urlquery - report: t.anmdr.link/44543/7383/23465/?aff_sub4=ALGO_bucket&aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&aff_sub2=7114&aff_sub3=wjo7okck0blq7cuki8lgsl1s&source=102208cf975c1384f944de729974cb&bo=2753,2754,2755,2756&aff_sub5=

Scan Date	Severity	Indicator	Comment
2022-12-04	2	jwbvdz.exceilentdate.com/ortb	Phishing

Date	UQ / IDS / BL	URL	IP
2023-02-01 16:13:29 +0000	0 - 2 - 0	cdn.urcnet.com/downloads/installers/component (...)	54.230.111.123
2023-01-31 09:23:11 +0000	0 - 0 - 1	www.your-prize.click/push/gc/win.html	54.230.111.123
2023-01-29 20:39:48 +0000	0 - 2 - 0	ingresoplexi.icfes.gov.co/kiosko/content/plex (...)	54.230.111.123
2023-01-28 10:05:45 +0000	0 - 2 - 0	cdn2-marcas-cnts-asts1-1.belcorp.biz/mx/wp-co (...)	54.230.111.123
2023-01-28 03:45:04 +0000	0 - 0 - 15	dw.lp.eu.mobilehub4u.com/lp/hr/mobilehub4u/CD (...)	54.230.111.123

Date	UQ / IDS / BL	URL	IP
2023-02-03 10:38:24 +0000	0 - 0 - 1	avider-prestry.com/17b07ab4-2bf1-4d17-b887-31 (...)	3.64.244.172
2023-02-03 10:36:54 +0000	6 - 0 - 7	www.onlineservicetech.website/landingpages/7e (...)	143.204.55.62
2023-02-03 10:35:15 +0000	0 - 1 - 0	www.jame.or.jp/wordpress/wp-content/uploads/2 (...)	54.238.77.19
2023-02-03 10:33:25 +0000	0 - 0 - 3	ww25.uaefreezone.net/wp-admin/freshback/noww_ (...)	199.59.243.222
2023-02-03 10:28:44 +0000	0 - 8 - 0	www.covidactnow.org/us/metro/birmingham-hoove (...)	143.204.55.56

Date	UQ / IDS / BL	URL	IP
2022-12-11 14:20:03 +0000	0 - 0 - 3	t.anmdr.link/75077/8047/27898/?aff_sub4=_buck (...)	18.67.17.126
2022-12-11 12:58:49 +0000	0 - 0 - 2	t.anmdr.link/44542/8140/27889/?aff_sub4=_buck (...)	54.230.111.38
2022-12-11 01:37:22 +0000	0 - 0 - 3	t.anmdr.link/75077/8047/27898/?aff_sub4=_buck (...)	54.230.111.117
2022-12-10 16:36:56 +0000	0 - 0 - 1	t.anmdr.link/75077/8420/30493/?aff_sub4=_buck (...)	54.230.111.117
2022-12-10 15:59:17 +0000	0 - 0 - 3	t.anmdr.link/75077/8047/27898/?aff_sub4=_buck (...)	54.230.111.50

Date	UQ / IDS / BL	URL	IP
2023-01-09 21:52:02 +0000	0 - 0 - 1	a.vfgtc.com/cb5cb9a8-26a4-42ae-946b-aae4b3e52 (...)	18.192.108.151
2022-12-27 07:20:00 +0000	0 - 0 - 1	jwbvdz.exceilentdate.com/?utm_source=1e3a4e53 (...)	63.32.216.166
2022-12-26 14:18:37 +0000	0 - 0 - 1	a.vfgtc.com/cb5cb9a8-26a4-42ae-946b-aae4b3e52 (...)	18.192.108.151
2022-12-26 12:57:14 +0000	0 - 0 - 1	www.intimatemilfs.com/index.php?ainfo=NTgwOTZ (...)	35.203.113.247
2022-12-24 00:46:20 +0000	0 - 0 - 1	a.vfgtf.com/ab267e05-23a0-430a-bac4-772f7f629 (...)	18.192.108.151

Request	Response
GET /44543/7383/23465/?aff_sub4=ALGO_bucket&aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&aff_sub2=7114&aff_sub3=wjo7okck0blq7cuki8lgsl1s&source=102208cf975c1384f944de729974cb&bo=2753,2754,2755,2756&aff_sub5=_{host} HTTP/1.1 Host: t.anmdr.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: t.anmdr.link/44543/7383/23465/?aff_sub4=ALGO_bucket&aff (...) FQDN: t.anmdr.link IP: 54.230.111.50 HASH: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d 54.230.111.50 HTTP/1.1 301 Moved Permanently Content-Type: text/html Server: CloudFront Date: Sun, 04 Dec 2022 12:04:11 GMT Content-Length: 167 Connection: keep-alive Location: https://t.anmdr.link/44543/7383/23465/?aff_sub4=ALGO_bucket&aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&aff_sub2=7114&aff_sub3=wjo7okck0blq7cuki8lgsl1s&source=102208cf975c1384f944de729974cb&bo=2753,2754,2755,2756&aff_sub5=_{host} X-Cache: Redirect from cloudfront Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: O8uCXH4CrrjL8fRqDLKM7NkV_FdVjumLJL4PNS6oy92b4kQS7sPViw== --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 167 Md5: f5d40b7259645010f9a248858ad14178 Sha1: b3051d17a6ec8c9e166bf09a62b48261ab86957b Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9" Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10239 Expires: Sun, 04 Dec 2022 14:54:50 GMT Date: Sun, 04 Dec 2022 12:04:11 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: cfec3d7283a9b66d2be426ce54d210f3 Sha1: 808c1feb1ba918951d1928c1f6bfc0c253262774 Sha256: 1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3" Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2660 Expires: Sun, 04 Dec 2022 12:48:31 GMT Date: Sun, 04 Dec 2022 12:04:11 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1ea206ac3c440825741687351f8c6e4e Sha1: 2f38dafd8c43dcce2411a0590bc5c02cd6286735 Sha256: 7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: Qy7pe8J1pg6vDAWBkURNPHrh3vQ2m5YxcyX2/i8vXgt+iMFAhhKM4/l1ZSZX48NM4Lpgcbxlby8= x-amz-request-id: S4GXYH2RKFZN9JMD content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sun, 04 Dec 2022 11:47:32 GMT age: 999 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3728 Cache-Control: 'max-age=158059' Date: Sun, 04 Dec 2022 12:04:11 GMT Last-Modified: Sun, 04 Dec 2022 11:02:03 GMT Server: ECS (ska/F70B) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: fb2c0697c6d9a96a5411dd2952947458 Sha1: 79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4 Sha256: 3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sun, 04 Dec 2022 11:20:06 GMT cache-control: public,max-age=3600 age: 2645 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 14cd9a0afb6ba9a763651d5112760d1e Sha1: 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 54.230.245.110 HASH: 7019fef60bb6c1a6167ece3e9d5b3ffaee36a06cee1108da518d8d61395a29f2 54.230.245.110 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=112681 Date: Sun, 04 Dec 2022 12:04:11 GMT Etag: "638b9fcf-1d7" Expires: Mon, 05 Dec 2022 19:22:12 GMT Last-Modified: Sat, 03 Dec 2022 19:13:19 GMT Server: ECS (dcb/7EA2) X-Cache: Miss from cloudfront Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: fY6AxBIjSyJIJkuoVyY7FBLAioEMVR-e4hhzd10HP89f1q_dCp361g== Age: 533 --- Additional Info --- Magic: data Size: 471 Md5: 61886f8fe43a42674bceb670b1fed9ca Sha1: ef174bafdb21bfd717aa8181a169fce5e1f0f741 Sha256: 7019fef60bb6c1a6167ece3e9d5b3ffaee36a06cee1108da518d8d61395a29f2
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Sun, 04 Dec 2022 12:04:11 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sun, 04 Dec 2022 11:11:19 GMT cache-control: public,max-age=3600 age: 3173 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3723 Cache-Control: max-age=165882 Date: Sun, 04 Dec 2022 12:04:12 GMT Etag: "638c632b-1d7" Expires: Tue, 06 Dec 2022 10:08:54 GMT Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT Server: ECS (ska/F70B) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 31b129c94a90b1e695b21395cb54e378 Sha1: a3cae46b48d469cc61ab0581303bcd5f5b654db9 Sha256: fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e
GET /44543/7383/23465/?aff_sub4=ALGO_bucket&aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&aff_sub2=7114&aff_sub3=wjo7okck0blq7cuki8lgsl1s&source=102208cf975c1384f944de729974cb&bo=2753,2754,2755,2756&aff_sub5=_{host} HTTP/1.1 Host: t.anmdr.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: t.anmdr.link/44543/7383/23465/?aff_sub4=ALGO_bucket&aff (...) FQDN: t.anmdr.link IP: 54.230.111.123 HASH: bc2ffbb1b18300397bcb9c60992f09609ac1ad2595b2a7598f1c97de4d2346d5 54.230.111.123 HTTP/2 303 See Other content-type: text/html; charset=utf-8 content-length: 564 location: https://t.crdefault.link/44543/1?aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&aff_sub2=7114&aff_sub3=wjo7okck0blq7cuki8lgsl1s&aff_sub4=ALGO_bucket&aff_sub5=_%7Bhost%7D&source=102208cf975c1384f944de729974cb&bo=2753%2C2754%2C2755%2C2756 server: nginx/1.19.0 date: Sun, 04 Dec 2022 12:04:12 GMT set-cookie: aff_ran_url_7383=23465; Path=/; Expires=Mon, 05 Dec 2022 12:04:12 GMT; Secure enc_aff_session_7324=ENC03790f4c24c2a86a5c49dbea680f756ab9304cdd84e27868432f431e6500be579c968dd73dfa0f569bc179fb4d983ab56a71b62f64b54ce7a70e7f04b7ff97afc56800ade1c962bf9cd190bdc281ab09a38ed0c6ddddf428c3262d0eaffde4b1cc1664bff5f586a96f5eca424c4e02f3c65a487c06105a0636caa5be02789cf3cb12b2c6b5a31af00e1ab6a0e2d9243572a85380724a0f62af8518d40ea89ecdc631e955d8eb37f304a39cb32e85055802294c8b1d2fbea5dbfefaab640b96034f2d116b62d874c4f5bfb0ec1e557a93f7d4c135e4d3f147f271fb8cdfb87d70880089d012; Path=/; Expires=Wed, 04 Jan 2023 12:04:12 GMT; Secure ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D; Path=/; Expires=Tue, 28 Oct 2025 22:44:12 GMT; Secure tracking_id: 10251da3593f6e0efb48d2b15f32c3 vary: Accept strict-transport-security: max-age=15724800; includeSubDomains x-cache: Miss from cloudfront via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: XDvZZ22_FO-id0OS4WxmCTg_bhYa0u0H5-UL8J_X7w4ZScNg7ODaWg== X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (564), with no line terminators Size: 564 Md5: 140dd9724c0dfb0f80eaefbf82f7645f Sha1: 9592d81d664263dc2119cc1c3827e4b760d91fa3 Sha256: bc2ffbb1b18300397bcb9c60992f09609ac1ad2595b2a7598f1c97de4d2346d5
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 54.230.245.110 HASH: 7019fef60bb6c1a6167ece3e9d5b3ffaee36a06cee1108da518d8d61395a29f2 54.230.245.110 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=114230 Date: Sun, 04 Dec 2022 12:04:12 GMT Etag: "638b9fcf-1d7" Expires: Mon, 05 Dec 2022 19:48:02 GMT Last-Modified: Sat, 03 Dec 2022 19:13:19 GMT Server: ECS (dcb/7F5F) X-Cache: Miss from cloudfront Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: J_HA02OsIsVpkrIQ6WCfVGYF6MPGBiu2hZL5vtzS1Z-zv8rwTxl3uA== Age: 2083 --- Additional Info --- Magic: data Size: 471 Md5: 61886f8fe43a42674bceb670b1fed9ca Sha1: ef174bafdb21bfd717aa8181a169fce5e1f0f741 Sha256: 7019fef60bb6c1a6167ece3e9d5b3ffaee36a06cee1108da518d8d61395a29f2
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: aFfPD4004mACxSG4TH9TDQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 44.242.41.15 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 44.242.41.15 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: C5sCI0PKxQO+8aDAmsl3T1XrGBQ= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /44543/1?aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&aff_sub2=7114&aff_sub3=wjo7okck0blq7cuki8lgsl1s&aff_sub4=ALGO_bucket&aff_sub5=_%7Bhost%7D&source=102208cf975c1384f944de729974cb&bo=2753%2C2754%2C2755%2C2756 HTTP/1.1 Host: t.crdefault.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: t.crdefault.link/44543/1?aff_sub=REDIRECTED_FROM_LEGACY (...) FQDN: t.crdefault.link IP: 54.230.111.123 HASH: 4dd4a2f3a9ab6ad583ffd7c18041929804e1b5fc70a7791e0bc0df3ca20864ec 54.230.111.123 HTTP/2 303 See Other content-type: text/html; charset=utf-8 content-length: 1100 location: https://a.vfgtf.com/ab267e05-23a0-430a-bac4-772f7f629740?subID1=REDIRECTED_FROM_LEGACY_LANDING_PAGES%3B102208cf975c1384f944de729974cb&affiliateID=44542&source=10238e221a9e3ebc876c4e478d9aca&subID2=44543&s2=10238e221a9e3ebc876c4e478d9aca&s3=REDIRECTED_FROM_LEGACY_LANDING_PAGES%3B102208cf975c1384f944de729974cb&s4=44543&url=1&affsub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&affsource=102208cf975c1384f944de729974cb&aff_click_id=10238e221a9e3ebc876c4e478d9aca&bo=2753%2C2754%2C2755%2C2756 server: nginx/1.19.0 date: Sun, 04 Dec 2022 12:04:12 GMT set-cookie: enc_aff_session_3785=ENC0311bbf23155ac8701258318960d108ba9e305a0a3e36beb1c9a0554efa130c67e0135203588c7b751fb6edeff50670dc5ffb9533c8bbbf743003756bb2d6ad9bf65b665a29ac18b1f7919b7402afb901008da3c1b6e0877ea29cba531bf5ff022d73ccc435ad138481c5764a87fba59ea5b41cfd2e5eeb25c373eed2a36df8ff5734f7efab92e1446bb9284ab4fc5b06fcd2adf6e77f6b68296017225d29da22d441c70a10810450b9bf5b3cd7bd18dd9f2e4434b1c5f4e427aa7e1fc131d709b066d37a603b93092240f4d894b42227f22a846b1c578c22efeacd5a3661f5ae402e74683; Path=/; Expires=Tue, 03 Dec 2024 12:04:12 GMT; Secure ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D; Path=/; Expires=Tue, 28 Oct 2025 22:44:12 GMT; Secure tracking_id: 10238e221a9e3ebc876c4e478d9aca vary: Accept strict-transport-security: max-age=15724800; includeSubDomains x-cache: Miss from cloudfront via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: ndk3wBxd-j9IcIfDE4yQw-78aqJGMjHzGhgM6UCUwMdIItBd9IKtew== X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (1100), with no line terminators Size: 1100 Md5: 156e48912d03d1f85ad6c099c5360656 Sha1: a745e25f13473e22d7a081ecac6af8ae8bbe1962 Sha256: 4dd4a2f3a9ab6ad583ffd7c18041929804e1b5fc70a7791e0bc0df3ca20864ec
GET /ab267e05-23a0-430a-bac4-772f7f629740?subID1=REDIRECTED_FROM_LEGACY_LANDING_PAGES%3B102208cf975c1384f944de729974cb&affiliateID=44542&source=10238e221a9e3ebc876c4e478d9aca&subID2=44543&s2=10238e221a9e3ebc876c4e478d9aca&s3=REDIRECTED_FROM_LEGACY_LANDING_PAGES%3B102208cf975c1384f944de729974cb&s4=44543&url=1&affsub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&affsource=102208cf975c1384f944de729974cb&aff_click_id=10238e221a9e3ebc876c4e478d9aca&bo=2753%2C2754%2C2755%2C2756 HTTP/1.1 Host: a.vfgtf.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: a.vfgtf.com/ab267e05-23a0-430a-bac4-772f7f629740?subID1 (...) FQDN: a.vfgtf.com IP: 18.192.108.151 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 18.192.108.151 HTTP/2 302 Found server: nginx date: Sun, 04 Dec 2022 12:04:12 GMT content-length: 0 cache-control: no-store, no-cache, pre-check=0, post-check=0 expires: Thu, 01 Jan 1970 00:00:00 GMT location: https://t.anmdr.link/44542/3458/0/?aff_sub4=_bucket&aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES%3B102208cf975c1384f944de729974cb&aff_sub2=44543&aff_sub3=wea7pnl89sk89cuki2e2bl14&source=10238e221a9e3ebc876c4e478d9aca&aff_sub5=_102208cf975c1384f944de729974cb pragma: no-cache set-cookie: ab267e05-23a0-430a-bac4-772f7f629740-v4=CG-mdk59RfcLqO3w77oIW6zqus1tIP7_4tiXrRlNxvg; Max-Age=86400; Expires=Mon, 05-Dec-2022 12:04:12 GMT; Domain=a.vfgtf.com; Path=/; Secure; HttpOnly;SameSite=None cc-v4=jnj5Xa9wI1eJZXUwZxtJiK%2F1xGcA8edpHIoCi%2BpsiKwEm9z2Bc6AmcY5dt%2BocrkwDtrfNaCiHDWf1CqZLcACHdGqTV0%2Fi1nugiflpGyeizf5kn3KN%2FFjWC1c6OzkO21quRKnSDREtl4PWKEZEoAz2A%3D%3D; Max-Age=31536000; Expires=Mon, 04-Dec-2023 12:04:12 GMT; Domain=a.vfgtf.com; Path=/; Secure; HttpOnly;SameSite=None X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /44542/3458/0/?aff_sub4=_bucket&aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES%3B102208cf975c1384f944de729974cb&aff_sub2=44543&aff_sub3=wea7pnl89sk89cuki2e2bl14&source=10238e221a9e3ebc876c4e478d9aca&aff_sub5=_102208cf975c1384f944de729974cb HTTP/1.1 Host: t.anmdr.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: aff_ran_url_7383=23465; enc_aff_session_7324=ENC03790f4c24c2a86a5c49dbea680f756ab9304cdd84e27868432f431e6500be579c968dd73dfa0f569bc179fb4d983ab56a71b62f64b54ce7a70e7f04b7ff97afc56800ade1c962bf9cd190bdc281ab09a38ed0c6ddddf428c3262d0eaffde4b1cc1664bff5f586a96f5eca424c4e02f3c65a487c06105a0636caa5be02789cf3cb12b2c6b5a31af00e1ab6a0e2d9243572a85380724a0f62af8518d40ea89ecdc631e955d8eb37f304a39cb32e85055802294c8b1d2fbea5dbfefaab640b96034f2d116b62d874c4f5bfb0ec1e557a93f7d4c135e4d3f147f271fb8cdfb87d70880089d012; ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 TE: trailers	URL: t.anmdr.link/44542/3458/0/?aff_sub4=_bucket&aff_sub=RED (...) FQDN: t.anmdr.link IP: 54.230.111.123 HASH: accdd0349e54a34b9a7e714a6ab78c8714f48733c8daa12ed4626b66ec9e32de 54.230.111.123 HTTP/2 303 See Other content-type: text/html; charset=utf-8 content-length: 500 location: https://jwbvdz.exceilentdate.com?utm_source=1e3a4e532f1c7040&s1=120749&s2=1506505&s3=44542&s5=44543_102208cf975c1384f944de729974cb&click_id=102c26fc0dc7c18ed1d45afdb9d155&j1=1&j5=1&j8=1&j9=1 server: nginx/1.19.0 date: Sun, 04 Dec 2022 12:04:13 GMT set-cookie: enc_aff_session_3458=ENC0303cea7d5e70d54a443f7d2d318f1031fd89e715a9fdb9841e029cb75f2c4ec2dace4779b81bd2f69c95c2bbd9bb4a0ce39822feb5839bde64f1aca6f2d03ce420fbbdd2def8bc4f4b461d74fe8ba010ec8fac994176a32bf2a9f7aa0c44b47750017eb54d18d9ce303fb629bb86ddeb1cede29db01f42a8c9b9741f51edb6b03a59c8b7649ab3f83f8dfba8bab64ab110b38c8038a6a708618dd14775d7146661a6928f8e51e0e747652a8665cd4453b9db36acbea2d108dba09bdc19caf84071344893e40e80ce9e4896005cdd4b99bcfdd31afb201394c161e5489952330902200b9afec5078541d442b509afd8fbe0f754e238d0d35914b675d93c2a24991102743e6; Path=/; Expires=Tue, 03 Dec 2024 12:04:13 GMT; Secure ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D; Path=/; Expires=Tue, 28 Oct 2025 22:44:13 GMT; Secure tracking_id: 102c26fc0dc7c18ed1d45afdb9d155 vary: Accept strict-transport-security: max-age=15724800; includeSubDomains x-cache: Miss from cloudfront via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: QRdPkCZ-_g9V7Fm13HLyyfyBLTpFVPTKC9YmvNSrfDn8uAcyp52GYA== X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (500), with no line terminators Size: 500 Md5: 9f4dc564f4b1b36ebbcd08b77974dcb3 Sha1: 721608b1d055f0805076a60417bd35cacdcb61c3 Sha256: accdd0349e54a34b9a7e714a6ab78c8714f48733c8daa12ed4626b66ec9e32de
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 021e37b85f3deedc5942b3d7ea2d8ecdfed7275d1b0066f495f17205af7aae17 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "021E37B85F3DEEDC5942B3D7EA2D8ECDFED7275D1B0066F495F17205AF7AAE17" Last-Modified: Fri, 02 Dec 2022 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21506 Expires: Sun, 04 Dec 2022 18:02:39 GMT Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 8114927499fbdb54782eebb231cdf734 Sha1: c3057ed5e7ebdecd9d83c4935ac2c8effca8a962 Sha256: 021e37b85f3deedc5942b3d7ea2d8ecdfed7275d1b0066f495f17205af7aae17
GET /landings/277392/1669911562/css/reviews.css?1669911562 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/css/r (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: e308183ac502f64274cb9bc068915e6701ba89f10550d7482bcae32fe961d701 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: rovOyRDKjUO0w+7I9Au6MSBiYuWi5S0/xAQXKoL10FRuEF5uDJFzUfSBZLx1T3eyHDvzzL4KmfM= x-amz-request-id: 2TB6KQNNDKST4H2Q Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "b8b7d60d5363b89bbd495616c2d5c3f3" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 04 Dec 2022 12:04:13 GMT Content-Length: 898 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 898 Md5: dcb5556e99130ae1ca9dd0c88a908233 Sha1: 034594c377a950592aff5920bd890b1d7e9b77bb Sha256: e308183ac502f64274cb9bc068915e6701ba89f10550d7482bcae32fe961d701
GET /landings/277392/1669911562/css/main.css?1669911562 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/css/m (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: e88b031341a4dff0770e87f68331ab95071618a7ff320f758ae6ff50907e4466 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: xhyrooYBVpluOQ11P2Mi7RptRIvzq+utA3X9J0xYYLFg5n2ybXjeyS/FqX2T1fEaJRLQ2myJCTg= x-amz-request-id: 0WE4ZXFRMVPSBYBQ Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "367c2f8f5022188248358ef69e97c014" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 04 Dec 2022 12:04:13 GMT Content-Length: 1713 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: assembler source, ASCII text Size: 1713 Md5: 6b4ce5aca03472e8adac26ab544aeeea Sha1: 7462e1d9f4cfbd2d11236dc7674df4a9ea5d8509 Sha256: e88b031341a4dff0770e87f68331ab95071618a7ff320f758ae6ff50907e4466
GET /landings/277392/1669911562/js/trls.js?1669911562 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 883c2c7df327c87c4f8f677bc9113fb87e4b509dce6b71db8b67124a9aa5ce82 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: yrf0odPNxGh0fSZ3QS66Tuc+GiO7ve3cVeFwTG3OT9H6CZN9k4o4HIe0BUbrwwSlJBnDy0EKJx4= x-amz-request-id: 0WEEA20NC56JRWGG Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "08398cde9d04669865ac1a40cf30840b" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 04 Dec 2022 12:04:13 GMT Content-Length: 10725 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 10725 Md5: 2cc16ee545886ac217511e44f8fcfd1f Sha1: 3def6fb1d0341a47188343ad9b72a43a1108dded Sha256: 883c2c7df327c87c4f8f677bc9113fb87e4b509dce6b71db8b67124a9aa5ce82
GET /landings/277392/1669911562/css/popup.css?1669911562 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/css/p (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 389f3d6adf5fc48317bdf0d85eaa23dd2a18578736609da35190baba464c0298 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: WbIEprZjeVE4erIeTaGdempLt2Z1ZpScUj8GZV+1RtLoYFCYPDKmKJjNE28yJ5ZdD/v1u0pOQ6Y= x-amz-request-id: 0WEAPK3GJQYA22WD Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "b47a3a5faf928711066b6f0deb015420" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 04 Dec 2022 12:04:13 GMT Content-Length: 619 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 619 Md5: f140ccb2b3ee4baac59fd038f029a31b Sha1: ffff86bf4e2538fd63e07a91a3d769c7fb5150d9 Sha256: 389f3d6adf5fc48317bdf0d85eaa23dd2a18578736609da35190baba464c0298
GET /landings/277392/1669911562/js/script.js?1669911562 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/js/sc (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 0088bc7ee3ef7e624cf35a3e9b7eee6716837951fe03e5a2940e19a0f984d771 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: sgGk6/OgYQ7Fv7/gQO105mJJ8JLvjgEQJCLk7lJqaGjDosrHtJg4H3QFiC3S+00UJzx03euxSG4= x-amz-request-id: 0WE70QB0DHPXTAA7 Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "9a75d29efe08c33843a4d62f7b35836d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 356 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 356 Md5: 9a75d29efe08c33843a4d62f7b35836d Sha1: 8ab307814e322817cb5ec88b2bb77669b9c81d8f Sha256: 0088bc7ee3ef7e624cf35a3e9b7eee6716837951fe03e5a2940e19a0f984d771
GET /landings/277392/1669911562/js/jquery-2.2.4.min.js?1669911562 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/js/jq (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 97d25af867afe95682e66a2d01f9c5e2f085df402403671e6ba885f49a1e03be 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: 3l46ztx4EO1jgxMBfOH8+PUfz0QYuEGvhxVME93OEZvZDF4p7LWloxq806DId6NnvmhFzxc2wV8= x-amz-request-id: 0WE8G13NY9HF04YE Last-Modified: Thu, 01 Dec 2022 16:19:26 GMT ETag: "61a04f254179208c931ebf40f4cfddf5" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 04 Dec 2022 12:04:13 GMT Content-Length: 36023 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with very long lines (530), with CRLF line terminators Size: 36023 Md5: 378507f30ab981ba7c512e07d134caaf Sha1: dd17d6f540df83bab63921deda1b9462a5047c00 Sha256: 97d25af867afe95682e66a2d01f9c5e2f085df402403671e6ba885f49a1e03be
GET /landings/277392/1669911562/js/title_tanslate.js?1669911562 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/js/ti (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: GYtTXg9TGfT1o/FT7FbSOwv6ap2gpn1uuplol3wp9tuC6FWbUrf5tjYlXKPgfR5i21LWo2QuQIQ= x-amz-request-id: X4Q675EJ0R9D2SCJ Last-Modified: Thu, 01 Dec 2022 16:19:26 GMT ETag: "5f373fa5bf21c44b9ad23b70ef96e73d" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 04 Dec 2022 12:04:13 GMT Content-Length: 1298 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text, with CRLF line terminators Size: 1298 Md5: 0e212ad4454c941c45c2e57df42c2b4f Sha1: fe9d7c484c2c0d7a6475692ef984c53a06c95406 Sha256: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3
GET /landings/277392/1669911562/js/translates-review.js?1669911562 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 7b0abe613122bd58d935ddf4922483de4e1d8bd0999cbc2f8bcb8d47fde41701 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: fejHSf26QTWwtNNzqTruJlFTnP0cWhs7Bo9ja9w/yBBgmif1MrjGbI3mrzuCyUiRLaRY2uSIL+8= x-amz-request-id: X4Q00NBCGBZGREM5 Last-Modified: Thu, 01 Dec 2022 16:19:26 GMT ETag: "8547abc3c71e4428fb56d97051398655" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 04 Dec 2022 12:04:13 GMT Content-Length: 16488 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 16488 Md5: d38197a30177a097f5e1f79a2c812fba Sha1: 38c96e285cd76fdc44c47a750780fcad35ac3810 Sha256: 7b0abe613122bd58d935ddf4922483de4e1d8bd0999cbc2f8bcb8d47fde41701
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 04 Dec 2022 12:04:13 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 122124f83967c12700f5a6f5546b0f1f Sha1: d7acd2db61ad811c388a44b7bd407fa5f4aea8ee Sha256: b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 04 Dec 2022 12:04:13 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 122124f83967c12700f5a6f5546b0f1f Sha1: d7acd2db61ad811c388a44b7bd407fa5f4aea8ee Sha256: b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
GET /landings/277392/1669911562/images/lightning.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 3404796b23bcfa338b2b6c0fd2e69c7c15d7711e315362b513e7c484881a5c28 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: r8jX8ieHeDIqzvnFD7iIcDVziulwMOqnqjSgtFg79OW1TjsqAMBi9/JnBedYtNYXe9dP0PGsBSg= x-amz-request-id: R989S7706256B1ST Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT ETag: "f7d041540d78ae007d1fe5aed28bfe22" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 15158 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 13 x 22, 8-bit/color RGBA, non-interlaced\012- data Size: 15158 Md5: f7d041540d78ae007d1fe5aed28bfe22 Sha1: 87f0f527b713204abd6eb85f52838857b0b1f313 Sha256: 3404796b23bcfa338b2b6c0fd2e69c7c15d7711e315362b513e7c484881a5c28
GET /landings/277392/1669911562/images/camera.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: fa7b21b2662408264e5a88b2899d4e7fd841c21c1acb6f4b329bc26a04498ddd 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: WaGG9kKTft6w9AMO9IadL7B/DC0SUYJjcToZVK3U+pIy77t7fDt4ROO+3k0HZ7uzxVGyWVULs1c= x-amz-request-id: R987S28VP89T64J3 Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT ETag: "2241535df47e4118224448152eb91b83" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 15843 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 29 x 22, 8-bit/color RGBA, non-interlaced\012- data Size: 15843 Md5: 2241535df47e4118224448152eb91b83 Sha1: ffedced57c5adb80c470dd79a45f6d67c82122f1 Sha256: fa7b21b2662408264e5a88b2899d4e7fd841c21c1acb6f4b329bc26a04498ddd
GET /landings/277392/1669911562/images/110010_1.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 09e3f147578d663b2b33b05eec941e4cd5f03afa54091a458e8cdc76a9ea9977 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 8zN5xVc9SRU2kdTuDEaFq2KcOJsPTpQAHHJ253pp91CFp1GyCaMtFzl64teD3KoRzcHcTzAP+3w= x-amz-request-id: X4QFKK45G4TMGF77 Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "f0a79db4dd92694735ee0e6a311fc42c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 56596 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 682x388, components 3\012- data Size: 56596 Md5: f0a79db4dd92694735ee0e6a311fc42c Sha1: af0cbc1a6abcade4ae78b7df736a0206c218f6c1 Sha256: 09e3f147578d663b2b33b05eec941e4cd5f03afa54091a458e8cdc76a9ea9977
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Roboto:wght@400;700&di (...) FQDN: fonts.googleapis.com IP: 142.250.74.106 HASH: 1daad4113b67a012141bee75175ea6d3d195eb65b56e40b87d58d421c4ccf49e 142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 04 Dec 2022 12:04:13 GMT date: Sun, 04 Dec 2022 12:04:13 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 1111 Md5: 599f1fb7ed77c9fdf807ec3e1f9906d1 Sha1: 2b60c1097331b0bcfdb4c7cdfac7ec8eed88773c Sha256: 1daad4113b67a012141bee75175ea6d3d195eb65b56e40b87d58d421c4ccf49e
GET /landings/277392/1669911562/images/1-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: qu16gB0TBT1QI1g/vn5YyesLQU9MgwYXfxD1J8XO9bfkbNc/vlNROWomocLdOFpM4Vs6Q2Xg4CM= x-amz-request-id: R98CEGP3DPR6Q7DQ Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "6e6d0b84c81d847e24671a711115a781" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 4292 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 4292 Md5: 6e6d0b84c81d847e24671a711115a781 Sha1: 20dc2d359e437dc10ceefea4d3c7b5189c2e58d0 Sha256: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553
GET /landings/277392/1669911562/images/blocked-icon.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: f7a4b3fb74b9e06f243f23ede51a801a0aa3fa2c0040bc44a49a97444780923d 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: aK7DfRn6hHp+rZvGwRbJ1iId2T4UMpBKYXjc94PV8vRAeUO6r9ivXkwsMkArFk7fsCkXcAeXj/M= x-amz-request-id: SC9BRKGKR7R3H5YB Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT ETag: "87487ad255dde0624f59abb85602defc" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 502 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 23 x 32, 8-bit/color RGBA, non-interlaced\012- data Size: 502 Md5: 87487ad255dde0624f59abb85602defc Sha1: caafad17df41875bed690353ead6cc495a9bf8c2 Sha256: f7a4b3fb74b9e06f243f23ede51a801a0aa3fa2c0040bc44a49a97444780923d
GET /landings/277392/1669911562/images/8-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: bQKReVva1LaGOk9NyqvO3/PrYjoin7OCv86tOPbJcbgoGlRMddMoPVUQ3rgPOPasGNDkk+VGH2w= x-amz-request-id: 2BCEHPEVT8GRV3B5 Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "41bbda91cef3f22db1d45d66f7ca0961" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2458 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2458 Md5: 41bbda91cef3f22db1d45d66f7ca0961 Sha1: e2f8f56674e0180063a4f8287931dc0b273baf8e Sha256: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e
GET /landings/277392/1669911562/images/unlock.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: OLV1nm3+x+y275eDAqdBRVmMG3XI7A45WnGKMbUCKGOy7u3VOo9x8XDwk1EVjwGA22DBaCH1xhU= x-amz-request-id: R9807S9J2TZCAJ9J Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "a732e1e06affb4575c050fdb0131e5ca" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2378 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944) Size: 2378 Md5: a732e1e06affb4575c050fdb0131e5ca Sha1: da4f4f204a4d22c7424274a91520e0ea993c48c7 Sha256: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7" Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8217 Expires: Sun, 04 Dec 2022 14:21:10 GMT Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 83e0936435ad95a15c9ec5ff9520f4fe Sha1: a8225ee0d8ae117f977f7ff817c342c62e91b5a9 Sha256: ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7" Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8217 Expires: Sun, 04 Dec 2022 14:21:10 GMT Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 83e0936435ad95a15c9ec5ff9520f4fe Sha1: a8225ee0d8ae117f977f7ff817c342c62e91b5a9 Sha256: ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4666 x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: clr_-GiboAMFwww= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0 x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: z5uqgjB-Bsl0U55a8aFi37cpJ65Vnbjm6bJ2GnMpaO7RXsMZsOCbPQ== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Sat, 03 Dec 2022 21:44:01 GMT age: 51612 etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4666 Md5: c01fe1cccdb3b672bbade6d98217ffe9 Sha1: a9a529dc9894827f6243a1bf57f81caa4fe88fc2 Sha256: c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8315 x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: clsAMGVboAMFfxg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0 x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 6UQ_BhPmpVpe9w6gsExB-EpNq_syeCCK6fr4Y1FFK1jDJh_n1Sd0Eg== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google date: Sat, 03 Dec 2022 21:52:47 GMT age: 51086 etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8315 Md5: db1701b7b9d161a0c935bb6e10b17893 Sha1: 22a8c4bd58c729c1abcf794466e8f3231dfb034b Sha256: b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /css2?family=Ubuntu:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Ubuntu:wght@400;700&di (...) FQDN: fonts.googleapis.com IP: 142.250.74.106 HASH: 2dfcc0abce9beb1b91fb9a80e46643839a08a4d0397959aadf14177008b2fd11 142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 04 Dec 2022 12:04:13 GMT date: Sun, 04 Dec 2022 12:04:13 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 1044 Md5: 04833190cc8f4683aaf3dc801f47b62d Sha1: 7f28dc416775aeeca65d1f93779e4d9ec8a3c535 Sha256: 2dfcc0abce9beb1b91fb9a80e46643839a08a4d0397959aadf14177008b2fd11
GET /landings/277392/1669911562/images/2-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 2VVhuDSwpBd2pmkGbzRvXfwDclWYwbU07wu1zhuX7vx7FieuvMcvSKJIWHxWOK/XUf08N2D/oi9ZLQnkZ3FGDg== x-amz-request-id: 2BC6P9PRS4C8C6HV Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "66b6dc51bd19c799dcadf1dbeb628d9c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2009 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2009 Md5: 66b6dc51bd19c799dcadf1dbeb628d9c Sha1: ff7fe6049e944186764bfc5041d624ec11f8d362 Sha256: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0
GET /landings/277392/1669911562/images/5-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 20mKftfbRLafx+N3CV3Jz0VN9waiJAdqyI+UPHkKqyAKwqOyjF12nylSEs5jkLEFdy7lIef8I6s= x-amz-request-id: JNSWXBE4HHFX55MA Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "27109a247208262e6293950ca8f5450d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2879 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2879 Md5: 27109a247208262e6293950ca8f5450d Sha1: cea89616d15ad45a0f2b04082dff608abd96b800 Sha256: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5681 x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cltXnEotIAMFqkA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0 x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google date: Sat, 03 Dec 2022 21:52:38 GMT age: 51095 etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5681 Md5: 43309032a892c486f9985ef520df696e Sha1: 36f4682ca6a33ff80ee02129c77e6f27e996ede0 Sha256: 24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /landings/277392/1669911562/images/4-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: wnbFkH9v5YHvUslBa7UqT02GnjSTcybZI5bALMwGNCdRqDPTU8vUJ5cMy1SY1kZN3VvSbXVmXU0= x-amz-request-id: 2BC5TNP00V1185AR Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "cb3aff7c886e4f72a98172b873b5e62d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2586 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2586 Md5: cb3aff7c886e4f72a98172b873b5e62d Sha1: 33de244dcb4db4abe54b6508ae8d1546eb279aa5 Sha256: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e
GET /landings/277392/1669911562/images/shield.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: /1OyxVA46U94gi6AKpAypa5YvCMBUvVavbOzg86WKgandcPH21wE/w3r85DrNmJtx9cEzGCuBh4= x-amz-request-id: R986W3K38VM021RA Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1539 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310) Size: 1539 Md5: 0c7a0dfd64cf020cd8a6dc0c3df1dbdf Sha1: f705635388aebebae1223d828c38233067f28ab1 Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: f12db3aed126006fee00649aba0b3eaae900de200b85b9523866a90b5494f18e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8989 x-amzn-requestid: abce0b01-f70c-42ad-b242-5a24735fe4c2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cltl4Gk2oAMFSWQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638bc2f2-1cccffff5199dffe70264a95;Sampled=0 x-amzn-remapped-date: Sat, 03 Dec 2022 21:43:14 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: PFl7VUrzRkMFNnTiIw_cbGCyrEFn43eUSlZfT0nUhUmjjyXT7JfjMA== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Sat, 03 Dec 2022 21:50:01 GMT age: 51252 etag: "fc5d4f3163ebb9faf85968cbb1d194e8e68418be" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8989 Md5: a6e7b32ac999cf3c899a234c621fa91a Sha1: fc5d4f3163ebb9faf85968cbb1d194e8e68418be Sha256: f12db3aed126006fee00649aba0b3eaae900de200b85b9523866a90b5494f18e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7" Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8217 Expires: Sun, 04 Dec 2022 14:21:10 GMT Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 83e0936435ad95a15c9ec5ff9520f4fe Sha1: a8225ee0d8ae117f977f7ff817c342c62e91b5a9 Sha256: ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
GET /landings/277392/1669911562/images/btn.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 01988f1941b629e70fa08dd562ab01226ae1c3e33fce0dcf7fd490073152be2d 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: zDpsSEaY56n+rWg8mtPgFwWpCCe53OyV1CPq+sX04fxHnTSWPIZAMnOxIVUTs381YOdmxf97kyk= x-amz-request-id: 2BCCKBTSS6MKH0VF Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT ETag: "9ec971aedb388ea8b434df05fb1de307" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 3302 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 55 x 55, 8-bit/color RGBA, non-interlaced\012- data Size: 3302 Md5: 9ec971aedb388ea8b434df05fb1de307 Sha1: f894a11c1bb5e643bb21e906c8e405dbb6976afa Sha256: 01988f1941b629e70fa08dd562ab01226ae1c3e33fce0dcf7fd490073152be2d
GET /landings/277392/1669911562/images/icon-city.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: f028477ede528af987acd2bea73c8e462ea4cd6cf1137aae5085c85a82d93409 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: HMqgt4clTM+yfqRHOkP77EacLGUvvlUMSiYfm7KzxLmp7PXoOHVzJlc9cHU9/Z1Ivb8qsI0I2Nc= x-amz-request-id: R989NPYZ8M6HZK64 Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT ETag: "5f5ead641bc30316f498592eec2016a1" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 839 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (735) Size: 839 Md5: 5f5ead641bc30316f498592eec2016a1 Sha1: 3195aa33596ba190a6584ccb75124dd9d9c13261 Sha256: f028477ede528af987acd2bea73c8e462ea4cd6cf1137aae5085c85a82d93409
GET /landings/277392/1669911562/images/filter.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 8b9dd6e23d69ea8f9493b3a21aed910d22744dae467c8ea5f41805c35788adfc 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: JjZlY8zH2rnH5tQyGwRJME+4Df6xLjumNcCUcuqZouN7RSGBBXoOEklhIzE7ZcKRUPIOX9BqtWs= x-amz-request-id: 2BC03BGX2AFYS962 Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT ETag: "4d51ab70b5dfb7e1262bc7b07d0cfdc6" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2287 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 38 x 33, 8-bit/color RGBA, non-interlaced\012- data Size: 2287 Md5: 4d51ab70b5dfb7e1262bc7b07d0cfdc6 Sha1: 4e7be71c5ce43cc934262788d47edc297fcf4b6b Sha256: 8b9dd6e23d69ea8f9493b3a21aed910d22744dae467c8ea5f41805c35788adfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 16143 x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cdGyLGqmoAMFnaA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0 x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: kRs3oBWnSs5asyPdvz6kkooy7pqm2Yr8R_2x8EXCVn3dBz_aEJurRQ== via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google date: Sun, 04 Dec 2022 07:26:41 GMT age: 16652 etag: "1d702df3a64258628f4124eafd580695f2d350af" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 16143 Md5: 14dcca2a9c4792d835ee709bcd947402 Sha1: 1d702df3a64258628f4124eafd580695f2d350af Sha256: da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2
GET /landings/277392/1669911562/images/3-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: LGiYan0Jqnlmqiey7yEH8kYkcQZPPtqrOVQlmUYTPhEXW/p5d/Kj46OKyxyPjdQKgIeysJmqPaw= x-amz-request-id: R98DWFQMZXHW7K68 Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "1dc512dcb0850f22cfa72c789578085c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 3946 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 80x80, components 3\012- data Size: 3946 Md5: 1dc512dcb0850f22cfa72c789578085c Sha1: 933e9c5648e782c9f9a1504d2248f0acb4b9950b Sha256: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00
GET /landings/277392/1669911562/images/6-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: V9VH864Y74dfGcFRohwnbQsrXe7UgS4yGTNkcPzLCaIkZ3UOc6wCqN+jJnDIcs6fiFT5oUuBIQw= x-amz-request-id: 2BC6GPY0WFNTMMM4 Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "9a6870069cb979e16b239f9ed485fb3c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 3256 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 3256 Md5: 9a6870069cb979e16b239f9ed485fb3c Sha1: c1dc7f3620c8cc391648c550f91b269b04d3c612 Sha256: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818
GET /landings/277392/1669911562/images/password.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: ivfT2em3rQ9bjXyzunPz/ZxyZDA/Jc56Pb5VKMhExJ0g1VTFcE74ovo38L9zqd4HsUsaIn1lK+E= x-amz-request-id: R98BYPWC07ABEXR9 Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT ETag: "f42aef7f97d4c9bdb074673081f38ac7" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1339 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (330) Size: 1339 Md5: f42aef7f97d4c9bdb074673081f38ac7 Sha1: 0231df782e371d139c826e091279acd9a07e691c Sha256: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac
GET /landings/277392/1669911562/images/7-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 29XYU3jp46yebisaYECGavHzdlsiKUENYLIKm7KC5DWuhWGi0vUJT0n/Ub0KjHVUnnf30bmVmTU= x-amz-request-id: 2BC3DEE00C6SGB1Z Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "8155d8ecc7dc2d9b29cf99ab85c3d2a8" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2282 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2282 Md5: 8155d8ecc7dc2d9b29cf99ab85c3d2a8 Sha1: ba784563c7787760b318af24ea274ad6df2c5b89 Sha256: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 3d93fd8fcf1af31d00ccbd453142dbea5f2b91d7f58373095943ed40a31ed1f7 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10431 x-amzn-requestid: f79ab5e7-8c1b-4827-a531-aaa19c1d80aa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: clsCGEwxIAMF34g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638bc073-6358d2950955884c470c0a89;Sampled=0 x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:35 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: PQ7xh995cd1UVi3z42EVZGjQjHLLvtAP5BBC-xLEEGr4mEiXS6fC-w== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google date: Sat, 03 Dec 2022 21:47:06 GMT age: 51427 etag: "8637105f41058bc0d2b259d462b560881928adb6" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10431 Md5: 2636f91bb8fa4d9bb7bef114c248a9ae Sha1: 8637105f41058bc0d2b259d462b560881928adb6 Sha256: 3d93fd8fcf1af31d00ccbd453142dbea5f2b91d7f58373095943ed40a31ed1f7
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 04 Dec 2022 12:04:13 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 122124f83967c12700f5a6f5546b0f1f Sha1: d7acd2db61ad811c388a44b7bd407fa5f4aea8ee Sha256: b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
GET /landings/277392/1669911562/images/preview.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 680b57e32b4b3dbba13d5be961805fbc627d902c40a0821c26ea6454c4b2792a 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: aHjDQducBID2cTdBuiWQj5LegkJZeytov1HTObSprrOYVJTUSad2kxKdV8mUxBjmQcjqWWMSBGQ= x-amz-request-id: 2BC9SHTYHEZCFS34 Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT ETag: "a04e546bb075c2adba6559501db4e8d9" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 149522 Date: Sun, 04 Dec 2022 12:04:13 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=862, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=593], progressive, precision 8, 593x593, components 3\012- data Size: 149522 Md5: a04e546bb075c2adba6559501db4e8d9 Sha1: fcc89d946f43be0505427f486e285dda5bedf24f Sha256: 680b57e32b4b3dbba13d5be961805fbc627d902c40a0821c26ea6454c4b2792a
GET /landings/277392/1669911562/images/action_icons_20px_2x.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277392/1669911562/css/reviews.css?1669911562 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: cOyFbJ6R9ZXV/bEIa8MqIjaJDfSMNhUgr34KYmfPq1xLqbE7m9rZOg8j3Pjescl9co0bJvgg/Bk= x-amz-request-id: JNSRDGRHDGQ1BGB6 Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "b699975b5fe73b087e711a33ff24ee1e" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1726 Date: Sun, 04 Dec 2022 12:04:14 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data Size: 1726 Md5: b699975b5fe73b087e711a33ff24ee1e Sha1: 0e33cc5c32a5e7d18440751e3946076664caaf53 Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 04 Dec 2022 12:04:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: da9700d928847bca71f73dc9ca89bd1c Sha1: 2f156a1557a7504da776ed9a82dc52563662be6f Sha256: 428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 04 Dec 2022 12:04:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: da9700d928847bca71f73dc9ca89bd1c Sha1: 2f156a1557a7504da776ed9a82dc52563662be6f Sha256: 428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /ortb HTTP/1.1 Host: jwbvdz.exceilentdate.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 295 Origin: https://jwbvdz.exceilentdate.com Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/?s1=120749&s2=1506505&s3=44542&s5=backuser&click_id=102c26fc0dc7c18ed1d45afdb9d155&iexpp=1&j1=1&j5=1&j9=1&utm_source=1e3a4e532f1c7040&j8=1 Cookie: unique_id=638c5ec2000cc264; unique_id2=638c2490000ea1ec; 638c2490000ea1ec_c=1; ref_token=31972_15596_120749; impression=; 638c2490000ea1ec_sl=[277392] Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	URL: jwbvdz.exceilentdate.com/ortb FQDN: jwbvdz.exceilentdate.com IP: 63.32.216.166 HASH: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208 63.32.216.166 HTTP/2 200 OK content-type: text/plain; charset=utf-8 server: nginx date: Sun, 04 Dec 2022 12:04:14 GMT content-length: 13 X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 13 Md5: 1031bf08481e45e42ceb3fd978c3d379 Sha1: 3d6d43df4c45f09f5d68593646fd83352323a5ea Sha256: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208 Alerts: Blocklists: - fortinet: Phishing
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://jwbvdz.exceilentdate.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 FQDN: fonts.gstatic.com IP: 216.58.207.227 HASH: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 216.58.207.227 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 30 Nov 2022 19:33:54 GMT expires: Thu, 30 Nov 2023 19:33:54 GMT cache-control: public, max-age=31536000 age: 318620 last-modified: Wed, 11 May 2022 19:24:48 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size: 15744 Md5: 15d9f621c3bd1599f0169dcf0bd5e63e Sha1: 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /landings/277392/1669911562/images/bg.mp4 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: video/webm,video/ogg,video/;q=0.9,application/ogg;q=0.7,audio/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: video Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 60e40d1fa2162127a3b271dc3fe4b41c65c3618ad889ec8019134661e3d14fee 184.31.15.67 HTTP/1.1 206 Partial Content Content-Type: video/mp4 x-amz-id-2: 6o7oq8BAdDa2ul2dllj+xk3BQgxoay6vMQBDV6p1FsTGaFTBF5IO6w/K05BvRkylTNdTPMaf47I= x-amz-request-id: 2BC486ZXPK8PCX6X Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT ETag: "e76858ed8489b22c01e5e7bc891c4eab" Accept-Ranges: bytes Server: AmazonS3 Date: Sun, 04 Dec 2022 12:04:14 GMT Content-Range: bytes 0-1077924/1077925 Content-Length: 1077925 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data Size: 1077925 Md5: e76858ed8489b22c01e5e7bc891c4eab Sha1: 95e78caf72a39771064b76476ad457eed70ef390 Sha256: 60e40d1fa2162127a3b271dc3fe4b41c65c3618ad889ec8019134661e3d14fee
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://jwbvdz.exceilentdate.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4 (...) FQDN: fonts.gstatic.com IP: 216.58.207.227 HASH: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 216.58.207.227 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 30 Nov 2022 19:34:15 GMT expires: Thu, 30 Nov 2023 19:34:15 GMT cache-control: public, max-age=31536000 age: 318599 last-modified: Wed, 11 May 2022 19:24:42 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size: 15860 Md5: e9f5aaf547f165386cd313b995dddd8e Sha1: acdef5603c2387b0e5bffd744b679a24a8bc1968 Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /landings/277392/1669911562/images/favicon.png?t=20221204120413 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277392/1669911562/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 31c7cba7ef9eb3004a86e506bf976c59248e8518ba7cc0929f6fdfa2f3b36af2 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: qtwm+MloNEKyMpMB6QLW9f5EMfRGHRlIIKXM/tg5g4z9dI+5WPKqGjmFFkfvgVCe/g5IW84l/qw= x-amz-request-id: CH9NCV0TXPM2AA49 Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT ETag: "26ef38d37b06edf5c2a9c5941bdf20c7" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 5207 Date: Sun, 04 Dec 2022 12:04:14 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size: 5207 Md5: 26ef38d37b06edf5c2a9c5941bdf20c7 Sha1: 7edfefe803a2c791a49c64228449916a227cc9bc Sha256: 31c7cba7ef9eb3004a86e506bf976c59248e8518ba7cc0929f6fdfa2f3b36af2
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 04 Dec 2022 12:04:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: da9700d928847bca71f73dc9ca89bd1c Sha1: 2f156a1557a7504da776ed9a82dc52563662be6f Sha256: 428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
GET /?utm_source=1e3a4e532f1c7040&s1=120749&s2=1506505&s3=44542&s5=44543_102208cf975c1384f944de729974cb&click_id=102c26fc0dc7c18ed1d45afdb9d155&j1=1&j5=1&j8=1&j9=1 HTTP/1.1 Host: jwbvdz.exceilentdate.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: jwbvdz.exceilentdate.com/?utm_source=1e3a4e532f1c7040&s (...) FQDN: jwbvdz.exceilentdate.com IP: 63.32.216.166 63.32.216.166 HTTP/2 200 OK content-type: text/html; charset=utf-8 server: nginx date: Sun, 04 Dec 2022 12:04:13 GMT set-cookie: unique_id=638c5ec2000cc264; Path=/; Expires=Thu, 02 Feb 2023 12:04:13 GMT; Secure; SameSite=None unique_id2=638c2490000ea1ec; Path=/; Expires=Sat, 04 Mar 2023 12:04:13 GMT; Secure; SameSite=None 638c2490000ea1ec_c=1; Path=/; Expires=Sat, 04 Mar 2023 12:04:13 GMT; Secure; SameSite=None ref_token=31972_15596_120749; Path=/; Expires=Tue, 03 Jan 2023 12:04:13 GMT; Secure; SameSite=None impression=; Path=/; Expires=Sun, 04 Dec 2022 12:04:13 GMT; Secure; SameSite=None 638c2490000ea1ec_sl=[277392]; Path=/; Expires=Sun, 18 Dec 2022 12:04:13 GMT; Secure; SameSite=None content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---

                                        
                                            GET /44543/7383/23465/?aff_sub4=ALGO_bucket&aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&aff_sub2=7114&aff_sub3=wjo7okck0blq7cuki8lgsl1s&source=102208cf975c1384f944de729974cb&bo=2753,2754,2755,2756&aff_sub5=_{host} HTTP/1.1 

                                        
                                            
Host: t.anmdr.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         54.230.111.50

                                        
                                            HTTP/1.1 301 Moved Permanently 

                                        
                                            
Content-Type: text/html

                                        

                                        
                                            
Server: CloudFront 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:11 GMT 

                                        
                                            
Content-Length: 167 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Location: https://t.anmdr.link/44543/7383/23465/?aff_sub4=ALGO_bucket&aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&aff_sub2=7114&aff_sub3=wjo7okck0blq7cuki8lgsl1s&source=102208cf975c1384f944de729974cb&bo=2753,2754,2755,2756&aff_sub5=_{host} 

                                        
                                            
X-Cache: Redirect from cloudfront 

                                        
                                            
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-P1 

                                        
                                            
X-Amz-Cf-Id: O8uCXH4CrrjL8fRqDLKM7NkV_FdVjumLJL4PNS6oy92b4kQS7sPViw== 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   167

                                                Md5:    f5d40b7259645010f9a248858ad14178

                                                Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b

                                                Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3" 

                                        
                                            
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=2660 

                                        
                                            
Expires: Sun, 04 Dec 2022 12:48:31 GMT 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:11 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    1ea206ac3c440825741687351f8c6e4e

                                                Sha1:   2f38dafd8c43dcce2411a0590bc5c02cd6286735

                                                Sha256: 7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 3728 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:11 GMT 

                                        
                                            
Last-Modified: Sun, 04 Dec 2022 11:02:03 GMT 

                                        
                                            
Server: ECS (ska/F70B) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    fb2c0697c6d9a96a5411dd2952947458

                                                Sha1:   79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4

                                                Sha256: 3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         54.230.245.110

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: max-age=112681 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:11 GMT 

                                        
                                            
Etag: "638b9fcf-1d7" 

                                        
                                            
Expires: Mon, 05 Dec 2022 19:22:12 GMT 

                                        
                                            
Last-Modified: Sat, 03 Dec 2022 19:13:19 GMT 

                                        
                                            
Server: ECS (dcb/7EA2) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-P1 

                                        
                                            
X-Amz-Cf-Id: fY6AxBIjSyJIJkuoVyY7FBLAioEMVR-e4hhzd10HP89f1q_dCp361g== 

                                        
                                            
Age: 533 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    61886f8fe43a42674bceb670b1fed9ca

                                                Sha1:   ef174bafdb21bfd717aa8181a169fce5e1f0f741

                                                Sha256: 7019fef60bb6c1a6167ece3e9d5b3ffaee36a06cee1108da518d8d61395a29f2

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 329 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Sun, 04 Dec 2022 11:11:19 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 3173 

                                        
                                            
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
etag: "1648230346554" 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        
                                            GET /44543/7383/23465/?aff_sub4=ALGO_bucket&aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&aff_sub2=7114&aff_sub3=wjo7okck0blq7cuki8lgsl1s&source=102208cf975c1384f944de729974cb&bo=2753,2754,2755,2756&aff_sub5=_{host} HTTP/1.1 

                                        
                                            
Host: t.anmdr.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1

                                         54.230.111.123

                                        
                                            HTTP/2 303 See Other 

                                        
                                            
content-type: text/html; charset=utf-8

                                        

                                        
                                            
content-length: 564 

                                        
                                            
location: https://t.crdefault.link/44543/1?aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&aff_sub2=7114&aff_sub3=wjo7okck0blq7cuki8lgsl1s&aff_sub4=ALGO_bucket&aff_sub5=_%7Bhost%7D&source=102208cf975c1384f944de729974cb&bo=2753%2C2754%2C2755%2C2756 

                                        
                                            
server: nginx/1.19.0 

                                        
                                            
date: Sun, 04 Dec 2022 12:04:12 GMT 

                                        
                                            
set-cookie: aff_ran_url_7383=23465; Path=/; Expires=Mon, 05 Dec 2022 12:04:12 GMT; Secure
enc_aff_session_7324=ENC03790f4c24c2a86a5c49dbea680f756ab9304cdd84e27868432f431e6500be579c968dd73dfa0f569bc179fb4d983ab56a71b62f64b54ce7a70e7f04b7ff97afc56800ade1c962bf9cd190bdc281ab09a38ed0c6ddddf428c3262d0eaffde4b1cc1664bff5f586a96f5eca424c4e02f3c65a487c06105a0636caa5be02789cf3cb12b2c6b5a31af00e1ab6a0e2d9243572a85380724a0f62af8518d40ea89ecdc631e955d8eb37f304a39cb32e85055802294c8b1d2fbea5dbfefaab640b96034f2d116b62d874c4f5bfb0ec1e557a93f7d4c135e4d3f147f271fb8cdfb87d70880089d012; Path=/; Expires=Wed, 04 Jan 2023 12:04:12 GMT; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D; Path=/; Expires=Tue, 28 Oct 2025 22:44:12 GMT; Secure 

                                        
                                            
tracking_id: 10251da3593f6e0efb48d2b15f32c3 

                                        
                                            
vary: Accept 

                                        
                                            
strict-transport-security: max-age=15724800; includeSubDomains 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-P1 

                                        
                                            
x-amz-cf-id: XDvZZ22_FO-id0OS4WxmCTg_bhYa0u0H5-UL8J_X7w4ZScNg7ODaWg== 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text, with very long lines (564), with no line terminators

                                                Size:   564

                                                Md5:    140dd9724c0dfb0f80eaefbf82f7645f

                                                Sha1:   9592d81d664263dc2119cc1c3827e4b760d91fa3

                                                Sha256: bc2ffbb1b18300397bcb9c60992f09609ac1ad2595b2a7598f1c97de4d2346d5

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: aFfPD4004mACxSG4TH9TDQ== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket

                                         44.242.41.15

                                        
                                            HTTP/1.1 101 Switching Protocols

                                        

                                        
                                            
Connection: Upgrade 

                                        
                                            
Upgrade: websocket 

                                        
                                            
Sec-WebSocket-Accept: C5sCI0PKxQO+8aDAmsl3T1XrGBQ= 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /ab267e05-23a0-430a-bac4-772f7f629740?subID1=REDIRECTED_FROM_LEGACY_LANDING_PAGES%3B102208cf975c1384f944de729974cb&affiliateID=44542&source=10238e221a9e3ebc876c4e478d9aca&subID2=44543&s2=10238e221a9e3ebc876c4e478d9aca&s3=REDIRECTED_FROM_LEGACY_LANDING_PAGES%3B102208cf975c1384f944de729974cb&s4=44543&url=1&affsub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&affsource=102208cf975c1384f944de729974cb&aff_click_id=10238e221a9e3ebc876c4e478d9aca&bo=2753%2C2754%2C2755%2C2756 HTTP/1.1 

                                        
                                            
Host: a.vfgtf.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1

                                         18.192.108.151

                                        
                                            HTTP/2 302 Found

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 04 Dec 2022 12:04:12 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
cache-control: no-store, no-cache, pre-check=0, post-check=0 

                                        
                                            
expires: Thu, 01 Jan 1970 00:00:00 GMT 

                                        
                                            
location: https://t.anmdr.link/44542/3458/0/?aff_sub4=_bucket&aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES%3B102208cf975c1384f944de729974cb&aff_sub2=44543&aff_sub3=wea7pnl89sk89cuki2e2bl14&source=10238e221a9e3ebc876c4e478d9aca&aff_sub5=_102208cf975c1384f944de729974cb 

                                        
                                            
pragma: no-cache 

                                        
                                            
set-cookie: ab267e05-23a0-430a-bac4-772f7f629740-v4=CG-mdk59RfcLqO3w77oIW6zqus1tIP7_4tiXrRlNxvg; Max-Age=86400; Expires=Mon, 05-Dec-2022 12:04:12 GMT; Domain=a.vfgtf.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=jnj5Xa9wI1eJZXUwZxtJiK%2F1xGcA8edpHIoCi%2BpsiKwEm9z2Bc6AmcY5dt%2BocrkwDtrfNaCiHDWf1CqZLcACHdGqTV0%2Fi1nugiflpGyeizf5kn3KN%2FFjWC1c6OzkO21quRKnSDREtl4PWKEZEoAz2A%3D%3D; Max-Age=31536000; Expires=Mon, 04-Dec-2023 12:04:12 GMT; Domain=a.vfgtf.com; Path=/; Secure; HttpOnly;SameSite=None 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "021E37B85F3DEEDC5942B3D7EA2D8ECDFED7275D1B0066F495F17205AF7AAE17" 

                                        
                                            
Last-Modified: Fri, 02 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=21506 

                                        
                                            
Expires: Sun, 04 Dec 2022 18:02:39 GMT 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    8114927499fbdb54782eebb231cdf734

                                                Sha1:   c3057ed5e7ebdecd9d83c4935ac2c8effca8a962

                                                Sha256: 021e37b85f3deedc5942b3d7ea2d8ecdfed7275d1b0066f495f17205af7aae17

                                        
                                            GET /landings/277392/1669911562/css/main.css?1669911562 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
x-amz-id-2: xhyrooYBVpluOQ11P2Mi7RptRIvzq+utA3X9J0xYYLFg5n2ybXjeyS/FqX2T1fEaJRLQ2myJCTg= 

                                        
                                            
x-amz-request-id: 0WE4ZXFRMVPSBYBQ 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT 

                                        
                                            
ETag: "367c2f8f5022188248358ef69e97c014" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Content-Length: 1713 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  assembler source, ASCII text

                                                Size:   1713

                                                Md5:    6b4ce5aca03472e8adac26ab544aeeea

                                                Sha1:   7462e1d9f4cfbd2d11236dc7674df4a9ea5d8509

                                                Sha256: e88b031341a4dff0770e87f68331ab95071618a7ff320f758ae6ff50907e4466

                                        
                                            GET /landings/277392/1669911562/css/popup.css?1669911562 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
x-amz-id-2: WbIEprZjeVE4erIeTaGdempLt2Z1ZpScUj8GZV+1RtLoYFCYPDKmKJjNE28yJ5ZdD/v1u0pOQ6Y= 

                                        
                                            
x-amz-request-id: 0WEAPK3GJQYA22WD 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT 

                                        
                                            
ETag: "b47a3a5faf928711066b6f0deb015420" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Content-Length: 619 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with CRLF line terminators

                                                Size:   619

                                                Md5:    f140ccb2b3ee4baac59fd038f029a31b

                                                Sha1:   ffff86bf4e2538fd63e07a91a3d769c7fb5150d9

                                                Sha256: 389f3d6adf5fc48317bdf0d85eaa23dd2a18578736609da35190baba464c0298

                                        
                                            GET /landings/277392/1669911562/js/jquery-2.2.4.min.js?1669911562 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: 3l46ztx4EO1jgxMBfOH8+PUfz0QYuEGvhxVME93OEZvZDF4p7LWloxq806DId6NnvmhFzxc2wV8= 

                                        
                                            
x-amz-request-id: 0WE8G13NY9HF04YE 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:26 GMT 

                                        
                                            
ETag: "61a04f254179208c931ebf40f4cfddf5" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Content-Length: 36023 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (530), with CRLF line terminators

                                                Size:   36023

                                                Md5:    378507f30ab981ba7c512e07d134caaf

                                                Sha1:   dd17d6f540df83bab63921deda1b9462a5047c00

                                                Sha256: 97d25af867afe95682e66a2d01f9c5e2f085df402403671e6ba885f49a1e03be

                                        
                                            GET /landings/277392/1669911562/js/translates-review.js?1669911562 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: fejHSf26QTWwtNNzqTruJlFTnP0cWhs7Bo9ja9w/yBBgmif1MrjGbI3mrzuCyUiRLaRY2uSIL+8= 

                                        
                                            
x-amz-request-id: X4Q00NBCGBZGREM5 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:26 GMT 

                                        
                                            
ETag: "8547abc3c71e4428fb56d97051398655" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Content-Length: 16488 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text

                                                Size:   16488

                                                Md5:    d38197a30177a097f5e1f79a2c812fba

                                                Sha1:   38c96e285cd76fdc44c47a750780fcad35ac3810

                                                Sha256: 7b0abe613122bd58d935ddf4922483de4e1d8bd0999cbc2f8bcb8d47fde41701

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    122124f83967c12700f5a6f5546b0f1f

                                                Sha1:   d7acd2db61ad811c388a44b7bd407fa5f4aea8ee

                                                Sha256: b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d

                                        
                                            GET /landings/277392/1669911562/images/camera.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: WaGG9kKTft6w9AMO9IadL7B/DC0SUYJjcToZVK3U+pIy77t7fDt4ROO+3k0HZ7uzxVGyWVULs1c= 

                                        
                                            
x-amz-request-id: R987S28VP89T64J3 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT 

                                        
                                            
ETag: "2241535df47e4118224448152eb91b83" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 15843 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 29 x 22, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   15843

                                                Md5:    2241535df47e4118224448152eb91b83

                                                Sha1:   ffedced57c5adb80c470dd79a45f6d67c82122f1

                                                Sha256: fa7b21b2662408264e5a88b2899d4e7fd841c21c1acb6f4b329bc26a04498ddd

                                        
                                            GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.106

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
expires: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
cache-control: private, max-age=86400 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   1111

                                                Md5:    599f1fb7ed77c9fdf807ec3e1f9906d1

                                                Sha1:   2b60c1097331b0bcfdb4c7cdfac7ec8eed88773c

                                                Sha256: 1daad4113b67a012141bee75175ea6d3d195eb65b56e40b87d58d421c4ccf49e

                                        
                                            GET /landings/277392/1669911562/images/blocked-icon.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: aK7DfRn6hHp+rZvGwRbJ1iId2T4UMpBKYXjc94PV8vRAeUO6r9ivXkwsMkArFk7fsCkXcAeXj/M= 

                                        
                                            
x-amz-request-id: SC9BRKGKR7R3H5YB 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT 

                                        
                                            
ETag: "87487ad255dde0624f59abb85602defc" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 502 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 23 x 32, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   502

                                                Md5:    87487ad255dde0624f59abb85602defc

                                                Sha1:   caafad17df41875bed690353ead6cc495a9bf8c2

                                                Sha256: f7a4b3fb74b9e06f243f23ede51a801a0aa3fa2c0040bc44a49a97444780923d

                                        
                                            GET /landings/277392/1669911562/images/unlock.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: OLV1nm3+x+y275eDAqdBRVmMG3XI7A45WnGKMbUCKGOy7u3VOo9x8XDwk1EVjwGA22DBaCH1xhU= 

                                        
                                            
x-amz-request-id: R9807S9J2TZCAJ9J 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT 

                                        
                                            
ETag: "a732e1e06affb4575c050fdb0131e5ca" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2378 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944)

                                                Size:   2378

                                                Md5:    a732e1e06affb4575c050fdb0131e5ca

                                                Sha1:   da4f4f204a4d22c7424274a91520e0ea993c48c7

                                                Sha256: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7" 

                                        
                                            
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=8217 

                                        
                                            
Expires: Sun, 04 Dec 2022 14:21:10 GMT 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    83e0936435ad95a15c9ec5ff9520f4fe

                                                Sha1:   a8225ee0d8ae117f977f7ff817c342c62e91b5a9

                                                Sha256: ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8315 

                                        
                                            
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: clsAMGVboAMFfxg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: 6UQ_BhPmpVpe9w6gsExB-EpNq_syeCCK6fr4Y1FFK1jDJh_n1Sd0Eg== 

                                        
                                            
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 03 Dec 2022 21:52:47 GMT 

                                        
                                            
age: 51086 

                                        
                                            
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8315

                                                Md5:    db1701b7b9d161a0c935bb6e10b17893

                                                Sha1:   22a8c4bd58c729c1abcf794466e8f3231dfb034b

                                                Sha256: b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787

                                        
                                            GET /landings/277392/1669911562/images/2-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: 2VVhuDSwpBd2pmkGbzRvXfwDclWYwbU07wu1zhuX7vx7FieuvMcvSKJIWHxWOK/XUf08N2D/oi9ZLQnkZ3FGDg== 

                                        
                                            
x-amz-request-id: 2BC6P9PRS4C8C6HV 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT 

                                        
                                            
ETag: "66b6dc51bd19c799dcadf1dbeb628d9c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2009 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   2009

                                                Md5:    66b6dc51bd19c799dcadf1dbeb628d9c

                                                Sha1:   ff7fe6049e944186764bfc5041d624ec11f8d362

                                                Sha256: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 5681 

                                        
                                            
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cltXnEotIAMFqkA= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA== 

                                        
                                            
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 03 Dec 2022 21:52:38 GMT 

                                        
                                            
age: 51095 

                                        
                                            
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   5681

                                                Md5:    43309032a892c486f9985ef520df696e

                                                Sha1:   36f4682ca6a33ff80ee02129c77e6f27e996ede0

                                                Sha256: 24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e

                                        
                                            GET /landings/277392/1669911562/images/shield.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: /1OyxVA46U94gi6AKpAypa5YvCMBUvVavbOzg86WKgandcPH21wE/w3r85DrNmJtx9cEzGCuBh4= 

                                        
                                            
x-amz-request-id: R986W3K38VM021RA 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT 

                                        
                                            
ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1539 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310)

                                                Size:   1539

                                                Md5:    0c7a0dfd64cf020cd8a6dc0c3df1dbdf

                                                Sha1:   f705635388aebebae1223d828c38233067f28ab1

                                                Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7" 

                                        
                                            
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=8217 

                                        
                                            
Expires: Sun, 04 Dec 2022 14:21:10 GMT 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    83e0936435ad95a15c9ec5ff9520f4fe

                                                Sha1:   a8225ee0d8ae117f977f7ff817c342c62e91b5a9

                                                Sha256: ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

                                        
                                            GET /landings/277392/1669911562/images/icon-city.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: HMqgt4clTM+yfqRHOkP77EacLGUvvlUMSiYfm7KzxLmp7PXoOHVzJlc9cHU9/Z1Ivb8qsI0I2Nc= 

                                        
                                            
x-amz-request-id: R989NPYZ8M6HZK64 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:24 GMT 

                                        
                                            
ETag: "5f5ead641bc30316f498592eec2016a1" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 839 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (735)

                                                Size:   839

                                                Md5:    5f5ead641bc30316f498592eec2016a1

                                                Sha1:   3195aa33596ba190a6584ccb75124dd9d9c13261

                                                Sha256: f028477ede528af987acd2bea73c8e462ea4cd6cf1137aae5085c85a82d93409

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 16143 

                                        
                                            
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cdGyLGqmoAMFnaA= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: kRs3oBWnSs5asyPdvz6kkooy7pqm2Yr8R_2x8EXCVn3dBz_aEJurRQ== 

                                        
                                            
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 04 Dec 2022 07:26:41 GMT 

                                        
                                            
age: 16652 

                                        
                                            
etag: "1d702df3a64258628f4124eafd580695f2d350af" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   16143

                                                Md5:    14dcca2a9c4792d835ee709bcd947402

                                                Sha1:   1d702df3a64258628f4124eafd580695f2d350af

                                                Sha256: da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2

                                        
                                            GET /landings/277392/1669911562/images/6-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: V9VH864Y74dfGcFRohwnbQsrXe7UgS4yGTNkcPzLCaIkZ3UOc6wCqN+jJnDIcs6fiFT5oUuBIQw= 

                                        
                                            
x-amz-request-id: 2BC6GPY0WFNTMMM4 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT 

                                        
                                            
ETag: "9a6870069cb979e16b239f9ed485fb3c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 3256 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   3256

                                                Md5:    9a6870069cb979e16b239f9ed485fb3c

                                                Sha1:   c1dc7f3620c8cc391648c550f91b269b04d3c612

                                                Sha256: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818

                                        
                                            GET /landings/277392/1669911562/images/7-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: 29XYU3jp46yebisaYECGavHzdlsiKUENYLIKm7KC5DWuhWGi0vUJT0n/Ub0KjHVUnnf30bmVmTU= 

                                        
                                            
x-amz-request-id: 2BC3DEE00C6SGB1Z 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT 

                                        
                                            
ETag: "8155d8ecc7dc2d9b29cf99ab85c3d2a8" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2282 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   2282

                                                Md5:    8155d8ecc7dc2d9b29cf99ab85c3d2a8

                                                Sha1:   ba784563c7787760b318af24ea274ad6df2c5b89

                                                Sha256: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:13 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    122124f83967c12700f5a6f5546b0f1f

                                                Sha1:   d7acd2db61ad811c388a44b7bd407fa5f4aea8ee

                                                Sha256: b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d

                                        
                                            GET /landings/277392/1669911562/images/action_icons_20px_2x.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/landings/277392/1669911562/css/reviews.css?1669911562 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: cOyFbJ6R9ZXV/bEIa8MqIjaJDfSMNhUgr34KYmfPq1xLqbE7m9rZOg8j3Pjescl9co0bJvgg/Bk= 

                                        
                                            
x-amz-request-id: JNSRDGRHDGQ1BGB6 

                                        
                                            
Last-Modified: Thu, 01 Dec 2022 16:19:25 GMT 

                                        
                                            
ETag: "b699975b5fe73b087e711a33ff24ee1e" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1726 

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:14 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data

                                                Size:   1726

                                                Md5:    b699975b5fe73b087e711a33ff24ee1e

                                                Sha1:   0e33cc5c32a5e7d18440751e3946076664caaf53

                                                Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:14 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    da9700d928847bca71f73dc9ca89bd1c

                                                Sha1:   2f156a1557a7504da776ed9a82dc52563662be6f

                                                Sha256: 428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://jwbvdz.exceilentdate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://fonts.googleapis.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         216.58.207.227

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 15744 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Wed, 30 Nov 2022 19:33:54 GMT 

                                        
                                            
expires: Thu, 30 Nov 2023 19:33:54 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 318620 

                                        
                                            
last-modified: Wed, 11 May 2022 19:24:48 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data

                                                Size:   15744

                                                Md5:    15d9f621c3bd1599f0169dcf0bd5e63e

                                                Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52

                                                Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://jwbvdz.exceilentdate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://fonts.googleapis.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         216.58.207.227

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 15860 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Wed, 30 Nov 2022 19:34:15 GMT 

                                        
                                            
expires: Thu, 30 Nov 2023 19:34:15 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 318599 

                                        
                                            
last-modified: Wed, 11 May 2022 19:24:42 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data

                                                Size:   15860

                                                Md5:    e9f5aaf547f165386cd313b995dddd8e

                                                Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968

                                                Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 04 Dec 2022 12:04:14 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    da9700d928847bca71f73dc9ca89bd1c

                                                Sha1:   2f156a1557a7504da776ed9a82dc52563662be6f

                                                Sha256: 428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

URL	t.anmdr.link/44543/7383/23465/?aff_sub4=ALGO_bucket&aff_sub=REDIRECTED_FROM_LEGACY_LANDING_PAGES&aff_sub2=7114&aff_sub3=wjo7okck0blq7cuki8lgsl1s&source=102208cf975c1384f944de729974cb&bo=2753,2754,2755,2756&aff_sub5=_{host}
IP	54.230.111.123 (United States)
ASN	#16509 AMAZON-02
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-12-04 12:04:22 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	1
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (0)

No passive DNS data

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.230.111.123

Last 5 reports on ASN: AMAZON-02

Last 5 reports on domain: anmdr.link

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (14)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (68)

Overview

Domain Summary (0)

No passive DNS data

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.230.111.123

Last 5 reports on ASN: AMAZON-02

Last 5 reports on domain: anmdr.link

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (14)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (68)

Network Intrusion Detection Systems