Overview

URLqvznmz.impresslvedate.com/c/1e3a4e532f1c7040?s1=166616&s2=1573963&j1=1&s3=4478&click_id=mlClick-oHEHoIBw&j1=1&j8=1
IP 52.19.101.114 (Ireland)
ASN#16509 AMAZON-02
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-26 07:57:54 UTC
StatusLoading report..
IDS alerts0
Blocklist alert3
urlquery alerts No alerts detected
Tags None

Domain Summary (13)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
www.gstatic.com (2) 0 No data No data 142.250.74.163 Domain (gstatic.com) ranked at: 540
qvznmz.impresslvedate.com (4) 0 No data No data 52.19.101.114 Unknown ranking
ocsp.digicert.com (2) 86 No data No data 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
cdn-dimi.akamaized.net (43) 0 No data No data 184.31.15.67 Domain (akamaized.net) ranked at: 280
img-getpocket.cdn.mozilla.net (5) 1631 No data No data 34.120.237.76
fonts.googleapis.com (1) 8877 No data No data 142.250.74.10
r3.o.lencr.org (6) 344 No data No data 23.36.76.226
firefox.settings.services.mozilla.com (2) 867 No data No data 34.102.187.140
ocsp.pki.goog (6) 175 No data No data 142.250.74.3
fonts.gstatic.com (1) 0 No data No data 216.58.207.195 Domain (gstatic.com) ranked at: 540
push.services.mozilla.com (1) 2140 No data No data 52.43.61.95

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-26 2 qvznmz.impresslvedate.com/js/pushjs/1.0.0/subscriber.js Phishing
2022-11-26 2 qvznmz.impresslvedate.com/ortb Phishing
2022-11-26 2 qvznmz.impresslvedate.com/js/pushjs/1.0.0/utils.js Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 52.19.101.114
Date UQ / IDS / BL URL IP
2023-02-07 04:38:47 +0000 0 - 0 - 2 maklj.unantlcipatedlucks.com/c/1f0a2cb367c37d (...) 52.19.101.114
2023-02-07 03:21:57 +0000 0 - 0 - 1 gsft.gottatopsweeps.com/ 52.19.101.114
2023-02-06 21:01:04 +0000 0 - 0 - 9 www.mydataanalisys.com/redirect/index?type=sc (...) 52.19.101.114
2023-02-06 15:23:07 +0000 0 - 0 - 1 qvewmj.delicatedate.net/c/da57dc555e50572d?s1 (...) 52.19.101.114
2023-02-06 08:02:11 +0000 0 - 0 - 2 ntn.prizeboxsurvey.site/c/842762394befa6f4?ci (...) 52.19.101.114


Last 5 reports on ASN: AMAZON-02
Date UQ / IDS / BL URL IP
2023-02-07 11:26:28 +0000 0 - 4 - 0 sussionscrefects.com/d87e5e2a-2817-4fb8-8c3c- (...) 3.64.65.230
2023-02-07 11:25:53 +0000 0 - 2 - 0 download.afd.co.uk/web/support/RemoteSupport.exe 54.230.111.44
2023-02-07 11:23:17 +0000 0 - 0 - 1 daftar.site/ZCZR/NwQXoKlvYkkklgbtq.bin 3.64.163.50
2023-02-07 11:22:25 +0000 0 - 0 - 1 daftar.site/ECH/nkpMumkkklgbtq.bin 3.64.163.50
2023-02-07 11:22:00 +0000 0 - 0 - 2 100sport.tv/lp?cid=63ca658cde4bd&clickid=63e2 (...) 108.128.175.36


Last 1 reports on domain: impresslvedate.com
Date UQ / IDS / BL URL IP
2022-11-26 07:57:54 +0000 0 - 0 - 3 qvznmz.impresslvedate.com/c/1e3a4e532f1c7040? (...) 52.19.101.114


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-11-28 13:53:17 +0000 0 - 0 - 3 lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...) 52.19.101.114
2022-11-27 17:36:41 +0000 0 - 0 - 4 it.gratissesso.me/click?o=195&a=2951 18.194.62.185
2022-11-27 15:51:06 +0000 0 - 0 - 2 it.gratissesso.me/click?a=1686&o=135 18.194.62.185
2022-11-26 14:46:52 +0000 0 - 0 - 4 eileen.erikschultz.xyz/_meetups/?click_id=war (...) 70.32.23.110
2022-11-24 13:23:37 +0000 0 - 0 - 2 lavavq.amazlngdate.com/c/1e3a4e532f1c7040?s1= (...) 52.19.101.114

JavaScript

Executed Scripts (19)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (75)


Request Response
                                        
                                            GET /c/1e3a4e532f1c7040?s1=166616&s2=1573963&j1=1&s3=4478&click_id=mlClick-oHEHoIBw&j1=1&j8=1 HTTP/1.1 
Host: qvznmz.impresslvedate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         52.19.101.114
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:57:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: unique_id=6381c6f60008cdcb; Path=/; Expires=Wed, 25 Jan 2023 07:57:42 GMT unique_id2=6381c6f6000a11f0; Path=/; Expires=Fri, 24 Feb 2023 07:57:42 GMT 6381c6f6000a11f0_c=1; Path=/; Expires=Fri, 24 Feb 2023 07:57:42 GMT ref_token=166616; Path=/; Expires=Mon, 26 Dec 2022 07:57:42 GMT impression=; Path=/; Expires=Sat, 26 Nov 2022 07:57:42 GMT 6381c6f6000a11f0_sl=[277102]; Path=/; Expires=Sat, 10 Dec 2022 07:57:42 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1400)
Size:   7855
Md5:    75fba775936c6d565273f5a3b9228cf9
Sha1:   0460b3cca6e0e4cbdafe0ce3e329959d22eba3b3
Sha256: e09b7cb4c501d53b875870cb98662b4afd879437f22ed49ecb2cc95aef224528
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16402
Expires: Sat, 26 Nov 2022 12:31:04 GMT
Date: Sat, 26 Nov 2022 07:57:42 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3943
Cache-Control: max-age=99555
Date: Sat, 26 Nov 2022 07:57:42 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 11:36:57 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7681
Expires: Sat, 26 Nov 2022 10:05:43 GMT
Date: Sat, 26 Nov 2022 07:57:42 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 07:19:13 GMT
cache-control: public,max-age=3600
age: 2309
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: XrJLvLqc57NfxS2vDEe49bwZ4z0kSCUqEkXloxxJ9i2nIrlphQOA0w3okD+ajtwfsE21k7NOnHg=
x-amz-request-id: 83J00SP1ZAHCQX7V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 07:41:07 GMT
age: 996
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 26 Nov 2022 07:57:43 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /landings/277102/1669380390/css/swiper.min.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: /MH4gjIu4cWUcyYSfTYKgx/EpLe70de48x9c504jMoW6mUvKYMpKygoCZy/tS9fEryPa4x9LZnE=
x-amz-request-id: JCSM61FVDFX2J1FT
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "0290288128c98d0d598dfe514d95f138"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Length: 4127
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (13419)
Size:   4127
Md5:    6bef01d7afe09be2c610f0a7f329bcab
Sha1:   7dade81a732f80a283afe4df7af93adb3ff07d7a
Sha256: 8ec6b92ec87d87752bf8e86285de3b7d25e360971b324af8ea4e6dc8f5bd5ae2
                                        
                                            GET /landings/277102/1669380390/css/reviews.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: auTBFL4rmJIr/fbgcUf1UXDaHTBoxsTVWS7g5mVxHftUNgaik+qm6veGPV0P4QRRuPuKjtM6E0M=
x-amz-request-id: JCSX08RXN0789N4C
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "ea4bfe4dc6b6ecec85d2817514238d7d"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Length: 1226
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text
Size:   1226
Md5:    4601f862c9729d2c7d93cfce724d0ccb
Sha1:   dc15bfcf310ecc2ca5ff8a6f0a873ec5f1ac28e5
Sha256: 0d9bedbbd7155e1dabc76c812dacaee922c372e6479ce17dc72f80e977033104
                                        
                                            GET /landings/277102/1669380390/css/style.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: fMP/tLbcMEiHN4MqoAHpI2PgOzMhAFbCruE1ljwGCo3Fnqcg775pXRXLYdLhfOFukkD/MYu3/E8=
x-amz-request-id: JCSNZ0H63XQARYKM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "2d96fbf9ec06f2fff854c8b5bce34c4a"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Length: 5068
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text
Size:   5068
Md5:    b453429d3795c3f23b9997af593bd88f
Sha1:   28f61e808eb92d9b30d0ea31a8c621bdda81fbd6
Sha256: 41d21332f95e1a56a71acec80af7d7975b6b336d3955ca8f751bb31f6345252d
                                        
                                            GET /landings/277102/1669380390/css/popup.css?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
x-amz-id-2: n6lUB+2+IHHvTVZrwZp/lRm/9Z1X8LJNtcWI0Zj+eCuApt+fFYYDL9pp99hxFyGY5ofKutsv0YY=
x-amz-request-id: JCSPT67HN3CE0JVM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "e43bad8a7da8b62b8eb981230df1c042"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Length: 573
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   573
Md5:    49fd3d42563c4535cbdd6f95c11016d5
Sha1:   40606364ce01c442ba79daa01c4db5f7c8f57020
Sha256: c19c9920be6d3f5d0d09047d20a5ec3ae01bae5008a0e3cc930594ca4520aaf9
                                        
                                            GET /landings/277102/1669380390/js/trls.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: +Fg9OWUa0WuZnL63xR9sw79VOmUwqDClcKQFP1BoVTl+OZcX5KCV6uhVlRk3VAudBlgmOGqEVm4=
x-amz-request-id: JCSZN4TY06QCJYZV
Last-Modified: Fri, 25 Nov 2022 12:46:37 GMT
ETag: "dca4f0b0f022c4c8bf1a754b77d78d58"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Length: 12801
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   12801
Md5:    d86262927ea09f3e261df1719c5b3778
Sha1:   670644bb22041350ea46f31e6051df60f470b834
Sha256: 3657d88d817d44dddc645f1979f76f91aa5d36d540bc4c9be2a5b16e6402213d
                                        
                                            GET /landings/277102/1669380390/js/jquery.min.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: HBCzh5ACSKlt7uGHV9+YfwczV2ch3mCf0Tf1ciAEfLJfz3HtPGRgoXxZGGy9Qo3KTUkvan6qz1k=
x-amz-request-id: JCSN3QZ9Z9CW6512
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "b091a47f6b91e26c93a848092c6f3788"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Length: 33315
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (32038)
Size:   33315
Md5:    f32bc3ff91b7d8e3cee993d93ba616bc
Sha1:   70902bada7722edb4e6be6f90453d6c2c03bbad8
Sha256: fbdef831016761a2ad211333df4d830aae94cc768f440af5546f78677379fc2e
                                        
                                            GET /landings/277102/1669380390/js/main_alt.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: hAPT4miCwtjvVincYE1KEAhuATKfI2bnRCticHblkzjDAtYD5Nz6suhe9AN3cHim276JM5NOrzk=
x-amz-request-id: JCSW5M6KENNGME45
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "949590b2dcd7b3f095730a16debf6842"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Length: 6169
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (332)
Size:   6169
Md5:    699888c7e0d1d6a922ad6a031605e45e
Sha1:   f455bc5c0ee3b386bf54855bc73a34739598eeb5
Sha256: edb4d84f456e601b25bd25e0ff5b3402925aa1fa24bee95573473033fb38e835
                                        
                                            GET /landings/277102/1669380390/js/transl-sb.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: 5a1z0B8qh0v0csZgc8XPhbObOZ2K/Jqajh/TINzo2aektrE0GqGEJJ7d8+QRWqAHB/G8ajOIPCg=
x-amz-request-id: JCSJS4M2JGFE6P62
Last-Modified: Fri, 25 Nov 2022 12:46:37 GMT
ETag: "2873c50f584a0ecc0e878c84ca22a67a"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Length: 1998
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   1998
Md5:    1e0d2c655db08220da06f5ceb7222ef8
Sha1:   83232c5ecc575b33d52ae60eb2a0279f993839b9
Sha256: e1be7226ec934304e5ca5b783aaf06b1f3fe497308c46613e2962eaed7e81c3c
                                        
                                            GET /landings/277102/1669380390/js/translates-review.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: FiCI5FX21Kui3NwdZqIDJ+HC9ZMTkaTIaGnaD4jgEok1qWO9oGNCqJsRBa0YLOf5NpJleeBYHVM=
x-amz-request-id: JCSYSH1TQW6HQ0KY
Last-Modified: Fri, 25 Nov 2022 12:46:37 GMT
ETag: "09cf03d0a77b07d6c8969b853e74ee80"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Length: 16602
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   16602
Md5:    d708297aefc5b8d49a3bfd335b775806
Sha1:   964ff9e651d4dc26bf81c4d34d9a586e1983ea62
Sha256: 06a439afe49b086cebf4a654afea5b654170953bcef987f7229b6c01071f977d
                                        
                                            GET /landings/277102/1669380390/js/swiper.min.js?1669380390 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: JsS0dnoc8Qg8x4AGz+D9aRLFXWeRCSF4ffDxKhnisIm5+S1WF8h7sRG/y3zvaC7Jyg/RIHn82iA=
x-amz-request-id: JCSWMJT0NXBSHFYM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "70610853eb13bcedd94269762ff7e9fd"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Length: 38997
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ASCII text, with very long lines (790)
Size:   38997
Md5:    2ba7c48fe2c5ab2343d8666220ef1bd7
Sha1:   cec8c61c7abc2f3fb3405182938963ada4c1eb0e
Sha256: 6a00e257157534430b71a24e695822885ab0ad33b3460ad96519ee7353d75ed9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:57:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /landings/277102/1669380390/images/card-4.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 8qFwZT1glzkI0CybqbCnmEFlMUJUuQLd6RL4c/ITDvt3x0JapboHHSFPJA281rkSs/8EjqO6EhA=
x-amz-request-id: N7YZ4NZF4GABT28S
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "2c064aae31305ad28aec8cd38499d9de"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8321
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8321
Md5:    2c064aae31305ad28aec8cd38499d9de
Sha1:   c0e3e307a3fbfc0b8072fa625e80e9ccf6e90320
Sha256: f1abc5e31c804b10bcabdeddd2f4d4147e4727e9fdfe264654e87aabb6a031a6
                                        
                                            GET /landings/277102/1669380390/images/110010_1.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: jBMt8fNLCtMnxGBTo5s1xd1aHEy8mBFSKKc+7FyQRpLKjJ/HoHhX9wP3GeMPFkJco0D4rkC8hZo=
x-amz-request-id: QG3MP6SQBDD8YVA3
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "f0a79db4dd92694735ee0e6a311fc42c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 56596
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 682x388, components 3\012- data
Size:   56596
Md5:    f0a79db4dd92694735ee0e6a311fc42c
Sha1:   af0cbc1a6abcade4ae78b7df736a0206c218f6c1
Sha256: 09e3f147578d663b2b33b05eec941e4cd5f03afa54091a458e8cdc76a9ea9977
                                        
                                            GET /landings/277102/1669380390/images/card-8.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: wxYRUAxsBpAmcshKrNRPQRfuLYhJBnnl0J/ipWj0B6ZKRsrum3Dzy8MDH9mVVvtRqhjAg0snEDU=
x-amz-request-id: N7YS639AX5D547HX
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "40de263f2f3e4ff12149f2e93a668533"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8400
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8400
Md5:    40de263f2f3e4ff12149f2e93a668533
Sha1:   aa4e908ffaf7ed99c52d8af0e46690cf4df8a1d3
Sha256: a5518dda847b7093a2c72b207f3143cc0198f5e4e52c37d74ab32e90c6f29aa5
                                        
                                            GET /landings/277102/1669380390/images/card-5.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 8a9VIPKuZWt8MpsKt6df1GJ8+p5QkNNz/CZu8/WC7q0M9zLqdSQHdonqaWNssChUHQkXqWkYH/Y=
x-amz-request-id: N7YMT185T00XH2FZ
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "40de263f2f3e4ff12149f2e93a668533"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8400
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8400
Md5:    40de263f2f3e4ff12149f2e93a668533
Sha1:   aa4e908ffaf7ed99c52d8af0e46690cf4df8a1d3
Sha256: a5518dda847b7093a2c72b207f3143cc0198f5e4e52c37d74ab32e90c6f29aa5
                                        
                                            GET /landings/277102/1669380390/images/logo.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: n5zIFivvIOWSv1RVAzcJnTKI9Kkf0a5X3pQ1soikOyjNIPTTyH99ub0k7HghawWSPdTbJo/Sq5w=
x-amz-request-id: QG3G4BTNS26JBESJ
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "8c7ac40cbb3b09d628f0e04da43a597e"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 7208
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4317)
Size:   7208
Md5:    8c7ac40cbb3b09d628f0e04da43a597e
Sha1:   8a3bd6042a1ce39c2bc59f90299894b0e5c2d64c
Sha256: 29b773e1e21f12741ab91bf1550e128ba699284a81350329ecacc38e9875e3d1
                                        
                                            GET /landings/277102/1669380390/images/blocked-icon.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 9VYKTge6rw999zVaBnTDbG1fhuUFUbj3JaVPDQOzLbCvgYwdXEco63zOvoYnYRZhSgIZBIPEJDA=
x-amz-request-id: 66C80DKA1MKJJTW7
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "dd7797e823529164e0f6fc39efd2376a"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 303
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 22 x 28, 8-bit colormap, non-interlaced\012- data
Size:   303
Md5:    dd7797e823529164e0f6fc39efd2376a
Sha1:   d6c98e421a97f34945f94861eeba4a9f00376b50
Sha256: c8eef62a31b18850097e892dc99ce4af5a795f451f424148f8463bd6b0162521
                                        
                                            GET /landings/277102/1669380390/images/card-2.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: tU6CiwhG5cEftXkSk0ifpPXCtkIzpugJi6EkkZjlGjSykymtsucuJh9Tb0CFlC0sPZJhXdb3tTA=
x-amz-request-id: QG3M9PEX2WM28GDB
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "97fdbd5fd4286a683fb7fe2dacc9ae04"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 9344
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   9344
Md5:    97fdbd5fd4286a683fb7fe2dacc9ae04
Sha1:   5f3b04b7d2ebe334031cdb54ce265445ea201be2
Sha256: 8dafaa1ff9a2fc6b98aa7b248d5b0a282a16fac520aac86429850891c7d4cbbb
                                        
                                            GET /landings/277102/1669380390/images/card-3.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 2IRgkSWJRQLmIaXM9/awx6QvKjsIdBd3Pz/v16pqR/H00BVEl94dOeLJjNlX1hIcobQ8c8HW8Hc=
x-amz-request-id: QG3K847PV843PVXE
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "efe7dcd66d5ef0c7f85a57e0e453ef94"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 9015
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   9015
Md5:    efe7dcd66d5ef0c7f85a57e0e453ef94
Sha1:   c2dcb1d3c1883a7500cf3956b1a86f3120acef74
Sha256: a1317f032be5cb4cd2141aa0df1446394e2841fc5d76b83c38e3fdca5058bdae
                                        
                                            GET /landings/277102/1669380390/images/heart-3.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: qGXVTkEXBUs9XEoPB0lguKASSgNpxXV5CXEn4GLFD/UAb0gfqzbj1d4JPpizX4V/oa64t19XKUE=
x-amz-request-id: N7YSRV38AA5VJZDS
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "022da77708b2dd876e1bb511d4f3d812"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 576
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (472)
Size:   576
Md5:    022da77708b2dd876e1bb511d4f3d812
Sha1:   bd991b5567ee72b20b4382c6265afdc650da3eed
Sha256: 41be38d88784fde6eeabe4b448b5a85040742ad7f6ea0299e2ddfd0e2fafdb81
                                        
                                            GET /landings/277102/1669380390/images/heart-2.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: ViRdU97Iosj1IO9PkhXCIWTEIrREFS8vcMztBA3wA2dpkxL9arbaVzu4plp9ElNiAcI2ARHgIYs=
x-amz-request-id: N7YJYSTDRWBFKAVH
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "90d2ee51ecee5c771197923d8d6ee214"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 583
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (479)
Size:   583
Md5:    90d2ee51ecee5c771197923d8d6ee214
Sha1:   5f30213debdb65ef335fa0e46d0eb0d7ff07509b
Sha256: 3126909ea9db977aacf63419671e5144ec0b2b8d1f982c8e09c3a5b523d13e72
                                        
                                            GET /landings/277102/1669380390/images/heart-1.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: 4WqIrJjhe4uTWQcT8PUXD3mtwDnEXmuwS6JN220eU7Pk8J38ZMJDaqTKYMcQfuvkhN9HOg4f+78=
x-amz-request-id: QG3H0F36000X01Q8
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "7420723b13ae7b8fe796155c2763974e"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 581
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (477)
Size:   581
Md5:    7420723b13ae7b8fe796155c2763974e
Sha1:   7e4c1f5d996447802f770ba14ef9a024df047d04
Sha256: 2c5c623db938268a3d567ecc789b8fbc14ab8c1fd53b41100487a3288c82ca02
                                        
                                            GET /landings/277102/1669380390/images/card-6.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: mCNzLF6dC3n2/5NjHj0NGdFUiklE8xQ0JM+7pzH7LcgsBoz31Ur5Kv33kMk6AfWZnjVyqeiZQAQ=
x-amz-request-id: N7YM8VS411BX19VB
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "efe7dcd66d5ef0c7f85a57e0e453ef94"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 9015
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   9015
Md5:    efe7dcd66d5ef0c7f85a57e0e453ef94
Sha1:   c2dcb1d3c1883a7500cf3956b1a86f3120acef74
Sha256: a1317f032be5cb4cd2141aa0df1446394e2841fc5d76b83c38e3fdca5058bdae
                                        
                                            GET /landings/277102/1669380390/images/card-7.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: IVTz+3l1mdAbxKwM5640J+OcfWtGUs++voqQVgnTN3MHz32Uga7Z9d5d/I8Lb72i9BwRNXRfsF8=
x-amz-request-id: N7YNYQCAAP5WB4MA
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "4823fb9861645d16f1908a8e8838423d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8188
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8188
Md5:    4823fb9861645d16f1908a8e8838423d
Sha1:   f56396aa2a5ee196b0601bfef435730073f0db8b
Sha256: c90456072060ccc1a91c2b32eb13361457873c533bafc754bce7c29976bb8150
                                        
                                            GET /landings/277102/1669380390/images/4-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: GsRh/JrREnyu8wnaj90ipGKHiwiLVlsLra5MK7/w9OLkCeZagbrNFXD2NK0ROopuqd+LtpCuYFY=
x-amz-request-id: N7YY2JPKVHG985KR
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "cb3aff7c886e4f72a98172b873b5e62d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2586
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2586
Md5:    cb3aff7c886e4f72a98172b873b5e62d
Sha1:   33de244dcb4db4abe54b6508ae8d1546eb279aa5
Sha256: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e
                                        
                                            GET /landings/277102/1669380390/images/heart-4.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: hqFVPCu+Fzkwgl1M0K0SzSfphfD9zFctJohHAThyweorYoHLn8SgpbwVE0hPZ3cnDSOUbVj5Zh0=
x-amz-request-id: N7YV9ZNP0KTZBTZ7
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "64f19b69158a630336bdab04f438a052"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 582
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (478)
Size:   582
Md5:    64f19b69158a630336bdab04f438a052
Sha1:   fc7491c5a23357fa6169ba0be6a51456bcbbc11b
Sha256: 1e09b25edcab92d0e1768df8a69108ece995786b7accd9018aebd19e65fbc09c
                                        
                                            GET /landings/277102/1669380390/images/unlock.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: UmQtLOXLxdEwM3NifNpCMj2IN1PeqHp61zsIVI4DhGfM//KgY2o940IH7gZc8iEZn3KS5/Hy/0M=
x-amz-request-id: QG3YMR7H6WPYBD7V
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "a732e1e06affb4575c050fdb0131e5ca"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2378
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944)
Size:   2378
Md5:    a732e1e06affb4575c050fdb0131e5ca
Sha1:   da4f4f204a4d22c7424274a91520e0ea993c48c7
Sha256: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f
                                        
                                            GET /landings/277102/1669380390/images/shield.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: +Z6pv5fbkuZxZilbri1pD7VEJB83pSXkMgB18WEp05qv2sjogMfKpR7BEaS0VMtprYPF3nwo53A=
x-amz-request-id: N7YTCBG0496JA676
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1539
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310)
Size:   1539
Md5:    0c7a0dfd64cf020cd8a6dc0c3df1dbdf
Sha1:   f705635388aebebae1223d828c38233067f28ab1
Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888
                                        
                                            GET /landings/277102/1669380390/images/password.svg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: RxzoQk/MO4GZ/5EoN53r5LkDs0v0dmH4PqagyMJG3EIDq/txeJUcuGDiYrmmLK6F3oruBpQ0t1M=
x-amz-request-id: N7YP50TY1F89A3X1
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "f42aef7f97d4c9bdb074673081f38ac7"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1339
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (330)
Size:   1339
Md5:    f42aef7f97d4c9bdb074673081f38ac7
Sha1:   0231df782e371d139c826e091279acd9a07e691c
Sha256: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac
                                        
                                            GET /landings/277102/1669380390/images/8-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: DZCNhaz+LG9GQG5TnoXoWIlvdT/Db2EwSq/f7z6QO+OW1FVyXpZy5ltQuhzyVlfLqQVdmOAmG5Q=
x-amz-request-id: 66C985GZJD2PKXHK
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "41bbda91cef3f22db1d45d66f7ca0961"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2458
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2458
Md5:    41bbda91cef3f22db1d45d66f7ca0961
Sha1:   e2f8f56674e0180063a4f8287931dc0b273baf8e
Sha256: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e
                                        
                                            GET /landings/277102/1669380390/images/poster_alt2.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: 3yJYS4UB89UTEyytmmsw3PjxX2VqN+UhQetb9lMTcc55tDIGEE2WrtZMhV80rccQebmb+O84LfY=
x-amz-request-id: N7YK856GM5VXF25V
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "ede102f18b2c145f552919e17fe24301"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 24209
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 622x720, components 3\012- data
Size:   24209
Md5:    ede102f18b2c145f552919e17fe24301
Sha1:   ba53d2eb76da4da2faf4e1025e7ca3ab0c187733
Sha256: 18ab56d668596cdcdcf9b1fc56810635b4a84dfab986efea31f1141e9cffa21c
                                        
                                            GET /landings/277102/1669380390/images/1-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: /fbJVz/lRpBcRREuarlYrXjYSzlCcSh0bKydwXBSW73N+UvGMNxnoA5ojIQvmIjRbuR3S9FCPRk=
x-amz-request-id: QG3YYVGFFDWCQ82T
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "6e6d0b84c81d847e24671a711115a781"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 4292
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   4292
Md5:    6e6d0b84c81d847e24671a711115a781
Sha1:   20dc2d359e437dc10ceefea4d3c7b5189c2e58d0
Sha256: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553
                                        
                                            GET /landings/277102/1669380390/images/3-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: WugXIW5vZXf/eWTjLlSgx08t2/+E4YmpTfrXcSXbXYZQZ6zU2ho7kURa3Nxa+Qrmq/eXWw1IfiM=
x-amz-request-id: QG3MDQDD81ZJQ15F
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "1dc512dcb0850f22cfa72c789578085c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 3946
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 80x80, components 3\012- data
Size:   3946
Md5:    1dc512dcb0850f22cfa72c789578085c
Sha1:   933e9c5648e782c9f9a1504d2248f0acb4b9950b
Sha256: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00
                                        
                                            GET /landings/277102/1669380390/images/2-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: Z5aLTK1rF1tdGzkVSc3rQg5uTeKKHQJ+HzOj3KBOeyfLWvwFsoG3yLzLd/xXSQAN8zy/mBI76Ec=
x-amz-request-id: 66C0DBT24K56M1VE
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "66b6dc51bd19c799dcadf1dbeb628d9c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2009
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2009
Md5:    66b6dc51bd19c799dcadf1dbeb628d9c
Sha1:   ff7fe6049e944186764bfc5041d624ec11f8d362
Sha256: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0
                                        
                                            GET /landings/277102/1669380390/images/shutterstock_497382763_w.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: NIazgjYVf+AdfMpXjBAg7g+MH91SzMlkDWSEOmYVkc3KdXZxvaiXYcrxSVf6PyT+w1kzPdhnSqY=
x-amz-request-id: QG3V6A7CJ9V579S5
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "7672ac6ce009272cfbc099be80718fea"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 18302
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 986 x 475, 4-bit colormap, non-interlaced\012- data
Size:   18302
Md5:    7672ac6ce009272cfbc099be80718fea
Sha1:   fe1e0300c9d16a3dda61df3780af6e24c8c10ffd
Sha256: 53f048cacd290d3fa1b6d80c3b2d40d16adca813667151cf2d38a487e2ebe99e
                                        
                                            GET /landings/277102/1669380390/images/card-1.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: mbxQOAnfmFopLeP1oUelebftBiiFD5oYDoBSAuRjkiurhX8Y5CkyU+dcPMRBXKiHUxVZ8XDzMR8=
x-amz-request-id: QG3Y7MRYHGR1ARZQ
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "4823fb9861645d16f1908a8e8838423d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8188
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 184 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8188
Md5:    4823fb9861645d16f1908a8e8838423d
Sha1:   f56396aa2a5ee196b0601bfef435730073f0db8b
Sha256: c90456072060ccc1a91c2b32eb13361457873c533bafc754bce7c29976bb8150
                                        
                                            GET /landings/277102/1669380390/images/5-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: rGHwHn9ftYGMHOzfsnFteZs/foey/ouFHxst5rt6oJr9fDjKwuucq+GtRSwefZbDp0S4i4AJbhM=
x-amz-request-id: N7YQ909M1HH7Y8K7
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
ETag: "27109a247208262e6293950ca8f5450d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2879
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2879
Md5:    27109a247208262e6293950ca8f5450d
Sha1:   cea89616d15ad45a0f2b04082dff608abd96b800
Sha256: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96
                                        
                                            GET /landings/277102/1669380390/images/6-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: TzwDF4YLLj2vqsO9Upkbh7jlZL3h3o5OeS1ZquCZbv8Ejzou+wD7Tnd1+FakBg0DQGOXLptXh+M=
x-amz-request-id: N7YQQZS8EA2W1JWE
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "9a6870069cb979e16b239f9ed485fb3c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 3256
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   3256
Md5:    9a6870069cb979e16b239f9ed485fb3c
Sha1:   c1dc7f3620c8cc391648c550f91b269b04d3c612
Sha256: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818
                                        
                                            GET /landings/277102/1669380390/images/7-eu.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: soghgRSwPPw0uK7P/RkVfdiRWjUjgo/txrzwP1OzPv2JsONOdg0YtbCcLFqNI+8i0GuV6FKghl0=
x-amz-request-id: N7YN3P5B58PV2GG9
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "8155d8ecc7dc2d9b29cf99ab85c3d2a8"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2282
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size:   2282
Md5:    8155d8ecc7dc2d9b29cf99ab85c3d2a8
Sha1:   ba784563c7787760b318af24ea274ad6df2c5b89
Sha256: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:57:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /landings/277102/1669380390/images/action_icons_20px_2x.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/277102/1669380390/css/reviews.css?1669380390
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: rgMpXdwCZXaHBmSUcrDi8BHB53zR4iPSLMqYksMcKPacOR6QPv60JBYgI0FwtbjRX+SA6kEY7fY=
x-amz-request-id: QG3S49RQ8WTEGTRX
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "b699975b5fe73b087e711a33ff24ee1e"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1726
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data
Size:   1726
Md5:    b699975b5fe73b087e711a33ff24ee1e
Sha1:   0e33cc5c32a5e7d18440751e3946076664caaf53
Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
                                        
                                            GET /landings/277102/1669380390/images/poster_alt.jpg HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/277102/1669380390/css/style.css?1669380390
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
x-amz-id-2: 07tvr+PrUGEio0VNNKDdhXokFHqvHrghy2qzwjTbc3//aU7XV/LIa3eT0MKmk4i8UbpMtynyZSA=
x-amz-request-id: N7YTJTC1B7R33XJT
Last-Modified: Fri, 25 Nov 2022 12:46:32 GMT
ETag: "e5f8511eeaa81d41b49a476ba6faed4c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 12312
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 375x779, components 3\012- data
Size:   12312
Md5:    e5f8511eeaa81d41b49a476ba6faed4c
Sha1:   1676dae39aa9de9acf19a742f7100c68d3a30581
Sha256: 5d3d02ee61c7766afba36ef11b030daa59dcd9ea2ad38fb2a8c84724ecaf34e0
                                        
                                            GET /landings/277102/1669380390/images/shutterstock_751200268_web_2.png HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/277102/1669380390/css/style.css?1669380390
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: nYpnejgset9N4TrgYbbasvvP7FsE9wiTiosOJxA2MVX/IKgRzDjYziHdJVfKjLq3hYY9N2B6YEQ=
x-amz-request-id: N7YJTRKPCNA275QC
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "0666da291b2e75b6dfcc14444d83ab13"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 94922
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 1920 x 1080, 4-bit colormap, non-interlaced\012- data
Size:   94922
Md5:    0666da291b2e75b6dfcc14444d83ab13
Sha1:   563a6c7c74f65f7fb4505cfc7c5f41b459e26cbe
Sha256: 2d5acbd7c7a2e91720c41c64b389b99377d415574911488db2540a5d7770ce09
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:57:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:57:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:57:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1 
Host: qvznmz.impresslvedate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/c/1e3a4e532f1c7040?s1=166616&s2=1573963&s3=4478&s5=backuser&click_id=mlClick-oHEHoIBw&iexpp=1&j1=1&j8=1
Cookie: unique_id=6381c6f60008cdcb; unique_id2=6381c6f6000a11f0; 6381c6f6000a11f0_c=1; ref_token=166616; 6381c6f6000a11f0_sl=[277102]

search
                                         52.19.101.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:57:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 03 Dec 2022 07:57:43 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (9389)
Size:   3297
Md5:    3fc959642390ff4dc8b17be4e706c3fc
Sha1:   107f4500b048c2060c53260ef3c5a0c2286499a8
Sha256: 740aacdd2752459683dc7986658f1ac667048404bc12ce6dd233813d68aa4131

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://qvznmz.impresslvedate.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 06:03:56 GMT
expires: Fri, 24 Nov 2023 06:03:56 GMT
cache-control: public, max-age=31536000
age: 179627
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size:   37924
Md5:    e08be6d5d433944f7ad52902e4d24db5
Sha1:   e2600c1d60d12d397b3ee44411a021231d71e974
Sha256: 450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:57:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /landings/277102/1669380390/images/1.mp4 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 206 Partial Content
Content-Type: video/mp4
                                        
x-amz-id-2: 3U6uOyx0cCztm6bqurgoAMxjbUf6iJv4ae8ulpgBhGFaJtZgw1zwyXvQOi6vpQWw03zVad3RI+g=
x-amz-request-id: 66C3YZ7GH0VRGCGK
Last-Modified: Fri, 25 Nov 2022 12:46:35 GMT
ETag: "9bcfa52d111b14fc68090d2456c0ef1b"
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Range: bytes 0-1432429/1432430
Content-Length: 1432430
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size:   1432430
Md5:    9bcfa52d111b14fc68090d2456c0ef1b
Sha1:   f27bfaafbdd796c5796a01e2ff5520f7a153bed2
Sha256: 9cfe07186757777f46b8fc3ecf8ab28d2cf1aa8fbf2c4044c86a2c1765c79d8a
                                        
                                            POST /ortb HTTP/1.1 
Host: qvznmz.impresslvedate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 295
Origin: http://qvznmz.impresslvedate.com
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/c/1e3a4e532f1c7040?s1=166616&s2=1573963&s3=4478&s5=backuser&click_id=mlClick-oHEHoIBw&iexpp=1&j1=1&j8=1
Cookie: unique_id=6381c6f60008cdcb; unique_id2=6381c6f6000a11f0; 6381c6f6000a11f0_c=1; ref_token=166616; 6381c6f6000a11f0_sl=[277102]

search
                                         52.19.101.114
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:57:43 GMT
Content-Length: 13
Connection: keep-alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   13
Md5:    1031bf08481e45e42ceb3fd978c3d379
Sha1:   3d6d43df4c45f09f5d68593646fd83352323a5ea
Sha256: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/pushjs/1.0.0/utils.js HTTP/1.1 
Host: qvznmz.impresslvedate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/c/1e3a4e532f1c7040?s1=166616&s2=1573963&s3=4478&s5=backuser&click_id=mlClick-oHEHoIBw&iexpp=1&j1=1&j8=1
Cookie: unique_id=6381c6f60008cdcb; unique_id2=6381c6f6000a11f0; 6381c6f6000a11f0_c=1; ref_token=166616; 6381c6f6000a11f0_sl=[277102]

search
                                         52.19.101.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:57:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 03 Dec 2022 07:57:43 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (7071), with no line terminators
Size:   3387
Md5:    be3b25b851473bc70a884cb177fd7076
Sha1:   51db0baf5c4fd8a8b09ca7ffde3ffa987635cbd0
Sha256: 1b0a79f9e94716392c53169b6f43442b5228c54c3043be131d72b3bf60ca972a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 07:08:54 GMT
cache-control: public,max-age=3600
age: 2929
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /landings/277102/1669380390/images/favicon.ico?t=20221126075742 HTTP/1.1 
Host: cdn-dimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         184.31.15.67
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
x-amz-id-2: BJ164TYKUnU54WBUmu18W6Gz++inuveqQnoETpZXa/nCabV46Dn1OsCkwOqZ3UbkXjJ+nevnwmI=
x-amz-request-id: 7ZKH92BXHF9VCZVM
Last-Modified: Fri, 25 Nov 2022 12:46:36 GMT
ETag: "8924ecd94cbad467c5c645d52fbee336"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 11340
Date: Sat, 26 Nov 2022 07:57:43 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel\012- data
Size:   11340
Md5:    8924ecd94cbad467c5c645d52fbee336
Sha1:   b1f83e498743f6a50594d08a6eb89620467958d2
Sha256: d33210764a14dfd57a8193ae2a5426ea1b9b63460fd3eced0aa9c175a1a833d3
                                        
                                            GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:32:45 GMT
expires: Thu, 23 Nov 2023 18:32:45 GMT
cache-control: public, max-age=31536000
age: 221098
last-modified: Thu, 10 May 2018 20:35:51 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25088)
Size:   8604
Md5:    73069e532b7039778d3a7128c997c61a
Sha1:   c523bbf1ac7f4e612c8ade75434c42fbca885adc
Sha256: b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5
                                        
                                            GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qvznmz.impresslvedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 18:29:53 GMT
expires: Tue, 21 Nov 2023 18:29:53 GMT
cache-control: public, max-age=31536000
age: 394070
last-modified: Thu, 10 May 2018 20:35:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35547)
Size:   10017
Md5:    fa9987a23f5a9d865766e952511baa30
Sha1:   f2e620b99ee61a01671ba6a9e22ca75d58a1b52d
Sha256: 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 152
Cache-Control: max-age=90699
Date: Sat, 26 Nov 2022 07:57:44 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 09:09:23 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DSqbdcRmAuCjfPFjAL3BiA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         52.43.61.95
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cBquxt22kvx2b6+ACkQg6iwM2Ow=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2772
Expires: Sat, 26 Nov 2022 08:43:57 GMT
Date: Sat, 26 Nov 2022 07:57:45 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2772
Expires: Sat, 26 Nov 2022 08:43:57 GMT
Date: Sat, 26 Nov 2022 07:57:45 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2772
Expires: Sat, 26 Nov 2022 08:43:57 GMT
Date: Sat, 26 Nov 2022 07:57:45 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2772
Expires: Sat, 26 Nov 2022 08:43:57 GMT
Date: Sat, 26 Nov 2022 07:57:45 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7025
x-amzn-requestid: 2c9cd3bc-80d4-4578-a0aa-4f1ff7f19d30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNYGwaIAMFU8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-0c66a293144f894f001ae0cf;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: r2feThcq6D5u1ptiBnSuA5ZC00_W8moa4pb6xSxxeIEMbgoPtQdUyQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:51:02 GMT
age: 36403
etag: "741e5e48c4fb170efee9b611be5638d999a09bd2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7025
Md5:    7e0c5064718601e80b7bfc931120ff70
Sha1:   741e5e48c4fb170efee9b611be5638d999a09bd2
Sha256: d0b1537f43277e7f59152e6272d4f3888ab4618fa7fe0e4b24e2f851dbf0f4cd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: whO__FB0B2ywDP_p63eQ044RXbT207sX1i87I6nPAFUB85nSYc0Cuw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:06 GMT
age: 36699
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8913
Md5:    5088223f5973e3cd56f03f50a1e84b79
Sha1:   0b6c9b51d10762a4747286ab5b1c2354fa39c622
Sha256: 8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qKxrYxVsJWOXAbrn6IpwLycF3rknFLkQeDyKOLq5WyflvTLeUjg_Lg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:18:42 GMT
age: 34743
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9914
Md5:    3b1c6878914466cfece680fa7cb73502
Sha1:   47fac81a2dd809df5c42ca1362f71d553572d2b1
Sha256: 6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 02:19:43 GMT
age: 20282
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /css2?family=Inter:wght@400;500;600;700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 07:57:43 GMT
date: Sat, 26 Nov 2022 07:57:43 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   9716
Md5:    1b4575978865d73f856fbd3f7f4c5e65
Sha1:   d16f2d37565b2316552e85cbb0a6923181776109
Sha256: ce6183e775bf5c7e155ee02601cd13a657cf6d9168181956ec67b2f04f621578
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SRN-oOfa8Z0mQZFYkWAv32XFiXChfGjfwZkfWz-IzHubwrKgzwoTxQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 03:55:38 GMT
age: 14527
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3502
Md5:    a783df85f30f9c555f9df6b99f61744d
Sha1:   61f9bed607e81606be78285596acdc5e0e4f4994
Sha256: 19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de