff24ee1e"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1726
Date: Thu, 08 Dec 2022 10:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 10:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /ortb HTTP/1.1
Host: jwbvdz.exceilentdate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 295
Origin: https://jwbvdz.exceilentdate.com
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/?s1=120749&s2=1506505&s3=44542&s5=backuser&click_id=102485bf162f2506881e20258189c3&iexpp=1&j1=1&j5=1&j9=1&utm_source=1e3a4e532f1c7040&j8=1
Cookie: unique_id=639089a4000c3f0c; unique_id2=6391bac2000eb0d9; 6391bac2000eb0d9_c=1; ref_token=31972_120749_120341; 6391bac2000eb0d9_sl=[277392]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
 63.32.216.166
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
server: nginx
date: Thu, 08 Dec 2022 10:21:55 GMT
content-length: 13
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 10:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /css2?family=Ubuntu:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 10:21:54 GMT
date: Thu, 08 Dec 2022 10:21:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jwbvdz.exceilentdate.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:33:54 GMT
expires: Thu, 07 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 53281
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /landings/277392/1669911562/images/favicon.png?t=20221208102154 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: MhqFP324gNqLccFVfauaeVjPr2RCUP1Nw0/++NFE4e0VejX4dFv5uWoYf2r8DJRvRNAjO8qdf5Q=
x-amz-request-id: 169R0M9C1DN7BM1C
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT
ETag: "26ef38d37b06edf5c2a9c5941bdf20c7"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 5207
Date: Thu, 08 Dec 2022 10:21:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 10:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12612
Expires: Thu, 08 Dec 2022 13:52:07 GMT
Date: Thu, 08 Dec 2022 10:21:55 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12612
Expires: Thu, 08 Dec 2022 13:52:07 GMT
Date: Thu, 08 Dec 2022 10:21:55 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12612
Expires: Thu, 08 Dec 2022 13:52:07 GMT
Date: Thu, 08 Dec 2022 10:21:55 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15e59c3f-fa3a-4698-96c2-2e89662ffa9f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8179
x-amzn-requestid: 39aa4016-4f48-4d2a-b94b-05432980d66a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czCruHckIAMFkHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639117e4-1953985a5c8d2da8239ec8e8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:47:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qKaRX4QpQU2U8J-jk1lWjhAooObsgxfHuNXv5Bbc69IEMCXAyIESeQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:50:01 GMT
age: 41514
etag: "979910df445a5c4d3513c8c25e289800335f646d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3236488e-3e39-44b6-b864-0f7ede8ee3f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9376
x-amzn-requestid: bf2f33a6-7f13-4f5b-ba9c-da33282135b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctERHFRSoAMFgYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb406-121af6ba1b7b6a3066ffa103;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:16:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yTLFIBUWHjudn2h6VKM79RUnXfuUTmQBkYSCFrRuY7_biVW5bEKZfA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 17:39:05 GMT
age: 60170
etag: "e9106fec14ddda290951c61eda64a69ada9a244a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10164
x-amzn-requestid: a0cb7259-0a07-44f5-91cd-e96b8d9c9cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnAPOGSnoAMFUUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c472e-799b6ee425e29fb70ff7e4ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:07:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5Q2LRCrEYVZz_KldQARUQ26O1mv0G7rMAPQXGkBzUnERF-WjtZPMJA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 10:23:11 GMT
age: 86324
etag: "9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb40390-82ef-453b-afca-e37aa7674ed3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9058
x-amzn-requestid: 1f7fdd3d-1e65-46f7-8ef2-d164bf81e72b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz4FtuIAMFjsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-4866b3fd61fdb35d34317038;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6ET1Tfo1QXRpjkWyOE7jfYnWToK8h7ojB31efNc09awacwlCIYEPjA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 05:05:36 GMT
age: 18979
etag: "98556b27bc3759d0ceb8200ff5bc7b9567e428a5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6110
x-amzn-requestid: 2ebf542a-dacc-472a-81c0-0c69cb1ec143
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEQAH2doAMFljA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb3ff-7173ff7941b57fa163e3cc6b;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Bo1JGLLmbH9LRrcXA4i8qVD1ilMqHxNWq1u52RhGMAdAhywK42lMPA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 01:57:38 GMT
age: 30257
etag: "c3b915cb579b651db25442fea0bbedd0d292c0fc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:33:19 GMT
age: 38916
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 10:21:54 GMT
date: Thu, 08 Dec 2022 10:21:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /landings/277392/1669911562/images/bg.mp4 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://jwbvdz.exceilentdate.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.11.11
HTTP/1.1 206 Partial Content
Content-Type: video/mp4
x-amz-id-2: /KAUAbvaYENC7Dv+tl8G32zIKBBd0Oo8622meavyV2KZ+mRUgsxjaVPUrc9bK5RDIeX85ll+1cY=
x-amz-request-id: J69TQE1CZ0G888N1
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT
ETag: "e76858ed8489b22c01e5e7bc891c4eab"
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 08 Dec 2022 10:21:55 GMT
Content-Range: bytes 0-1077924/1077925
Content-Length: 1077925
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /?utm_source=1e3a4e532f1c7040&s1=120749&s2=1506505&s3=44542&s5=1743_&click_id=102485bf162f2506881e20258189c3&j1=1&j5=1&j8=1&j9=1 HTTP/1.1
Host: jwbvdz.exceilentdate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
63.32.216.166
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: nginx
date: Thu, 08 Dec 2022 10:21:54 GMT
set-cookie: unique_id=639089a4000c3f0c; Path=/; Expires=Mon, 06 Feb 2023 10:21:54 GMT; Secure; SameSite=None
unique_id2=6391bac2000eb0d9; Path=/; Expires=Wed, 08 Mar 2023 10:21:54 GMT; Secure; SameSite=None
6391bac2000eb0d9_c=1; Path=/; Expires=Wed, 08 Mar 2023 10:21:54 GMT; Secure; SameSite=None
ref_token=31972_120749_120341; Path=/; Expires=Sat, 07 Jan 2023 10:21:54 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Thu, 08 Dec 2022 10:21:54 GMT; Secure; SameSite=None
6391bac2000eb0d9_sl=[277392]; Path=/; Expires=Thu, 22 Dec 2022 10:21:54 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
3.68.5.1