marially-watears.icu/88122290-6613-41c1-b183-ee0ab2983ac3
302 0 B URL HTTP/1.1 marially-watears.icu/88122290-6613-41c1-b183-ee0ab2983ac3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /88122290-6613-41c1-b183-ee0ab2983ac3 HTTP/1.1
Host: marially-watears.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Sun, 29 Jan 2023 00:14:50 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: http://connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-web/?HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
Pragma: no-cache
Set-Cookie: 88122290-6613-41c1-b183-ee0ab2983ac3-v4=Gp0lXti3N1SD_moD5Kzjqc1UlQmTC2bL5EOp5c00k6Y; Max-Age=86400; Expires=Mon, 30-Jan-2023 00:14:50 GMT; Domain=marially-watears.icu; Path=/; HttpOnly
cc-v4=ik0bJt8C7TBN3MREf2cFWCRViIrpRMCAQo7qik0NPDR9H3dnRvvGnN3cD4PjBiPQvyktRXSCtgSiSekW0lJEtGvUF8UZzEVNMGJGFlOq4BHMVg87IzENGUD%2FShSEx9AnfqSSKY9nLmM9%2BLTRSOSlqw%3D%3D; Max-Age=31536000; Expires=Mon, 29-Jan-2024 00:14:50 GMT; Domain=marially-watears.icu; Path=/; HttpOnly
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14492
Expires: Sun, 29 Jan 2023 04:16:23 GMT
Date: Sun, 29 Jan 2023 00:14:51 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12349
Expires: Sun, 29 Jan 2023 03:40:40 GMT
Date: Sun, 29 Jan 2023 00:14:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 23:35:32 GMT
content-type: application/json
age: 2359
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9552
Expires: Sun, 29 Jan 2023 02:54:03 GMT
Date: Sun, 29 Jan 2023 00:14:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /1U/8qxHdlY7qjRyFIbzhiV2Qwhdzips5dZlQ6qTpSTcHI9dnktxEIRJtXbIxopuStwWmJsDiJI=
x-amz-request-id: ZG81GM0DHAZ911H1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 23:50:06 GMT
age: 1485
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 00:14:51 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-web/?HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
302 Found 1.6 kB URL HTTP/1.1 connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-web/?HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
IP
ASN #49582 Upstream Telecommunications And Software Systems S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (703)
Hash ccb69e73e91fd19bb1d328bd55ef9025
4173be956796daa3a3192e8ea657d47cafa92e9e
11f1cf8b876b42d379540cf292831f7d85cd5ba72fedd7e445f32d092a007dfe
GET /zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-web/?HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_ HTTP/1.1
Host: connectu.vodacom.cd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sun, 29 Jan 2023 00:14:51 GMT
Cache-Control: no-cache, private
Location: http://connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-wifi?nowifi=1&HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
Set-Cookie: ng_session=eyJpdiI6Ik00WkVuelVXOFFPeDVMRmNyQTBlQ1E9PSIsInZhbHVlIjoidnE3VHNqMlVVSXRrZkZtM1lrMllVV1dCU1pvRmhsR2FyakFBNy8rcjNjUnFKRzRESnFBNmlBTndKc1NnZUxlbUpHUE4yZ1BNSXlXcngrZHMrdU9iV3BPL0ZxWGxyT3d0c21QUGtEWEFTTVhjNkxBdTVPRTFxcHJxVVZlUUYvcU0iLCJtYWMiOiJmNmI4N2UyZTc4OWJmYzM5MTg4MWM3ODRjMTMxN2VhMWJkYmQ3ZmY0M2I1MTgwZDhmNGVhOTg1YmE4ZWJkMDgzIiwidGFnIjoiIn0%3D; expires=Sun, 29-Jan-2023 06:14:51 GMT; Max-Age=21600; path=/; httponly; samesite=lax
ctxid=eyJpdiI6IlJ3UENtVEhnbUhNd0xyckQwRWpDenc9PSIsInZhbHVlIjoiSzJyU0tqV0QzcHlnTS9DcThyVndnYnJhaGh5NjRMWGFCbzkvdkdtQk5RZjZnVlZhRmloY2dMa3AzNEFUMGt0ZjJJK1hzRURDK3ZyaDZpRGltcW82clJsWWpPSmlJeGcydGFHSXM0ZFhMcDA9IiwibWFjIjoiMDM3MGVhOTY5YjVlNWU5ZDYwNGY2M2IwOWViODFiMzFmN2U2MWM2NjVmYWUzZWY0MzRkYWNkNmMyNWY2NjVkOSIsInRhZyI6IiJ9; expires=Wed, 26-Jan-2033 00:14:51 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
rd=deleted; expires=Sat, 29-Jan-2022 00:14:50 GMT; Max-Age=0; path=/; httponly; samesite=lax
userSessionID=eyJpdiI6IlhSSHpZd0Z3QWRHcXFPOTFRNXo4c0E9PSIsInZhbHVlIjoiVWVxY1Y2cFpDRm1rbVoxZmhFSU44eTRMQnFjMWp3V2ExM3FIeksrYjhOVG1CUVhOc0N0dkRNanIxYUZCQm12K0VUOXVJdWtTeGY5MXpLdzNteTVUZDJtZ01tR05CL2RQVlNBRkpEd2hhYUk9IiwibWFjIjoiMGMxYWEyOWIxOGRkYWI4ODU1OTUyNmJjY2RlNTlhZDRlZjE2MTczZWFlMDhiNDQzNDE4ZWRhNzM5OWYyZTE5MyIsInRhZyI6IiJ9; expires=Sun, 29-Jan-2023 00:44:51 GMT; Max-Age=1800; path=/; httponly; samesite=lax
userPermID=eyJpdiI6IkxWNEFZWUkyNmdhS3RyZHMrcVlxWkE9PSIsInZhbHVlIjoiUy8zYWs4cmllT1BqWFBEcEtFVERVSTZZQ0wvaE5SUUVSVDNsa1NtczFiRHkzc3h3djRxM3N2WUNoemVteEtwcHladU9QdnJ2WGJhSlBYMlVsTm5rSkhkRnVPdE1mUzdSeWlyMEZ0cGROa3c9IiwibWFjIjoiYTIyNzRlMzBlNTI5ZTRlYzEwZTA1ZTRhZGNlMmFkY2Q2NDljMDlmZWZiN2U4NGI2ZWY4OWM4N2Q5N2UwNTc3ZSIsInRhZyI6IiJ9; expires=Wed, 26-Jan-2033 00:14:51 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
TS01a6d453=0119fdce077d33bd5e5d3744295ffd6ffba7f2b0609edf9ad832f81c9a73448fcd4b0ebfdb8e43c8a29a603b993a7d45e28cc371ed; Path=/
Content-Type: text/html; charset=UTF-8
X-Varnish: 21309374
Age: 0
Via: 1.1 varnish (Varnish/6.0)
X-Cache: MISS
Access-Control-Allow-Origin: *
Connection: keep-alive
Transfer-Encoding: chunked
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 23:41:40 GMT
age: 1991
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-wifi?nowifi=1&HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
200 OK 3.2 kB URL HTTP/1.1 connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-wifi?nowifi=1&HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
IP
ASN #49582 Upstream Telecommunications And Software Systems S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (366)
Hash c76c3331e1c966739dc9c62c0c5c3775
32ea669ec9981d37d9b08875e9a487d70de9280c
facbbffc80a8d30538c156c91432885d0364975b78f3da46f33b2fa69df2da83
GET /zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-wifi?nowifi=1&HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_ HTTP/1.1
Host: connectu.vodacom.cd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: ng_session=eyJpdiI6Ik00WkVuelVXOFFPeDVMRmNyQTBlQ1E9PSIsInZhbHVlIjoidnE3VHNqMlVVSXRrZkZtM1lrMllVV1dCU1pvRmhsR2FyakFBNy8rcjNjUnFKRzRESnFBNmlBTndKc1NnZUxlbUpHUE4yZ1BNSXlXcngrZHMrdU9iV3BPL0ZxWGxyT3d0c21QUGtEWEFTTVhjNkxBdTVPRTFxcHJxVVZlUUYvcU0iLCJtYWMiOiJmNmI4N2UyZTc4OWJmYzM5MTg4MWM3ODRjMTMxN2VhMWJkYmQ3ZmY0M2I1MTgwZDhmNGVhOTg1YmE4ZWJkMDgzIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IlJ3UENtVEhnbUhNd0xyckQwRWpDenc9PSIsInZhbHVlIjoiSzJyU0tqV0QzcHlnTS9DcThyVndnYnJhaGh5NjRMWGFCbzkvdkdtQk5RZjZnVlZhRmloY2dMa3AzNEFUMGt0ZjJJK1hzRURDK3ZyaDZpRGltcW82clJsWWpPSmlJeGcydGFHSXM0ZFhMcDA9IiwibWFjIjoiMDM3MGVhOTY5YjVlNWU5ZDYwNGY2M2IwOWViODFiMzFmN2U2MWM2NjVmYWUzZWY0MzRkYWNkNmMyNWY2NjVkOSIsInRhZyI6IiJ9; userSessionID=eyJpdiI6IlhSSHpZd0Z3QWRHcXFPOTFRNXo4c0E9PSIsInZhbHVlIjoiVWVxY1Y2cFpDRm1rbVoxZmhFSU44eTRMQnFjMWp3V2ExM3FIeksrYjhOVG1CUVhOc0N0dkRNanIxYUZCQm12K0VUOXVJdWtTeGY5MXpLdzNteTVUZDJtZ01tR05CL2RQVlNBRkpEd2hhYUk9IiwibWFjIjoiMGMxYWEyOWIxOGRkYWI4ODU1OTUyNmJjY2RlNTlhZDRlZjE2MTczZWFlMDhiNDQzNDE4ZWRhNzM5OWYyZTE5MyIsInRhZyI6IiJ9; userPermID=eyJpdiI6IkxWNEFZWUkyNmdhS3RyZHMrcVlxWkE9PSIsInZhbHVlIjoiUy8zYWs4cmllT1BqWFBEcEtFVERVSTZZQ0wvaE5SUUVSVDNsa1NtczFiRHkzc3h3djRxM3N2WUNoemVteEtwcHladU9QdnJ2WGJhSlBYMlVsTm5rSkhkRnVPdE1mUzdSeWlyMEZ0cGROa3c9IiwibWFjIjoiYTIyNzRlMzBlNTI5ZTRlYzEwZTA1ZTRhZGNlMmFkY2Q2NDljMDlmZWZiN2U4NGI2ZWY4OWM4N2Q5N2UwNTc3ZSIsInRhZyI6IiJ9; TS01a6d453=0119fdce077d33bd5e5d3744295ffd6ffba7f2b0609edf9ad832f81c9a73448fcd4b0ebfdb8e43c8a29a603b993a7d45e28cc371ed
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 00:14:51 GMT
Cache-Control: no-cache, private
X-Frame-Options: DENY
Set-Cookie: ng_session=eyJpdiI6InJFaDBKUjJmQktnb011YWtQZnpsdHc9PSIsInZhbHVlIjoiZE9oU2xYdTY4ajFsU2o3T0VKbXFEbGRSSUpuc0o1UXdHRmxwekxNV05Dd0RtQ1RXb3lXQXIyUHovSGJrNHQxb0JSYkx6V3o4bUVpRmVSbTlHTTcxbjBzYVduaVYxeHlhSkVjUjFQQVpTL3g5VDBQc0xxK1piTDdLbmlCZXlPekEiLCJtYWMiOiI4YzE3NjQ0OGYzY2RlZWEwNDJhMTY4MTg0YjFiZTQwNjE2OWQ5ZGU1NDI0YWZiMGQxZGU3ZGRiMjMyM2I0YTZhIiwidGFnIjoiIn0%3D; expires=Sun, 29-Jan-2023 06:14:51 GMT; Max-Age=21600; path=/; httponly; samesite=lax
userPermID=eyJpdiI6InlhRDZ2TU1GY09qUGtEMDYxSExZWmc9PSIsInZhbHVlIjoibncvVGdoWCtVeWI5TXY3WHZqdzVuWm92RDB6VkRWM3NGQWdrU1FoTm5mMW9CeW1MazlqTTlseEgzNGV4WXp5d1NNV2VYZmhaZHJPdmRaL1FaQ0ovTjRoa1Y3WHUrZ290RTl0eU9ka2NvMnM9IiwibWFjIjoiZjNhYzNjOWNiODRjNzQyNWI5MWY3MGZjMjBkNzE2OWQ0ZGM0MWFkNzE5YjNlZGQxMjEwN2Y2YzMyYjc3OGMxZSIsInRhZyI6IiJ9; expires=Wed, 26-Jan-2033 00:14:51 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
userSessionID=eyJpdiI6ImRrZ0hKMjNuQ1NzcEFUbDRScEQ5U3c9PSIsInZhbHVlIjoiclVsYmpmSmNSbDhMbVFGQ2JKdVFkWVRPNVFmUkZzNngxS28rd0szeno3M05UMGhFRXJQYXhSdk1lTnEwYnBTR2NkU25Na21lcFdzS2tFQlFqZ1NyNTdkcXkxc3VSa0J4TEZHOWtJbUg5bm89IiwibWFjIjoiOWUxNGY4MzE5MmYzMzg2NDlmN2E0N2IyYjVkNGEyYzhmMDYwMzZkNjNhNzZiOGJlZjJlMTRmMjAwNTI3YWM5MCIsInRhZyI6IiJ9; expires=Sun, 29-Jan-2023 00:44:51 GMT; Max-Age=1800; path=/; httponly; samesite=lax
ctxid=eyJpdiI6IlRIN0d4c1dsa21TVXBicXNVcnNPYWc9PSIsInZhbHVlIjoiNE1XUEdiaE5oRERTWGlDTHNqZnlQUk0zNXl2c1N2MzVMTGtoNElRT25lUlpQekphcmdQc3BqSytRY2ltNmdUNlVqdUxmbGdHbEczTUhjVWpQZkI5bzNRUUcwYTgyMlRkeGZBQ2N1NmRBUU09IiwibWFjIjoiODIzNGQ0ZjU5NDQyMzliMzQwMzE1NTE3NWEzYjRhZDkyMmJhZDAzMDJhNmUxMWQ5MDFiMjcyMzM2OTEwN2UwNyIsInRhZyI6IiJ9; expires=Wed, 26-Jan-2033 00:14:51 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
rd=deleted; expires=Sat, 29-Jan-2022 00:14:50 GMT; Max-Age=0; path=/; httponly; samesite=lax
TS01a6d453=0119fdce077d33bd5e5d3744295ffd6ffba7f2b0609edf9ad832f81c9a73448fcd4b0ebfdb8e43c8a29a603b993a7d45e28cc371ed; Path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
X-Varnish: 21309376
Age: 0
Via: 1.1 varnish (Varnish/6.0)
X-Cache: MISS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Connection: keep-alive
Transfer-Encoding: chunked
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13263
Expires: Sun, 29 Jan 2023 03:55:54 GMT
Date: Sun, 29 Jan 2023 00:14:51 GMT
Connection: keep-alive
connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/CVS-CDVOD-UPSTR-supergenie2-fr-doi-wifi.css?ver=17
200 OK 2.9 kB URL HTTP/1.1 connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/CVS-CDVOD-UPSTR-supergenie2-fr-doi-wifi.css?ver=17
IP
ASN #49582 Upstream Telecommunications And Software Systems S.A.
Hash 0a4dd79ad5249d6223e34967e94eba54
eee2393fc7cc62ed326bead798a586ad2e0d6933
845890b23e2dd7836d9770988f07bc0ff4daca1726c42c9ed4bf520f27d30800
GET /zrd/CVS-CDVOD-UPSTR/assets/CVS-CDVOD-UPSTR-supergenie2-fr-doi-wifi.css?ver=17 HTTP/1.1
Host: connectu.vodacom.cd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-wifi?nowifi=1&HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
Cookie: ng_session=eyJpdiI6InJFaDBKUjJmQktnb011YWtQZnpsdHc9PSIsInZhbHVlIjoiZE9oU2xYdTY4ajFsU2o3T0VKbXFEbGRSSUpuc0o1UXdHRmxwekxNV05Dd0RtQ1RXb3lXQXIyUHovSGJrNHQxb0JSYkx6V3o4bUVpRmVSbTlHTTcxbjBzYVduaVYxeHlhSkVjUjFQQVpTL3g5VDBQc0xxK1piTDdLbmlCZXlPekEiLCJtYWMiOiI4YzE3NjQ0OGYzY2RlZWEwNDJhMTY4MTg0YjFiZTQwNjE2OWQ5ZGU1NDI0YWZiMGQxZGU3ZGRiMjMyM2I0YTZhIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IlRIN0d4c1dsa21TVXBicXNVcnNPYWc9PSIsInZhbHVlIjoiNE1XUEdiaE5oRERTWGlDTHNqZnlQUk0zNXl2c1N2MzVMTGtoNElRT25lUlpQekphcmdQc3BqSytRY2ltNmdUNlVqdUxmbGdHbEczTUhjVWpQZkI5bzNRUUcwYTgyMlRkeGZBQ2N1NmRBUU09IiwibWFjIjoiODIzNGQ0ZjU5NDQyMzliMzQwMzE1NTE3NWEzYjRhZDkyMmJhZDAzMDJhNmUxMWQ5MDFiMjcyMzM2OTEwN2UwNyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImRrZ0hKMjNuQ1NzcEFUbDRScEQ5U3c9PSIsInZhbHVlIjoiclVsYmpmSmNSbDhMbVFGQ2JKdVFkWVRPNVFmUkZzNngxS28rd0szeno3M05UMGhFRXJQYXhSdk1lTnEwYnBTR2NkU25Na21lcFdzS2tFQlFqZ1NyNTdkcXkxc3VSa0J4TEZHOWtJbUg5bm89IiwibWFjIjoiOWUxNGY4MzE5MmYzMzg2NDlmN2E0N2IyYjVkNGEyYzhmMDYwMzZkNjNhNzZiOGJlZjJlMTRmMjAwNTI3YWM5MCIsInRhZyI6IiJ9; userPermID=eyJpdiI6InlhRDZ2TU1GY09qUGtEMDYxSExZWmc9PSIsInZhbHVlIjoibncvVGdoWCtVeWI5TXY3WHZqdzVuWm92RDB6VkRWM3NGQWdrU1FoTm5mMW9CeW1MazlqTTlseEgzNGV4WXp5d1NNV2VYZmhaZHJPdmRaL1FaQ0ovTjRoa1Y3WHUrZ290RTl0eU9ka2NvMnM9IiwibWFjIjoiZjNhYzNjOWNiODRjNzQyNWI5MWY3MGZjMjBkNzE2OWQ0ZGM0MWFkNzE5YjNlZGQxMjEwN2Y2YzMyYjc3OGMxZSIsInRhZyI6IiJ9; TS01a6d453=0119fdce077d33bd5e5d3744295ffd6ffba7f2b0609edf9ad832f81c9a73448fcd4b0ebfdb8e43c8a29a603b993a7d45e28cc371ed
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 00:12:45 GMT
Last-Modified: Tue, 24 Jan 2023 11:00:25 GMT
ETag: "54ef-5f3006c47d32c-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2930
Content-Type: text/css
X-Varnish: 21309378 21403568
Age: 126
Via: 1.1 varnish (Varnish/6.0)
X-Cache: HIT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Connection: keep-alive
connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/images/SuperGenie/CVS-supergenie2-vod-logo.png
200 OK 1.4 kB URL HTTP/1.1 connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/images/SuperGenie/CVS-supergenie2-vod-logo.png
IP
ASN #49582 Upstream Telecommunications And Software Systems S.A.
File type PNG image data, 121 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 64d68abae336d51c4ba1b026df001847
9cd07a2ac03336cd26fcc92e4a9e30e2c6c00d2a
889df83b09f882db68580dd1507fac14287f616297072c6dd2d4a79f09fd8bed
GET /zrd/CVS-CDVOD-UPSTR/assets/images/SuperGenie/CVS-supergenie2-vod-logo.png HTTP/1.1
Host: connectu.vodacom.cd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-wifi?nowifi=1&HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
Cookie: ng_session=eyJpdiI6InJFaDBKUjJmQktnb011YWtQZnpsdHc9PSIsInZhbHVlIjoiZE9oU2xYdTY4ajFsU2o3T0VKbXFEbGRSSUpuc0o1UXdHRmxwekxNV05Dd0RtQ1RXb3lXQXIyUHovSGJrNHQxb0JSYkx6V3o4bUVpRmVSbTlHTTcxbjBzYVduaVYxeHlhSkVjUjFQQVpTL3g5VDBQc0xxK1piTDdLbmlCZXlPekEiLCJtYWMiOiI4YzE3NjQ0OGYzY2RlZWEwNDJhMTY4MTg0YjFiZTQwNjE2OWQ5ZGU1NDI0YWZiMGQxZGU3ZGRiMjMyM2I0YTZhIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IlRIN0d4c1dsa21TVXBicXNVcnNPYWc9PSIsInZhbHVlIjoiNE1XUEdiaE5oRERTWGlDTHNqZnlQUk0zNXl2c1N2MzVMTGtoNElRT25lUlpQekphcmdQc3BqSytRY2ltNmdUNlVqdUxmbGdHbEczTUhjVWpQZkI5bzNRUUcwYTgyMlRkeGZBQ2N1NmRBUU09IiwibWFjIjoiODIzNGQ0ZjU5NDQyMzliMzQwMzE1NTE3NWEzYjRhZDkyMmJhZDAzMDJhNmUxMWQ5MDFiMjcyMzM2OTEwN2UwNyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImRrZ0hKMjNuQ1NzcEFUbDRScEQ5U3c9PSIsInZhbHVlIjoiclVsYmpmSmNSbDhMbVFGQ2JKdVFkWVRPNVFmUkZzNngxS28rd0szeno3M05UMGhFRXJQYXhSdk1lTnEwYnBTR2NkU25Na21lcFdzS2tFQlFqZ1NyNTdkcXkxc3VSa0J4TEZHOWtJbUg5bm89IiwibWFjIjoiOWUxNGY4MzE5MmYzMzg2NDlmN2E0N2IyYjVkNGEyYzhmMDYwMzZkNjNhNzZiOGJlZjJlMTRmMjAwNTI3YWM5MCIsInRhZyI6IiJ9; userPermID=eyJpdiI6InlhRDZ2TU1GY09qUGtEMDYxSExZWmc9PSIsInZhbHVlIjoibncvVGdoWCtVeWI5TXY3WHZqdzVuWm92RDB6VkRWM3NGQWdrU1FoTm5mMW9CeW1MazlqTTlseEgzNGV4WXp5d1NNV2VYZmhaZHJPdmRaL1FaQ0ovTjRoa1Y3WHUrZ290RTl0eU9ka2NvMnM9IiwibWFjIjoiZjNhYzNjOWNiODRjNzQyNWI5MWY3MGZjMjBkNzE2OWQ0ZGM0MWFkNzE5YjNlZGQxMjEwN2Y2YzMyYjc3OGMxZSIsInRhZyI6IiJ9; TS01a6d453=0119fdce077d33bd5e5d3744295ffd6ffba7f2b0609edf9ad832f81c9a73448fcd4b0ebfdb8e43c8a29a603b993a7d45e28cc371ed
HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 10:07:09 GMT
Last-Modified: Wed, 29 Jun 2022 13:31:11 GMT
ETag: "571-5e2962a9cf325"
Content-Length: 1393
Cache-Control: max-age=5184000
Expires: Wed, 22 Feb 2023 10:07:09 GMT
Content-Type: image/png
X-Varnish: 21309381 12056846
Age: 3074862
Via: 1.1 varnish (Varnish/6.0)
X-Cache: HIT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Connection: keep-alive
connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/wr-images/close-wap.png
200 OK 213 B URL HTTP/1.1 connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/wr-images/close-wap.png
IP
ASN #49582 Upstream Telecommunications And Software Systems S.A.
File type PNG image data, 21 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash d249b874e72ea9acce9f630517b48c4e
78a06a4b69bbd59d7fa9c70723640c775caf37cc
1861c75e1a0c132e357bccf763069d785f5954fe959d784abb1773f93b87bd28
GET /zrd/CVS-CDVOD-UPSTR/assets/wr-images/close-wap.png HTTP/1.1
Host: connectu.vodacom.cd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-wifi?nowifi=1&HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
Cookie: ng_session=eyJpdiI6InJFaDBKUjJmQktnb011YWtQZnpsdHc9PSIsInZhbHVlIjoiZE9oU2xYdTY4ajFsU2o3T0VKbXFEbGRSSUpuc0o1UXdHRmxwekxNV05Dd0RtQ1RXb3lXQXIyUHovSGJrNHQxb0JSYkx6V3o4bUVpRmVSbTlHTTcxbjBzYVduaVYxeHlhSkVjUjFQQVpTL3g5VDBQc0xxK1piTDdLbmlCZXlPekEiLCJtYWMiOiI4YzE3NjQ0OGYzY2RlZWEwNDJhMTY4MTg0YjFiZTQwNjE2OWQ5ZGU1NDI0YWZiMGQxZGU3ZGRiMjMyM2I0YTZhIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IlRIN0d4c1dsa21TVXBicXNVcnNPYWc9PSIsInZhbHVlIjoiNE1XUEdiaE5oRERTWGlDTHNqZnlQUk0zNXl2c1N2MzVMTGtoNElRT25lUlpQekphcmdQc3BqSytRY2ltNmdUNlVqdUxmbGdHbEczTUhjVWpQZkI5bzNRUUcwYTgyMlRkeGZBQ2N1NmRBUU09IiwibWFjIjoiODIzNGQ0ZjU5NDQyMzliMzQwMzE1NTE3NWEzYjRhZDkyMmJhZDAzMDJhNmUxMWQ5MDFiMjcyMzM2OTEwN2UwNyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImRrZ0hKMjNuQ1NzcEFUbDRScEQ5U3c9PSIsInZhbHVlIjoiclVsYmpmSmNSbDhMbVFGQ2JKdVFkWVRPNVFmUkZzNngxS28rd0szeno3M05UMGhFRXJQYXhSdk1lTnEwYnBTR2NkU25Na21lcFdzS2tFQlFqZ1NyNTdkcXkxc3VSa0J4TEZHOWtJbUg5bm89IiwibWFjIjoiOWUxNGY4MzE5MmYzMzg2NDlmN2E0N2IyYjVkNGEyYzhmMDYwMzZkNjNhNzZiOGJlZjJlMTRmMjAwNTI3YWM5MCIsInRhZyI6IiJ9; userPermID=eyJpdiI6InlhRDZ2TU1GY09qUGtEMDYxSExZWmc9PSIsInZhbHVlIjoibncvVGdoWCtVeWI5TXY3WHZqdzVuWm92RDB6VkRWM3NGQWdrU1FoTm5mMW9CeW1MazlqTTlseEgzNGV4WXp5d1NNV2VYZmhaZHJPdmRaL1FaQ0ovTjRoa1Y3WHUrZ290RTl0eU9ka2NvMnM9IiwibWFjIjoiZjNhYzNjOWNiODRjNzQyNWI5MWY3MGZjMjBkNzE2OWQ0ZGM0MWFkNzE5YjNlZGQxMjEwN2Y2YzMyYjc3OGMxZSIsInRhZyI6IiJ9; TS01a6d453=0119fdce077d33bd5e5d3744295ffd6ffba7f2b0609edf9ad832f81c9a73448fcd4b0ebfdb8e43c8a29a603b993a7d45e28cc371ed
HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 09:44:13 GMT
Last-Modified: Thu, 15 Dec 2022 11:00:24 GMT
ETag: "d5-5efdbc28d5723"
Content-Length: 213
Cache-Control: max-age=5184000
Expires: Wed, 22 Feb 2023 09:44:13 GMT
Content-Type: image/png
X-Varnish: 21403706 12267734
Age: 3076238
Via: 1.1 varnish (Varnish/6.0)
X-Cache: HIT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Connection: keep-alive
connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/images/SuperGenie/CVS-supergenie1-logo.png
200 OK 5.5 kB URL HTTP/1.1 connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/images/SuperGenie/CVS-supergenie1-logo.png
IP
ASN #49582 Upstream Telecommunications And Software Systems S.A.
File type PNG image data, 93 x 92, 8-bit/color RGBA, non-interlaced\012- data
Hash 184651f8d6787464e21fa99eddec1418
814e2041ad268c798cd657658ab8db678215c4e1
c7e33692178d4b71e864b61e9343656c1afea8ec1b050b58c3a0df32146c98c4
GET /zrd/CVS-CDVOD-UPSTR/assets/images/SuperGenie/CVS-supergenie1-logo.png HTTP/1.1
Host: connectu.vodacom.cd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-wifi?nowifi=1&HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
Cookie: ng_session=eyJpdiI6InJFaDBKUjJmQktnb011YWtQZnpsdHc9PSIsInZhbHVlIjoiZE9oU2xYdTY4ajFsU2o3T0VKbXFEbGRSSUpuc0o1UXdHRmxwekxNV05Dd0RtQ1RXb3lXQXIyUHovSGJrNHQxb0JSYkx6V3o4bUVpRmVSbTlHTTcxbjBzYVduaVYxeHlhSkVjUjFQQVpTL3g5VDBQc0xxK1piTDdLbmlCZXlPekEiLCJtYWMiOiI4YzE3NjQ0OGYzY2RlZWEwNDJhMTY4MTg0YjFiZTQwNjE2OWQ5ZGU1NDI0YWZiMGQxZGU3ZGRiMjMyM2I0YTZhIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IlRIN0d4c1dsa21TVXBicXNVcnNPYWc9PSIsInZhbHVlIjoiNE1XUEdiaE5oRERTWGlDTHNqZnlQUk0zNXl2c1N2MzVMTGtoNElRT25lUlpQekphcmdQc3BqSytRY2ltNmdUNlVqdUxmbGdHbEczTUhjVWpQZkI5bzNRUUcwYTgyMlRkeGZBQ2N1NmRBUU09IiwibWFjIjoiODIzNGQ0ZjU5NDQyMzliMzQwMzE1NTE3NWEzYjRhZDkyMmJhZDAzMDJhNmUxMWQ5MDFiMjcyMzM2OTEwN2UwNyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImRrZ0hKMjNuQ1NzcEFUbDRScEQ5U3c9PSIsInZhbHVlIjoiclVsYmpmSmNSbDhMbVFGQ2JKdVFkWVRPNVFmUkZzNngxS28rd0szeno3M05UMGhFRXJQYXhSdk1lTnEwYnBTR2NkU25Na21lcFdzS2tFQlFqZ1NyNTdkcXkxc3VSa0J4TEZHOWtJbUg5bm89IiwibWFjIjoiOWUxNGY4MzE5MmYzMzg2NDlmN2E0N2IyYjVkNGEyYzhmMDYwMzZkNjNhNzZiOGJlZjJlMTRmMjAwNTI3YWM5MCIsInRhZyI6IiJ9; userPermID=eyJpdiI6InlhRDZ2TU1GY09qUGtEMDYxSExZWmc9PSIsInZhbHVlIjoibncvVGdoWCtVeWI5TXY3WHZqdzVuWm92RDB6VkRWM3NGQWdrU1FoTm5mMW9CeW1MazlqTTlseEgzNGV4WXp5d1NNV2VYZmhaZHJPdmRaL1FaQ0ovTjRoa1Y3WHUrZ290RTl0eU9ka2NvMnM9IiwibWFjIjoiZjNhYzNjOWNiODRjNzQyNWI5MWY3MGZjMjBkNzE2OWQ0ZGM0MWFkNzE5YjNlZGQxMjEwN2Y2YzMyYjc3OGMxZSIsInRhZyI6IiJ9; TS01a6d453=0119fdce077d33bd5e5d3744295ffd6ffba7f2b0609edf9ad832f81c9a73448fcd4b0ebfdb8e43c8a29a603b993a7d45e28cc371ed
HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 09:40:34 GMT
Last-Modified: Wed, 29 Jun 2022 13:31:01 GMT
ETag: "156d-5e2962a075918"
Cache-Control: max-age=5184000
Expires: Wed, 22 Feb 2023 09:40:34 GMT
Content-Length: 5485
Content-Type: image/png
X-Varnish: 21469625 12429518
Age: 3076457
Via: 1.1 varnish (Varnish/6.0)
X-Cache: HIT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Connection: keep-alive
connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/analytics.js?ver=17
200 OK 15 kB URL HTTP/1.1 connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/analytics.js?ver=17
IP
ASN #49582 Upstream Telecommunications And Software Systems S.A.
File type ASCII text, with very long lines (35942), with no line terminators
Hash 76a7070c5ffb119d49362c048da42591
fbc453cd50f608400e43276b666b6cc54989a2a0
e55931786d178d86205cfd935f7bc01a7be0fe6ff84ceb178493c9d6dbc1ae0b
GET /zrd/CVS-CDVOD-UPSTR/assets/analytics.js?ver=17 HTTP/1.1
Host: connectu.vodacom.cd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-wifi?nowifi=1&HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
Cookie: ng_session=eyJpdiI6InJFaDBKUjJmQktnb011YWtQZnpsdHc9PSIsInZhbHVlIjoiZE9oU2xYdTY4ajFsU2o3T0VKbXFEbGRSSUpuc0o1UXdHRmxwekxNV05Dd0RtQ1RXb3lXQXIyUHovSGJrNHQxb0JSYkx6V3o4bUVpRmVSbTlHTTcxbjBzYVduaVYxeHlhSkVjUjFQQVpTL3g5VDBQc0xxK1piTDdLbmlCZXlPekEiLCJtYWMiOiI4YzE3NjQ0OGYzY2RlZWEwNDJhMTY4MTg0YjFiZTQwNjE2OWQ5ZGU1NDI0YWZiMGQxZGU3ZGRiMjMyM2I0YTZhIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IlRIN0d4c1dsa21TVXBicXNVcnNPYWc9PSIsInZhbHVlIjoiNE1XUEdiaE5oRERTWGlDTHNqZnlQUk0zNXl2c1N2MzVMTGtoNElRT25lUlpQekphcmdQc3BqSytRY2ltNmdUNlVqdUxmbGdHbEczTUhjVWpQZkI5bzNRUUcwYTgyMlRkeGZBQ2N1NmRBUU09IiwibWFjIjoiODIzNGQ0ZjU5NDQyMzliMzQwMzE1NTE3NWEzYjRhZDkyMmJhZDAzMDJhNmUxMWQ5MDFiMjcyMzM2OTEwN2UwNyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImRrZ0hKMjNuQ1NzcEFUbDRScEQ5U3c9PSIsInZhbHVlIjoiclVsYmpmSmNSbDhMbVFGQ2JKdVFkWVRPNVFmUkZzNngxS28rd0szeno3M05UMGhFRXJQYXhSdk1lTnEwYnBTR2NkU25Na21lcFdzS2tFQlFqZ1NyNTdkcXkxc3VSa0J4TEZHOWtJbUg5bm89IiwibWFjIjoiOWUxNGY4MzE5MmYzMzg2NDlmN2E0N2IyYjVkNGEyYzhmMDYwMzZkNjNhNzZiOGJlZjJlMTRmMjAwNTI3YWM5MCIsInRhZyI6IiJ9; userPermID=eyJpdiI6InlhRDZ2TU1GY09qUGtEMDYxSExZWmc9PSIsInZhbHVlIjoibncvVGdoWCtVeWI5TXY3WHZqdzVuWm92RDB6VkRWM3NGQWdrU1FoTm5mMW9CeW1MazlqTTlseEgzNGV4WXp5d1NNV2VYZmhaZHJPdmRaL1FaQ0ovTjRoa1Y3WHUrZ290RTl0eU9ka2NvMnM9IiwibWFjIjoiZjNhYzNjOWNiODRjNzQyNWI5MWY3MGZjMjBkNzE2OWQ0ZGM0MWFkNzE5YjNlZGQxMjEwN2Y2YzMyYjc3OGMxZSIsInRhZyI6IiJ9; TS01a6d453=0119fdce077d33bd5e5d3744295ffd6ffba7f2b0609edf9ad832f81c9a73448fcd4b0ebfdb8e43c8a29a603b993a7d45e28cc371ed
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 13:20:17 GMT
Last-Modified: Tue, 24 Jan 2023 11:00:23 GMT
ETag: "8c66-5f3006c2d078f-gzip"
Cache-Control: max-age=604800
Expires: Thu, 02 Feb 2023 13:20:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14608
Content-Type: application/javascript
X-Varnish: 20929394 20616442
Age: 212074
Via: 1.1 varnish (Varnish/6.0)
X-Cache: HIT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Connection: keep-alive
connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/assets/images/SuperGenie/CVS-supergenie2-bg.jpg
200 OK 39 kB URL HTTP/1.1 connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/assets/images/SuperGenie/CVS-supergenie2-bg.jpg
IP
ASN #49582 Upstream Telecommunications And Software Systems S.A.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 360x640, components 3\012- data
Hash 8ffc8c4517b8ea6c48b31a5ff2434ec5
50a3e2b2f29efa5b356051f7226c77e817bd6d78
b0dfe3b9e107356fc58c12d7a344438ab8e0b2415325854f261d824efdac4cb7
GET /zrd/CVS-CDVOD-UPSTR/assets/assets/images/SuperGenie/CVS-supergenie2-bg.jpg HTTP/1.1
Host: connectu.vodacom.cd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/CVS-CDVOD-UPSTR-supergenie2-fr-doi-wifi.css?ver=17
Cookie: ng_session=eyJpdiI6InJFaDBKUjJmQktnb011YWtQZnpsdHc9PSIsInZhbHVlIjoiZE9oU2xYdTY4ajFsU2o3T0VKbXFEbGRSSUpuc0o1UXdHRmxwekxNV05Dd0RtQ1RXb3lXQXIyUHovSGJrNHQxb0JSYkx6V3o4bUVpRmVSbTlHTTcxbjBzYVduaVYxeHlhSkVjUjFQQVpTL3g5VDBQc0xxK1piTDdLbmlCZXlPekEiLCJtYWMiOiI4YzE3NjQ0OGYzY2RlZWEwNDJhMTY4MTg0YjFiZTQwNjE2OWQ5ZGU1NDI0YWZiMGQxZGU3ZGRiMjMyM2I0YTZhIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IlRIN0d4c1dsa21TVXBicXNVcnNPYWc9PSIsInZhbHVlIjoiNE1XUEdiaE5oRERTWGlDTHNqZnlQUk0zNXl2c1N2MzVMTGtoNElRT25lUlpQekphcmdQc3BqSytRY2ltNmdUNlVqdUxmbGdHbEczTUhjVWpQZkI5bzNRUUcwYTgyMlRkeGZBQ2N1NmRBUU09IiwibWFjIjoiODIzNGQ0ZjU5NDQyMzliMzQwMzE1NTE3NWEzYjRhZDkyMmJhZDAzMDJhNmUxMWQ5MDFiMjcyMzM2OTEwN2UwNyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImRrZ0hKMjNuQ1NzcEFUbDRScEQ5U3c9PSIsInZhbHVlIjoiclVsYmpmSmNSbDhMbVFGQ2JKdVFkWVRPNVFmUkZzNngxS28rd0szeno3M05UMGhFRXJQYXhSdk1lTnEwYnBTR2NkU25Na21lcFdzS2tFQlFqZ1NyNTdkcXkxc3VSa0J4TEZHOWtJbUg5bm89IiwibWFjIjoiOWUxNGY4MzE5MmYzMzg2NDlmN2E0N2IyYjVkNGEyYzhmMDYwMzZkNjNhNzZiOGJlZjJlMTRmMjAwNTI3YWM5MCIsInRhZyI6IiJ9; userPermID=eyJpdiI6InlhRDZ2TU1GY09qUGtEMDYxSExZWmc9PSIsInZhbHVlIjoibncvVGdoWCtVeWI5TXY3WHZqdzVuWm92RDB6VkRWM3NGQWdrU1FoTm5mMW9CeW1MazlqTTlseEgzNGV4WXp5d1NNV2VYZmhaZHJPdmRaL1FaQ0ovTjRoa1Y3WHUrZ290RTl0eU9ka2NvMnM9IiwibWFjIjoiZjNhYzNjOWNiODRjNzQyNWI5MWY3MGZjMjBkNzE2OWQ0ZGM0MWFkNzE5YjNlZGQxMjEwN2Y2YzMyYjc3OGMxZSIsInRhZyI6IiJ9; TS01a6d453=0119fdce077d33bd5e5d3744295ffd6ffba7f2b0609edf9ad832f81c9a73448fcd4b0ebfdb8e43c8a29a603b993a7d45e28cc371ed
HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 09:45:38 GMT
Last-Modified: Wed, 29 Jun 2022 13:31:11 GMT
ETag: "9a01-5e2962a9d7fc6"
Content-Length: 39425
Cache-Control: max-age=5184000
Expires: Wed, 22 Feb 2023 09:45:38 GMT
Content-Type: image/jpeg
X-Varnish: 21348886 12357330
Age: 3076153
Via: 1.1 varnish (Varnish/6.0)
X-Cache: HIT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /uUFJH0etyT1N15h16YaLQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CP7avLzA+7ZY496HFZrJ5174Uww=
connectu.vodacom.cd/ga-proxy/forward
200 OK 58 B URL HTTP/1.1 connectu.vodacom.cd/ga-proxy/forward
IP
ASN #49582 Upstream Telecommunications And Software Systems S.A.
File type JSON data\012- , ASCII text, with no line terminators
Hash 80e7708accc444d01e821529dea894bf
debee1c480a5c5eeadd27788f68e80ad0b51ee9c
4ca1e9e636004519749d91784e4a8ad6b247a2949028e3f6fe342a463ace6d3a
POST /ga-proxy/forward HTTP/1.1
Host: connectu.vodacom.cd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain;charset=UTF-8
Content-Length: 582
Origin: http://connectu.vodacom.cd
Connection: keep-alive
Referer: http://connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/supergenie2-fr-doi-wifi?nowifi=1&HEKeyword=CVS_BPS_2&utm_source=bps&utm_medium=cpa&utm_term=CVS_BPS_2&utm_content=supergenie2&utm_campaign=CVS_BPS_2-bps-supergenie2-all&bps_id=APEE02_wcailq95a0est08mi4jir188&bps_pub=88122290-6613-41c1-b183-ee0ab2983ac3_
Cookie: ng_session=eyJpdiI6InJFaDBKUjJmQktnb011YWtQZnpsdHc9PSIsInZhbHVlIjoiZE9oU2xYdTY4ajFsU2o3T0VKbXFEbGRSSUpuc0o1UXdHRmxwekxNV05Dd0RtQ1RXb3lXQXIyUHovSGJrNHQxb0JSYkx6V3o4bUVpRmVSbTlHTTcxbjBzYVduaVYxeHlhSkVjUjFQQVpTL3g5VDBQc0xxK1piTDdLbmlCZXlPekEiLCJtYWMiOiI4YzE3NjQ0OGYzY2RlZWEwNDJhMTY4MTg0YjFiZTQwNjE2OWQ5ZGU1NDI0YWZiMGQxZGU3ZGRiMjMyM2I0YTZhIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IlRIN0d4c1dsa21TVXBicXNVcnNPYWc9PSIsInZhbHVlIjoiNE1XUEdiaE5oRERTWGlDTHNqZnlQUk0zNXl2c1N2MzVMTGtoNElRT25lUlpQekphcmdQc3BqSytRY2ltNmdUNlVqdUxmbGdHbEczTUhjVWpQZkI5bzNRUUcwYTgyMlRkeGZBQ2N1NmRBUU09IiwibWFjIjoiODIzNGQ0ZjU5NDQyMzliMzQwMzE1NTE3NWEzYjRhZDkyMmJhZDAzMDJhNmUxMWQ5MDFiMjcyMzM2OTEwN2UwNyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImRrZ0hKMjNuQ1NzcEFUbDRScEQ5U3c9PSIsInZhbHVlIjoiclVsYmpmSmNSbDhMbVFGQ2JKdVFkWVRPNVFmUkZzNngxS28rd0szeno3M05UMGhFRXJQYXhSdk1lTnEwYnBTR2NkU25Na21lcFdzS2tFQlFqZ1NyNTdkcXkxc3VSa0J4TEZHOWtJbUg5bm89IiwibWFjIjoiOWUxNGY4MzE5MmYzMzg2NDlmN2E0N2IyYjVkNGEyYzhmMDYwMzZkNjNhNzZiOGJlZjJlMTRmMjAwNTI3YWM5MCIsInRhZyI6IiJ9; userPermID=eyJpdiI6InlhRDZ2TU1GY09qUGtEMDYxSExZWmc9PSIsInZhbHVlIjoibncvVGdoWCtVeWI5TXY3WHZqdzVuWm92RDB6VkRWM3NGQWdrU1FoTm5mMW9CeW1MazlqTTlseEgzNGV4WXp5d1NNV2VYZmhaZHJPdmRaL1FaQ0ovTjRoa1Y3WHUrZ290RTl0eU9ka2NvMnM9IiwibWFjIjoiZjNhYzNjOWNiODRjNzQyNWI5MWY3MGZjMjBkNzE2OWQ0ZGM0MWFkNzE5YjNlZGQxMjEwN2Y2YzMyYjc3OGMxZSIsInRhZyI6IiJ9; TS01a6d453=0119fdce077d33bd5e5d3744295ffd6ffba7f2b0609edf9ad832f81c9a73448fcd4b0ebfdb8e43c8a29a603b993a7d45e28cc371ed; _ga=GA1.2.1612675238.1674951297; _gid=GA1.2.1516656465.1674951297; _gat=1
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Date: Sun, 29 Jan 2023 00:14:52 GMT
Content-Type: text/plain; charset=utf-8
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Transfer-Encoding: chunked
connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/assets/fonts/vodafonerg-webfont.ttf
200 OK 76 kB URL HTTP/1.1 connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/assets/fonts/vodafonerg-webfont.ttf
IP
ASN #49582 Upstream Telecommunications And Software Systems S.A.
File type TrueType Font data, 19 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright \251 2005 Dalton Maag Ltd. All rights reserved. This font is for exclusive use by Voda\012- data
Hash 3834ff29b560e6bb546b97aaa70c5f53
a8b46287863cb96ad018a3e0f9592f52e2ce2849
009006cb9cae73f66a669057ce1e0c2eb8962abd3008e2eb2b69be8876f10934
GET /zrd/CVS-CDVOD-UPSTR/assets/assets/fonts/vodafonerg-webfont.ttf HTTP/1.1
Host: connectu.vodacom.cd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://connectu.vodacom.cd/zrd/CVS-CDVOD-UPSTR/assets/CVS-CDVOD-UPSTR-supergenie2-fr-doi-wifi.css?ver=17
Cookie: ng_session=eyJpdiI6InJFaDBKUjJmQktnb011YWtQZnpsdHc9PSIsInZhbHVlIjoiZE9oU2xYdTY4ajFsU2o3T0VKbXFEbGRSSUpuc0o1UXdHRmxwekxNV05Dd0RtQ1RXb3lXQXIyUHovSGJrNHQxb0JSYkx6V3o4bUVpRmVSbTlHTTcxbjBzYVduaVYxeHlhSkVjUjFQQVpTL3g5VDBQc0xxK1piTDdLbmlCZXlPekEiLCJtYWMiOiI4YzE3NjQ0OGYzY2RlZWEwNDJhMTY4MTg0YjFiZTQwNjE2OWQ5ZGU1NDI0YWZiMGQxZGU3ZGRiMjMyM2I0YTZhIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IlRIN0d4c1dsa21TVXBicXNVcnNPYWc9PSIsInZhbHVlIjoiNE1XUEdiaE5oRERTWGlDTHNqZnlQUk0zNXl2c1N2MzVMTGtoNElRT25lUlpQekphcmdQc3BqSytRY2ltNmdUNlVqdUxmbGdHbEczTUhjVWpQZkI5bzNRUUcwYTgyMlRkeGZBQ2N1NmRBUU09IiwibWFjIjoiODIzNGQ0ZjU5NDQyMzliMzQwMzE1NTE3NWEzYjRhZDkyMmJhZDAzMDJhNmUxMWQ5MDFiMjcyMzM2OTEwN2UwNyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImRrZ0hKMjNuQ1NzcEFUbDRScEQ5U3c9PSIsInZhbHVlIjoiclVsYmpmSmNSbDhMbVFGQ2JKdVFkWVRPNVFmUkZzNngxS28rd0szeno3M05UMGhFRXJQYXhSdk1lTnEwYnBTR2NkU25Na21lcFdzS2tFQlFqZ1NyNTdkcXkxc3VSa0J4TEZHOWtJbUg5bm89IiwibWFjIjoiOWUxNGY4MzE5MmYzMzg2NDlmN2E0N2IyYjVkNGEyYzhmMDYwMzZkNjNhNzZiOGJlZjJlMTRmMjAwNTI3YWM5MCIsInRhZyI6IiJ9; userPermID=eyJpdiI6InlhRDZ2TU1GY09qUGtEMDYxSExZWmc9PSIsInZhbHVlIjoibncvVGdoWCtVeWI5TXY3WHZqdzVuWm92RDB6VkRWM3NGQWdrU1FoTm5mMW9CeW1MazlqTTlseEgzNGV4WXp5d1NNV2VYZmhaZHJPdmRaL1FaQ0ovTjRoa1Y3WHUrZ290RTl0eU9ka2NvMnM9IiwibWFjIjoiZjNhYzNjOWNiODRjNzQyNWI5MWY3MGZjMjBkNzE2OWQ0ZGM0MWFkNzE5YjNlZGQxMjEwN2Y2YzMyYjc3OGMxZSIsInRhZyI6IiJ9; TS01a6d453=0119fdce077d33bd5e5d3744295ffd6ffba7f2b0609edf9ad832f81c9a73448fcd4b0ebfdb8e43c8a29a603b993a7d45e28cc371ed
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 00:13:46 GMT
Last-Modified: Tue, 24 Jan 2023 11:00:24 GMT
ETag: "127b4-5f3006c3014d6"
Content-Length: 75700
Content-Type: font/ttf
X-Varnish: 21403707 21309338
Age: 65
Via: 1.1 varnish (Varnish/6.0)
X-Cache: HIT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5571
Expires: Sun, 29 Jan 2023 01:47:44 GMT
Date: Sun, 29 Jan 2023 00:14:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5571
Expires: Sun, 29 Jan 2023 01:47:44 GMT
Date: Sun, 29 Jan 2023 00:14:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5571
Expires: Sun, 29 Jan 2023 01:47:44 GMT
Date: Sun, 29 Jan 2023 00:14:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f73f114f8dc452fc0b16825570ad50c
6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575
23fd69e6ccdd2ce2b5d3d8b3f075a07cdb36efd663a4119b5dca22165e7b2090
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10030
x-amzn-requestid: 0c6c82b5-f91b-4468-bb25-d87d4d7dedd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVAbgERRIAMFdcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1e116-7f17c79047447dff2de3ab67;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 02:10:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4C0fCJB3N9nw0xKQnlsRLx_VGA3shg394U3Tq4pxNMWgggZe93TLUA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:30:44 GMT
age: 13449
etag: "6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:11:24 GMT
age: 3809
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 17:35:56 GMT
age: 23937
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D2ZAelkDgsd0wjoOSoPRwTzhozs84_aIcgwU-QmbDrTnHztVD0VL_A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 14:57:16 GMT
age: 33457
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:12:28 GMT
age: 3745
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a48d5b4-7f5e-41cd-a7b2-c3007235b59c.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a48d5b4-7f5e-41cd-a7b2-c3007235b59c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e59316e1b1333c42d9d120fa88619bc2
669cdc8dfeba9d64f93f260adbb5f493a5649bb0
c4e78ec96322f1f151b07f9a45d51e6ca3fd46613472cf627f53bf399193a533
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a48d5b4-7f5e-41cd-a7b2-c3007235b59c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9398
x-amzn-requestid: 5083c66c-ad64-4f73-b915-d29ddabcdb4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6XEc1IAMFsbQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-0779693a5da31eae195989d1;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2MPzkEPg3JESo6g5D7E2LN53G-zYF__aFQmDg9DzSRxg0E19j1Iwkw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 03:19:55 GMT
age: 75298
etag: "669cdc8dfeba9d64f93f260adbb5f493a5649bb0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
18.194.134.212
35.241.9.150
91.220.208.64
23.36.76.226