urlquery - report: t.anmdr.link/75077/8047/27900/?aff_sub4=_bucket&aff_sub=test_r565&aff_sub2=55609&aff_sub3=w25a6i6ohlkjj9pk2i4mvuh2&source=102bafe7c94c86d88a5648a8701297&bo=2753,2754,2755,2756&aff_sub5=_test_r565&aff_sub4=ALGO

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-11-27 05:29:57 UTC	34.117.237.239
img-getpocket.cdn.mozilla.net (6)	1631	2018-06-21 23:36:00 UTC	2020-02-19 04:43:25 UTC	34.120.237.76
t.anmdr.link (3)	0	2022-07-07 15:35:25 UTC	2022-11-27 08:54:43 UTC	54.230.111.123	Unknown ranking
r3.o.lencr.org (6)	344	No data	No data	23.36.76.226
a.vfgtc.com (1)	0	2019-09-27 12:31:23 UTC	2019-09-27 12:31:23 UTC	18.192.108.151	Unknown ranking
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2020-05-03 10:09:39 UTC	52.41.201.177
cdn-dimi.akamaized.net (31)	0	No data	No data	184.31.15.67	Domain (akamaized.net) ranked at: 280
jwbvdz.exceilentdate.com (2)	0	No data	No data	63.32.216.166	Unknown ranking
ocsp.digicert.com (2)	86	2012-05-21 07:02:23 UTC	2020-05-02 20:58:10 UTC	93.184.220.29
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-11-27 05:29:56 UTC	34.102.187.140
t.anmdr.link (3)	0	2022-07-07 15:35:25 UTC	2022-11-27 08:54:43 UTC	54.230.111.38	Unknown ranking
t.crdefault.link (1)	674725	2021-02-08 09:36:24 UTC	2022-11-26 22:32:45 UTC	54.230.111.50
fonts.googleapis.com (2)	8877	2013-06-10 20:14:26 UTC	2022-11-27 05:34:18 UTC	142.250.74.10
content-signature-2.cdn.mozilla.net (1)	1152	No data	No data	34.160.144.191
a.vfgtf.com (1)	0	No data	No data	18.192.108.151	Unknown ranking
ocsp.pki.goog (6)	175	2018-07-01 06:43:07 UTC	2020-05-02 20:58:16 UTC	142.250.74.3
fonts.gstatic.com (1)	0	2014-09-09 00:40:21 UTC	2022-11-27 05:33:29 UTC	216.58.207.195	Domain (gstatic.com) ranked at: 540

Scan Date	Severity	Indicator	Comment
2022-11-27	2	jwbvdz.exceilentdate.com/ortb	Phishing

Date	UQ / IDS / BL	URL	IP
2023-02-04 22:15:03 +0000	0 - 2 - 0	znsrc.com/c/wbepaylsvj	54.230.111.117
2023-01-30 06:35:05 +0000	0 - 6 - 0	www.petit-bateau.co.jp/shop/default.aspx	54.230.111.117
2023-01-28 15:28:16 +0000	0 - 0 - 1	9fnw.com/	54.230.111.117
2023-01-26 07:14:36 +0000	0 - 0 - 1	www.cgibackgrounds.com/	54.230.111.117
2023-01-13 20:52:45 +0000	0 - 3 - 0	download.endnote.com/downloads/X9/ENX9Inst.exe	54.230.111.117

Date	UQ / IDS / BL	URL	IP
2023-02-06 09:46:39 +0000	0 - 2 - 0	df6llgk5bkukt.cloudfront.net/U-Of--/YMGy/F+-+ (...)	143.204.42.225
2023-02-06 09:42:34 +0000	7 - 0 - 7	www.e-serviceparts.info/landingpages/e50980df (...)	143.204.55.24
2023-02-06 09:41:02 +0000	35 - 1 - 36	cert.login.info.doc.3-145-14-244.cprapid.com/ (...)	3.145.14.244
2023-02-06 09:37:25 +0000	0 - 0 - 1	eb101a.qptgbpxfkzdwm.com/	54.230.111.85
2023-02-06 09:36:15 +0000	0 - 2 - 0	serato.com/dj/lite	54.230.111.82

Date	UQ / IDS / BL	URL	IP
2022-12-11 14:20:03 +0000	0 - 0 - 3	t.anmdr.link/75077/8047/27898/?aff_sub4=_buck (...)	18.67.17.126
2022-12-11 12:58:49 +0000	0 - 0 - 2	t.anmdr.link/44542/8140/27889/?aff_sub4=_buck (...)	54.230.111.38
2022-12-11 01:37:22 +0000	0 - 0 - 3	t.anmdr.link/75077/8047/27898/?aff_sub4=_buck (...)	54.230.111.117
2022-12-10 16:36:56 +0000	0 - 0 - 1	t.anmdr.link/75077/8420/30493/?aff_sub4=_buck (...)	54.230.111.117
2022-12-10 15:59:17 +0000	0 - 0 - 3	t.anmdr.link/75077/8047/27898/?aff_sub4=_buck (...)	54.230.111.50

Date	UQ / IDS / BL	URL	IP
2022-11-29 13:28:34 +0000	0 - 0 - 1	t.anmdr.link/44542/8366/29162/?aff_sub4=_buck (...)	54.230.111.50
2022-11-28 23:01:49 +0000	0 - 0 - 1	a.vfgtf.com/ab267e05-23a0-430a-bac4-772f7f629 (...)	18.192.108.151
2022-11-28 20:51:09 +0000	0 - 0 - 1	sl.sloffer.link/44542/3458/0/?aff_sub=wkt3hmd (...)	54.230.111.123
2022-11-27 23:30:51 +0000	0 - 0 - 1	jwbvdz.exceilentdate.com/?utm_source=1e3a4e53 (...)	63.32.216.166
2022-11-27 17:27:46 +0000	0 - 0 - 1	a.vfgtc.com/cb5cb9a8-26a4-42ae-946b-aae4b3e52 (...)	18.192.108.151

Request	Response
GET /75077/8047/27900/?aff_sub4=_bucket&aff_sub=test_r565&aff_sub2=55609&aff_sub3=w25a6i6ohlkjj9pk2i4mvuh2&source=102bafe7c94c86d88a5648a8701297&bo=2753,2754,2755,2756&aff_sub5=_test_r565&aff_sub4=ALGO_bucket HTTP/1.1 Host: t.anmdr.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: t.anmdr.link/75077/8047/27900/?aff_sub4=_bucket&aff_sub (...) FQDN: t.anmdr.link IP: 54.230.111.123 HASH: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d 54.230.111.123 HTTP/1.1 301 Moved Permanently Content-Type: text/html Server: CloudFront Date: Sun, 27 Nov 2022 17:27:27 GMT Content-Length: 167 Connection: keep-alive Location: https://t.anmdr.link/75077/8047/27900/?aff_sub4=_bucket&aff_sub=test_r565&aff_sub2=55609&aff_sub3=w25a6i6ohlkjj9pk2i4mvuh2&source=102bafe7c94c86d88a5648a8701297&bo=2753,2754,2755,2756&aff_sub5=_test_r565&aff_sub4=ALGO_bucket X-Cache: Redirect from cloudfront Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: DYbo6s04Z0BVXZ908gMO3nZyFhZ_TNxqaCchnpKYUyjRs8J0eWmBMA== --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 167 Md5: f5d40b7259645010f9a248858ad14178 Sha1: b3051d17a6ec8c9e166bf09a62b48261ab86957b Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1" Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9551 Expires: Sun, 27 Nov 2022 20:06:38 GMT Date: Sun, 27 Nov 2022 17:27:27 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: cdbad2434b7d127a4fc769807a9dc3e7 Sha1: fa98cd9fc2309ab4423f33f683d17bdb17d76713 Sha256: 560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 6255 Cache-Control: max-age=154081 Date: Sun, 27 Nov 2022 17:27:27 GMT Etag: "63833c71-1d7" Expires: Tue, 29 Nov 2022 12:15:28 GMT Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 64b2a23eab6e5ae8c010ec7242be930c Sha1: 0673e4385ba01a5a245711bab96cafc34f765793 Sha256: 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786" Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15168 Expires: Sun, 27 Nov 2022 21:40:15 GMT Date: Sun, 27 Nov 2022 17:27:27 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 71f9c681a82440fd55e76c780a20e55d Sha1: 3147768cfbcdd06e0c6e69684292e68e99917a80 Sha256: 5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sun, 27 Nov 2022 17:19:23 GMT cache-control: public,max-age=3600 age: 484 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 567df7db606cf5d0871aa5bc9311b6da Sha1: 4263faac7cbab2fcaf6661911dcad5091c06be17 Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: Qd+067DqQK3kGaSn9IOWZMxDo+/Mt39n/Puppvsc6+eOuzdToMR7p66l22U+qITWIwVfD+qamr8= x-amz-request-id: 9XXEHHG0GKNTKRX5 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sun, 27 Nov 2022 16:44:42 GMT age: 2565 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Sun, 27 Nov 2022 17:27:28 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /75077/8047/27900/?aff_sub4=_bucket&aff_sub=test_r565&aff_sub2=55609&aff_sub3=w25a6i6ohlkjj9pk2i4mvuh2&source=102bafe7c94c86d88a5648a8701297&bo=2753,2754,2755,2756&aff_sub5=_test_r565&aff_sub4=ALGO_bucket HTTP/1.1 Host: t.anmdr.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: t.anmdr.link/75077/8047/27900/?aff_sub4=_bucket&aff_sub (...) FQDN: t.anmdr.link IP: 54.230.111.38 HASH: 639abdd867a518998e91c14e49fff63b061c8aaea564d2e33dc33e7116c16f86 54.230.111.38 HTTP/2 303 See Other content-type: text/html; charset=utf-8 content-length: 510 location: https://t.crdefault.link/75077/1?aff_sub=test_r565&aff_sub2=55609&aff_sub3=w25a6i6ohlkjj9pk2i4mvuh2&aff_sub4=ALGO_bucket&aff_sub5=_test_r565&source=102bafe7c94c86d88a5648a8701297&bo=2753%2C2754%2C2755%2C2756 server: nginx/1.19.0 date: Sun, 27 Nov 2022 17:27:28 GMT set-cookie: aff_ran_url_8047=27900; Path=/; Expires=Mon, 28 Nov 2022 17:27:28 GMT; Secure enc_aff_session_8042=ENC030f864e802c1dbcb20c3355c157f83e8a3a846082137d0a18b33077198cc573ceb0495695495cf19e9baeb8227bc85929261425f0904e72c70d7a97410538f2a29f7dc997a5bf449105feb8c7ce578992b5b61d9c1f716770ada5c715832e3793958457820d9f7d9b8410e4905128956c1668340f50a833952d9772f97fc44c8fd7d1ce10575ca73f1ecccc6af5582d355c03d70ee03581a256f8456f69ca0829849ccd770337b2519e1d7a38d7032cadef1b9ef4650c8eb787a900ac58999071124192ac; Path=/; Expires=Tue, 27 Dec 2022 17:27:28 GMT; Secure ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D; Path=/; Expires=Wed, 22 Oct 2025 04:07:28 GMT; Secure tracking_id: 102770ef425c424903fb909f139b37 vary: Accept strict-transport-security: max-age=15724800; includeSubDomains x-cache: Miss from cloudfront via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 6mBHNpXlfVHnG54Lspy1-k9fl2TdOYG1qPNbcvZo8BhbLEDum2_MAg== X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (510), with no line terminators Size: 510 Md5: 54bf69a9dd4be39854f712e209aea957 Sha1: 74404003df067e88e0aa591c148bdcd06b919177 Sha256: 639abdd867a518998e91c14e49fff63b061c8aaea564d2e33dc33e7116c16f86
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sun, 27 Nov 2022 17:08:54 GMT cache-control: public,max-age=3600 age: 1114 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2052 Cache-Control: max-age=144816 Date: Sun, 27 Nov 2022 17:27:28 GMT Etag: "638328ac-1d7" Expires: Tue, 29 Nov 2022 09:41:04 GMT Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: a6fee11dfe1b88cd768a0ca3e2bd0c89 Sha1: 59cec9a44a4a92467678afe65f347f68641a2174 Sha256: 50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
GET /75077/1?aff_sub=test_r565&aff_sub2=55609&aff_sub3=w25a6i6ohlkjj9pk2i4mvuh2&aff_sub4=ALGO_bucket&aff_sub5=_test_r565&source=102bafe7c94c86d88a5648a8701297&bo=2753%2C2754%2C2755%2C2756 HTTP/1.1 Host: t.crdefault.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: t.crdefault.link/75077/1?aff_sub=test_r565&aff_sub2=556 (...) FQDN: t.crdefault.link IP: 54.230.111.50 HASH: b7db399d499919a30ed16b818d0266bfeb24665072775e91a7abab1faf2e36f7 54.230.111.50 HTTP/2 303 See Other content-type: text/html; charset=utf-8 content-length: 938 location: https://a.vfgtf.com/ab267e05-23a0-430a-bac4-772f7f629740?subID1=test_r565%3B102bafe7c94c86d88a5648a8701297&affiliateID=44542&source=10261b1eeead1c4d48177d05590a50&subID2=75077&s2=10261b1eeead1c4d48177d05590a50&s3=test_r565%3B102bafe7c94c86d88a5648a8701297&s4=75077&url=1&affsub=test_r565&affsource=102bafe7c94c86d88a5648a8701297&aff_click_id=10261b1eeead1c4d48177d05590a50&bo=2753%2C2754%2C2755%2C2756 server: nginx/1.19.0 date: Sun, 27 Nov 2022 17:27:28 GMT set-cookie: enc_aff_session_3785=ENC03314406e38380bf9d027b6d864f4f80fa299da8e637ef7d73cb57b133035dab48176cfd4524b2b57657e063a83884f64b2f214b307909aaa70db87ae96952fef5ec3ac1bd28237c8ebc090e9ff0f897bda5fb614705e7876d0277b3edd72ea806dc724a650abdb96144a9f1c2442c427b6eda996d3d4be64dc94c365fadc6dc0bb4439c9ba053c7722bf145d41c3420bf4367e52b6fa327333afeb196c5dbeabc25f954030ea2c0e5c58a8a6f5a617089584d9e840a5b17f9a1fb4ded994434572520e11e; Path=/; Expires=Tue, 26 Nov 2024 17:27:28 GMT; Secure ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D; Path=/; Expires=Wed, 22 Oct 2025 04:07:28 GMT; Secure tracking_id: 10261b1eeead1c4d48177d05590a50 vary: Accept strict-transport-security: max-age=15724800; includeSubDomains x-cache: Miss from cloudfront via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 4o9kCGhgTNqgi8sWSn1bSqK4qzNzlfrSW7q_ueM3fn6TrOPjtX3R5g== X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (938), with no line terminators Size: 938 Md5: 690a831fd0b347a652e37046a75157ab Sha1: cce819589fb40fe9b8a0de47eb9a03fa98cb35c3 Sha256: b7db399d499919a30ed16b818d0266bfeb24665072775e91a7abab1faf2e36f7
GET /ab267e05-23a0-430a-bac4-772f7f629740?subID1=test_r565%3B102bafe7c94c86d88a5648a8701297&affiliateID=44542&source=10261b1eeead1c4d48177d05590a50&subID2=75077&s2=10261b1eeead1c4d48177d05590a50&s3=test_r565%3B102bafe7c94c86d88a5648a8701297&s4=75077&url=1&affsub=test_r565&affsource=102bafe7c94c86d88a5648a8701297&aff_click_id=10261b1eeead1c4d48177d05590a50&bo=2753%2C2754%2C2755%2C2756 HTTP/1.1 Host: a.vfgtf.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: a.vfgtf.com/ab267e05-23a0-430a-bac4-772f7f629740?subID1 (...) FQDN: a.vfgtf.com IP: 18.192.108.151 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 18.192.108.151 HTTP/2 302 Found server: nginx date: Sun, 27 Nov 2022 17:27:28 GMT content-length: 0 cache-control: no-store, no-cache, pre-check=0, post-check=0 expires: Thu, 01 Jan 1970 00:00:00 GMT location: https://a.vfgtc.com/2d2fb929-79a5-4a1c-840d-3f370da182b6?aff_sub4=_bucket&subID1=test_r565%3B102bafe7c94c86d88a5648a8701297&affiliateID=170910&source=10261b1eeead1c4d48177d05590a50&subID2=75077&target=&Site=&Bnr=ALGO&cid=w4aqceejquasl9pkifts4mmk&affsource=102bafe7c94c86d88a5648a8701297 pragma: no-cache set-cookie: ab267e05-23a0-430a-bac4-772f7f629740-v4=3xhwaTjfkd8RaDaCpmr2bV43ZNn3BaGJ-vgL_elDoUc; Max-Age=86400; Expires=Mon, 28-Nov-2022 17:27:28 GMT; Domain=a.vfgtf.com; Path=/; Secure; HttpOnly;SameSite=None cc-v4=q4trCA%2BBVte5exaHfIY2LPvu1UM%2B7mBQ7Sn5rCVKhltC4BjPtlZKKEqMSXKf3FqDhm8gGpYmu7VWP0MVUHx%2Bg8wZxDmlJP0HeiNfFF%2FiKgIQ5H%2BTbm2s0r6Mrw3qAWZd6ynan896866U2uT85Adfnw%3D%3D; Max-Age=31536000; Expires=Mon, 27-Nov-2023 17:27:28 GMT; Domain=a.vfgtf.com; Path=/; Secure; HttpOnly;SameSite=None X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: jvpX269Jv7q8ZWNyqoWIPw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 52.41.201.177 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.41.201.177 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: RnYiTaedAmrGbHQDloCNUMqZYxc= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2d2fb929-79a5-4a1c-840d-3f370da182b6?aff_sub4=_bucket&subID1=test_r565%3B102bafe7c94c86d88a5648a8701297&affiliateID=170910&source=10261b1eeead1c4d48177d05590a50&subID2=75077&target=&Site=&Bnr=ALGO&cid=w4aqceejquasl9pkifts4mmk&affsource=102bafe7c94c86d88a5648a8701297 HTTP/1.1 Host: a.vfgtc.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: a.vfgtc.com/2d2fb929-79a5-4a1c-840d-3f370da182b6?aff_su (...) FQDN: a.vfgtc.com IP: 18.192.108.151 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 18.192.108.151 HTTP/2 302 Found server: nginx date: Sun, 27 Nov 2022 17:27:29 GMT content-length: 0 cache-control: no-store, no-cache, pre-check=0, post-check=0 expires: Thu, 01 Jan 1970 00:00:00 GMT location: https://t.anmdr.link/170910/3458/0/?aff_sub4=ALGO_bucket&aff_sub=test_r565%3B102bafe7c94c86d88a5648a8701297&aff_sub2=75077&aff_sub3=wt63h33q5bd8p9pkiurdum2s&source=10261b1eeead1c4d48177d05590a50&aff_sub5=_102bafe7c94c86d88a5648a8701297 pragma: no-cache set-cookie: 2d2fb929-79a5-4a1c-840d-3f370da182b6-v4=Lll8orlWouw1PMsBldyuSdppMgBAMQb_qyhYHHbFcvI; Max-Age=86400; Expires=Mon, 28-Nov-2022 17:27:29 GMT; Domain=a.vfgtc.com; Path=/; Secure; HttpOnly;SameSite=None cc-v4=Pe7godrH8GBJ%2BGsK0vyPn3SEf%2FHOb%2B696GKHnMgiNBAPU%2FmbVuyrYmv1DRoguY4WA4KzYXDsj2dymkZqQ38hqyvJR5IJe8ndSQIbONo4x8ATsFd2xgF072ynWJr0wONtixZ3iex2O0Fxk4PhhRibiQ%3D%3D; Max-Age=31536000; Expires=Mon, 27-Nov-2023 17:27:29 GMT; Domain=a.vfgtc.com; Path=/; Secure; HttpOnly;SameSite=None X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /170910/3458/0/?aff_sub4=ALGO_bucket&aff_sub=test_r565%3B102bafe7c94c86d88a5648a8701297&aff_sub2=75077&aff_sub3=wt63h33q5bd8p9pkiurdum2s&source=10261b1eeead1c4d48177d05590a50&aff_sub5=_102bafe7c94c86d88a5648a8701297 HTTP/1.1 Host: t.anmdr.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: aff_ran_url_8047=27900; enc_aff_session_8042=ENC030f864e802c1dbcb20c3355c157f83e8a3a846082137d0a18b33077198cc573ceb0495695495cf19e9baeb8227bc85929261425f0904e72c70d7a97410538f2a29f7dc997a5bf449105feb8c7ce578992b5b61d9c1f716770ada5c715832e3793958457820d9f7d9b8410e4905128956c1668340f50a833952d9772f97fc44c8fd7d1ce10575ca73f1ecccc6af5582d355c03d70ee03581a256f8456f69ca0829849ccd770337b2519e1d7a38d7032cadef1b9ef4650c8eb787a900ac58999071124192ac; ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 TE: trailers	URL: t.anmdr.link/170910/3458/0/?aff_sub4=ALGO_bucket&aff_su (...) FQDN: t.anmdr.link IP: 54.230.111.38 HASH: 4003bdd587f209b919b73d57ec34ce5aa3a6f65d24d14f69247f2c4739a8db87 54.230.111.38 HTTP/2 303 See Other content-type: text/html; charset=utf-8 content-length: 502 location: https://jwbvdz.exceilentdate.com?utm_source=1e3a4e532f1c7040&s1=120749&s2=1506505&s3=170910&s5=75077_102bafe7c94c86d88a5648a8701297&click_id=1025f27a481a101ef03051546a3b8a&j1=1&j5=1&j8=1&j9=1 server: nginx/1.19.0 date: Sun, 27 Nov 2022 17:27:29 GMT set-cookie: enc_aff_session_3458=ENC0366ed8d911c56b38e3699f22e48eddc6c43ff9ff6ff2070ff6e68b5ae5a2a962957b209fd27d6f9484cf9696d10a991222d4997f1e3407ac4efb612ce8f44184354e8dfa8dc2d5433eaa67ba613d97a5dd4b962d2eb26249e05cab07c4a4a72281113ade704d53035024cb7d9218e0870b8221d720c475ab7ce4e1825f5cd6c421ccf4c2f0844de317dd387dd2c4a3a7484d99b3a067f4ded232f2bb18e8b5a23d27c25c88603ef8b8d2c9adabdb5fba970e1e3c7c53b71da3448cc0c85c3f3327bf17c7ecfaae591addae3afba4e910104ecb99584939157a7044d1a963ad8781609add0; Path=/; Expires=Tue, 26 Nov 2024 17:27:29 GMT; Secure ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D; Path=/; Expires=Wed, 22 Oct 2025 04:07:29 GMT; Secure tracking_id: 1025f27a481a101ef03051546a3b8a vary: Accept strict-transport-security: max-age=15724800; includeSubDomains x-cache: Miss from cloudfront via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: NqwpynH0Qx1HOdAO_GBqfJl3XGuvPOb70qU_UJzWGRx0x6mpCsJaOQ== X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (502), with no line terminators Size: 502 Md5: 42bffd9881b2a66f2261396861d088e1 Sha1: fedd91929b16e7dc2e8a42007749dd1b8af639a5 Sha256: 4003bdd587f209b919b73d57ec34ce5aa3a6f65d24d14f69247f2c4739a8db87
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: f187a520757fe4a0d2b8e9b8cfe97f876e3dbd321a0e9eea01fed9a4d54bb1fa 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F187A520757FE4A0D2B8E9B8CFE97F876E3DBD321A0E9EEA01FED9A4D54BB1FA" Last-Modified: Sun, 27 Nov 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10602 Expires: Sun, 27 Nov 2022 20:24:11 GMT Date: Sun, 27 Nov 2022 17:27:29 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d9bf535e17e06fe197139af26d7b1c86 Sha1: e1315511c9bd05fd4f66de5dd972b097c22854d4 Sha256: f187a520757fe4a0d2b8e9b8cfe97f876e3dbd321a0e9eea01fed9a4d54bb1fa
GET /landings/277098/1669380435/css/popup.css?1669380435 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/css/p (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 389f3d6adf5fc48317bdf0d85eaa23dd2a18578736609da35190baba464c0298 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: CwQpqaBbrIybbqHVeMhUFaUTfT+aK7HB7q2JpAHHlEI1XjsVUTYdxDMdxJXCaVI2j90K9KURrj0= x-amz-request-id: XWFKYNYX2TBQHMY5 Last-Modified: Fri, 25 Nov 2022 12:47:19 GMT ETag: "b47a3a5faf928711066b6f0deb015420" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 17:27:29 GMT Content-Length: 619 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 619 Md5: f140ccb2b3ee4baac59fd038f029a31b Sha1: ffff86bf4e2538fd63e07a91a3d769c7fb5150d9 Sha256: 389f3d6adf5fc48317bdf0d85eaa23dd2a18578736609da35190baba464c0298
GET /landings/277098/1669380435/css/reviews.css?1669380435 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/css/r (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 31c2ff7e9dc254ef90387847fdf4e6239826363167823e4d351ceadd622de6fa 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: J+TnUg8Xw5kJu67QA09F5mdiIANzv4Yq4AnFWJy1XrXFgPqHdiw7mG7Xa6nGDhxbPRGQ80Q/S7w= x-amz-request-id: XWFXZERG60S6BC0Z Last-Modified: Fri, 25 Nov 2022 12:47:19 GMT ETag: "889e1e25493a246c015e10ff3ac0fa19" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 17:27:29 GMT Content-Length: 897 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 897 Md5: 0b852943e2e935acc98d2731e3350df3 Sha1: 102c149ebd27e1a680287f16c3d6c70dd7113ce5 Sha256: 31c2ff7e9dc254ef90387847fdf4e6239826363167823e4d351ceadd622de6fa
GET /landings/277098/1669380435/css/main.css?1669380435 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/css/m (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: b7aa64b247f4a83c45522a6a1dde845fcce77d6072b0cf7a897544e4a00d6c39 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: +J9simZ9bERM/XylaWuxJqfmY9+6PJWn1UMW7SMGyWqTXqI5cvvcSdJ/bquwn8DfmoekU2Pbcng= x-amz-request-id: XWFZT5XNAJG3VA95 Last-Modified: Fri, 25 Nov 2022 12:47:19 GMT ETag: "1b3330282caecf2a63db5efcff61d78a" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 17:27:29 GMT Content-Length: 1939 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: assembler source, ASCII text Size: 1939 Md5: eff92142589385f46c875a06aa55b33a Sha1: 7f930e11fb86c757b527675794a3a81ae9261ed1 Sha256: b7aa64b247f4a83c45522a6a1dde845fcce77d6072b0cf7a897544e4a00d6c39
GET /landings/277098/1669380435/js/jquery-2.2.4.min.js?1669380435 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/js/jq (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 97d25af867afe95682e66a2d01f9c5e2f085df402403671e6ba885f49a1e03be 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: 7QdYYaku4DkSbsmFv8XLZeFU/B1DsCrv8cZXmzio8XjeyBQrJ2/cnkRR1CHkhzt/dlA+yPj6TYg= x-amz-request-id: XWFZ8NM5PFNNJBWS Last-Modified: Fri, 25 Nov 2022 12:47:19 GMT ETag: "61a04f254179208c931ebf40f4cfddf5" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 17:27:29 GMT Content-Length: 36023 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text, with very long lines (530), with CRLF line terminators Size: 36023 Md5: 378507f30ab981ba7c512e07d134caaf Sha1: dd17d6f540df83bab63921deda1b9462a5047c00 Sha256: 97d25af867afe95682e66a2d01f9c5e2f085df402403671e6ba885f49a1e03be
GET /landings/277098/1669380435/js/trls.js?1669380435 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/js/tr (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 883c2c7df327c87c4f8f677bc9113fb87e4b509dce6b71db8b67124a9aa5ce82 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: 1/Qj2+MNP2KO6cVV1cZKk3/Kh8FyZZ8XBxc2vlk9syYnOwtaNgsz6o0vWlKpBqGYa7QyovtfIxU= x-amz-request-id: XWFJBTVQZWNH60FK Last-Modified: Fri, 25 Nov 2022 12:47:19 GMT ETag: "08398cde9d04669865ac1a40cf30840b" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 17:27:29 GMT Content-Length: 10725 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 10725 Md5: 2cc16ee545886ac217511e44f8fcfd1f Sha1: 3def6fb1d0341a47188343ad9b72a43a1108dded Sha256: 883c2c7df327c87c4f8f677bc9113fb87e4b509dce6b71db8b67124a9aa5ce82
GET /landings/277098/1669380435/js/script.js?1669380435 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/js/sc (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 0088bc7ee3ef7e624cf35a3e9b7eee6716837951fe03e5a2940e19a0f984d771 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: OZPMuip4jzyhdGRBXsdQYxV7lMOm+eXnDvHuAV+PxfonWaDjnAZfLkCmWsF+DZkty9ee8XGTqDE= x-amz-request-id: XWFQD87DTCMS5Z5Z Last-Modified: Fri, 25 Nov 2022 12:47:19 GMT ETag: "9a75d29efe08c33843a4d62f7b35836d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 356 Date: Sun, 27 Nov 2022 17:27:29 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: ASCII text Size: 356 Md5: 9a75d29efe08c33843a4d62f7b35836d Sha1: 8ab307814e322817cb5ec88b2bb77669b9c81d8f Sha256: 0088bc7ee3ef7e624cf35a3e9b7eee6716837951fe03e5a2940e19a0f984d771
GET /landings/277098/1669380435/js/title_tanslate.js?1669380435 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/js/ti (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3 184.31.15.67 HTTP/1.1 200 OK Content-Type: text/javascript x-amz-id-2: xi7q0QNhfs+AZlfeSqvbkoC6eljGMmVnmtXN3X0a/MvA+epOfd96iuNSHjniPj2jBRtEpUzjbDk= x-amz-request-id: XWFK3VHMWTJB0P65 Last-Modified: Fri, 25 Nov 2022 12:47:19 GMT ETag: "5f373fa5bf21c44b9ad23b70ef96e73d" Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding Content-Encoding: gzip Date: Sun, 27 Nov 2022 17:27:29 GMT Content-Length: 1298 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: Unicode text, UTF-8 text, with CRLF line terminators Size: 1298 Md5: 0e212ad4454c941c45c2e57df42c2b4f Sha1: fe9d7c484c2c0d7a6475692ef984c53a06c95406 Sha256: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3
GET /landings/277098/1669380435/images/camera.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: fa7b21b2662408264e5a88b2899d4e7fd841c21c1acb6f4b329bc26a04498ddd 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: P7QUyafMO6Iw/QRP//KZg7oYIQcBRYYRvu1esQmFmr8xloHEPcI+NgUXtZYJ0BrIQUknFlrXi4g= x-amz-request-id: NN59PPV8ZBT5E568 Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT ETag: "2241535df47e4118224448152eb91b83" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 15843 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 29 x 22, 8-bit/color RGBA, non-interlaced\012- data Size: 15843 Md5: 2241535df47e4118224448152eb91b83 Sha1: ffedced57c5adb80c470dd79a45f6d67c82122f1 Sha256: fa7b21b2662408264e5a88b2899d4e7fd841c21c1acb6f4b329bc26a04498ddd
GET /landings/277098/1669380435/images/shield.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: RA/L5cLyZzAjnaE8pQt4jbzbL0iEnmagwPaaxF0NbnnivagWGFRoD4ukX2NGDYEsYq2mLLwWRVc= x-amz-request-id: 15MTN9AG3QWYZ2FR Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1539 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310) Size: 1539 Md5: 0c7a0dfd64cf020cd8a6dc0c3df1dbdf Sha1: f705635388aebebae1223d828c38233067f28ab1 Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888
GET /landings/277098/1669380435/images/icon-city.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d71e36a5403717ee163d4dfe676d92b5cf91a20b5112e0c8441fb891673ca6d5 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: 8hXKVCnana+uY38vftoPIWQwaLcHjcBoYDZH9GYY6WFgcXo+02/CFh9884gVMXGtPKdSVu9xdm0= x-amz-request-id: NN58DKWF43AG2JVM Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "cd4eb61df231131a053d0a4e680d22fa" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 839 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (735) Size: 839 Md5: cd4eb61df231131a053d0a4e680d22fa Sha1: ca5b873e0f24fb900b2740048506b7ab322a44fa Sha256: d71e36a5403717ee163d4dfe676d92b5cf91a20b5112e0c8441fb891673ca6d5
GET /landings/277098/1669380435/images/unlock.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: Z2UrGcYk28ixKLZ8OMqnNrnDrcJAIttfI4UDi0qWP9LsMQQkRpOEhfddNwBkilDydFH9fCcSFU4= x-amz-request-id: NN52VSVT8KD5E5PT Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "a732e1e06affb4575c050fdb0131e5ca" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2378 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944) Size: 2378 Md5: a732e1e06affb4575c050fdb0131e5ca Sha1: da4f4f204a4d22c7424274a91520e0ea993c48c7 Sha256: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f
GET /landings/277098/1669380435/images/password.svg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: zrDCWdKgbL0/JkmOkFlousy/sFnAaTP/xVgfeXRtXYOdedtRxYqXuK/kg3Ex44+A7F1jpTICShI= x-amz-request-id: 15MVY7MPT12YH3TH Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT ETag: "f42aef7f97d4c9bdb074673081f38ac7" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1339 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (330) Size: 1339 Md5: f42aef7f97d4c9bdb074673081f38ac7 Sha1: 0231df782e371d139c826e091279acd9a07e691c Sha256: 5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac
GET /landings/277098/1669380435/images/shutterstock_745475197.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: cd99a78c0d74febf0c5c4915318b04a5a315508453f1dc456e821c3d6469729f 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: W85+0A+NmQqtMVJaBdVvq3urEI5fw7BwCGqEBrZZrflvxsAjlkgw1ewi7bzJ70beXFIytzNi+Zw= x-amz-request-id: 15MXY298X522C7SK Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "13efb7d3bebedd1070118ff26ef75f0e" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 99417 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 1920 x 363, 8-bit colormap, non-interlaced\012- data Size: 99417 Md5: 13efb7d3bebedd1070118ff26ef75f0e Sha1: 5468d7a02606ddbef66a356fa0b68804a8821f0b Sha256: cd99a78c0d74febf0c5c4915318b04a5a315508453f1dc456e821c3d6469729f
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12583 Expires: Sun, 27 Nov 2022 20:57:13 GMT Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: aebda342a81ad83f60d2523f54ccda67 Sha1: e590d9326e4a283e0929a8ffccb13cc4308af0e6 Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12583 Expires: Sun, 27 Nov 2022 20:57:13 GMT Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: aebda342a81ad83f60d2523f54ccda67 Sha1: e590d9326e4a283e0929a8ffccb13cc4308af0e6 Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 5af61422c4eaa1b995ec63e463abda26 Sha1: db75634681ed688840773ce828c169ac9da7d131 Sha256: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12583 Expires: Sun, 27 Nov 2022 20:57:13 GMT Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: aebda342a81ad83f60d2523f54ccda67 Sha1: e590d9326e4a283e0929a8ffccb13cc4308af0e6 Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5099 x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cOo4jFBvoAMFl1w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google date: Sat, 26 Nov 2022 21:51:41 GMT age: 70549 etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5099 Md5: 433875a1b1fef34e45f2d8ac344c07e3 Sha1: f2129466436cbbdd58abe42a47fb7af19eba58e6 Sha256: ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 5af61422c4eaa1b995ec63e463abda26 Sha1: db75634681ed688840773ce828c169ac9da7d131 Sha256: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10199 x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cOo4iF1VIAMF09g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google date: Sat, 26 Nov 2022 21:51:41 GMT age: 70549 etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10199 Md5: 2cd887044e91d7ed0f1a8d7119ff7dd0 Sha1: ae8aa4ce6ddaccba771fe65446926b60fc5628da Sha256: bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 13049 x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cBsvpHDJoAMFhFQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0 x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: MA_O50Lu6RRAFJpzXmVXhkxvYazdX5Lhk2Qa5k9fYUhBta-IWpVT1g== via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 01:46:48 GMT age: 56442 etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13049 Md5: 1db6041a0bdb2319ae85afcc30caaeec Sha1: 3b0ec6a7188dadf986f72fda8110296d9abd6f35 Sha256: 05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8387 x-amzn-requestid: e4ce369f-7654-4c1a-94c2-70c913eb1a01 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cFL0tEcqIAMFXHw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637ec01d-37bd969f4cdfe220096b8c1f;Sampled=0 x-amzn-remapped-date: Thu, 24 Nov 2022 00:51:41 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: __2hrJIdzCKzhuJ_YfbSSfz-WwyIqnPugk7P6SuYSjn6b2wwm0otCw== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google date: Sat, 26 Nov 2022 20:58:18 GMT age: 73752 etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8387 Md5: 4e97baa4851785eac92c719abf481c64 Sha1: c32a57038d3cdbc514c9081c9938eca6a04fb481 Sha256: adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4803 x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cOo4iFHoIAMF2-g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg== via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google date: Sat, 26 Nov 2022 21:51:37 GMT age: 70553 etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4803 Md5: cc0a257323f882caff067adb86d906e4 Sha1: cedf2f21be7cd366bd46055b62b5513db3011dfc Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7380 x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cOo4iEegIAMFeuQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA== via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google date: Sat, 26 Nov 2022 21:50:08 GMT age: 70642 etag: "97a135335f5b1b042adeb385718f8808cb78528b" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7380 Md5: 76c00eceed956377d7469ef58b0815cb Sha1: 97a135335f5b1b042adeb385718f8808cb78528b Sha256: 81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61
GET /landings/277098/1669380435/images/4-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: KHffhkhhcCYMBER9Iynrr4dym7DghcWHoOJuIBg/NX5Qlxll0dKfohq58vL+71sbh3xZVoGYYJs= x-amz-request-id: 15MXCMD77ZN8R4ZJ Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "cb3aff7c886e4f72a98172b873b5e62d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2586 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2586 Md5: cb3aff7c886e4f72a98172b873b5e62d Sha1: 33de244dcb4db4abe54b6508ae8d1546eb279aa5 Sha256: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e
GET /landings/277098/1669380435/images/5-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: wWrZ0ZY/TT5VBPfhU9okdmubEuohdl1+GMimXRW11qgeDfWPl4K0Ct3MUOA1kWS7WrWvMCmNEjA= x-amz-request-id: HK3YZBDFWC4JDT22 Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "27109a247208262e6293950ca8f5450d" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2879 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2879 Md5: 27109a247208262e6293950ca8f5450d Sha1: cea89616d15ad45a0f2b04082dff608abd96b800 Sha256: 86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96
GET /landings/277098/1669380435/images/2-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: p19O4XHtdFc3COPBErtA42CmNh0pF8CMMFri7pHWqfTUhOhXCXdKASRraSpfV5wmlP8f8bwaS2Q= x-amz-request-id: 15MXQ2WEQZ62N9X3 Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "66b6dc51bd19c799dcadf1dbeb628d9c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2009 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2009 Md5: 66b6dc51bd19c799dcadf1dbeb628d9c Sha1: ff7fe6049e944186764bfc5041d624ec11f8d362 Sha256: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0
GET /landings/277098/1669380435/images/btn.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 01988f1941b629e70fa08dd562ab01226ae1c3e33fce0dcf7fd490073152be2d 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: VsMTfHj1K/S9fK3cyg5R80CUxMoV2NPq0n8WMrKMtnw6/S1ogbWqBpF0Pp4wnEnUp+KHf370w2Q= x-amz-request-id: 15MRZ3H0J65GKT37 Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT ETag: "9ec971aedb388ea8b434df05fb1de307" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 3302 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 55 x 55, 8-bit/color RGBA, non-interlaced\012- data Size: 3302 Md5: 9ec971aedb388ea8b434df05fb1de307 Sha1: f894a11c1bb5e643bb21e906c8e405dbb6976afa Sha256: 01988f1941b629e70fa08dd562ab01226ae1c3e33fce0dcf7fd490073152be2d
GET /landings/277098/1669380435/images/lightning.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 3404796b23bcfa338b2b6c0fd2e69c7c15d7711e315362b513e7c484881a5c28 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: vkeZE94tmv2pLdGdJat5czMKSNdLDVcEshyLt2QuFThdDQav0UQfP2l4qovcRkWFAXTUsLSRMME= x-amz-request-id: NN5FS5P5VZYZWR20 Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT ETag: "f7d041540d78ae007d1fe5aed28bfe22" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 15158 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 13 x 22, 8-bit/color RGBA, non-interlaced\012- data Size: 15158 Md5: f7d041540d78ae007d1fe5aed28bfe22 Sha1: 87f0f527b713204abd6eb85f52838857b0b1f313 Sha256: 3404796b23bcfa338b2b6c0fd2e69c7c15d7711e315362b513e7c484881a5c28
GET /landings/277098/1669380435/images/7-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: I5m0pW94MGt/3Ah050owELmaiQMMpy/ClDwSK1qEKIDj+t5+ZlGgMm1em30D9aBm4tjamRrXwh0= x-amz-request-id: HK3GGJA1FC41GTRX Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "8155d8ecc7dc2d9b29cf99ab85c3d2a8" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2282 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2282 Md5: 8155d8ecc7dc2d9b29cf99ab85c3d2a8 Sha1: ba784563c7787760b318af24ea274ad6df2c5b89 Sha256: 7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27
GET /landings/277098/1669380435/images/8-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: 15e+HtIJpWktXdM5mttnzNvY8HwHDrhnokyDpNdNAmjnuOeeWp5T3Ih4RU4Rb5lY2zKJDIi/dYk= x-amz-request-id: 15MK33ERHFJ1VWPN Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "41bbda91cef3f22db1d45d66f7ca0961" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2458 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 2458 Md5: 41bbda91cef3f22db1d45d66f7ca0961 Sha1: e2f8f56674e0180063a4f8287931dc0b273baf8e Sha256: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e
GET /landings/277098/1669380435/images/1-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: WzsXQExXU3u0pfO5LU81GA7hmsZj2vBy0r5YlY3s6UZRVYlsO/+9i2FO6MjFfoE/r/CO7Zzgh/8= x-amz-request-id: 15MYFCTCXYR0WFDF Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "6e6d0b84c81d847e24671a711115a781" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 4292 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 4292 Md5: 6e6d0b84c81d847e24671a711115a781 Sha1: 20dc2d359e437dc10ceefea4d3c7b5189c2e58d0 Sha256: 515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553
GET /landings/277098/1669380435/images/filter.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 8b9dd6e23d69ea8f9493b3a21aed910d22744dae467c8ea5f41805c35788adfc 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: pH8K57fHSTaQcZt7TqvZZv04I3rs8ZByAiM/aSscDkXqLZw6W6w02TnHQNQmH5EcA1Bo0kt+gSY= x-amz-request-id: HK3PMD9QB1SWWT8E Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT ETag: "4d51ab70b5dfb7e1262bc7b07d0cfdc6" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2287 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 38 x 33, 8-bit/color RGBA, non-interlaced\012- data Size: 2287 Md5: 4d51ab70b5dfb7e1262bc7b07d0cfdc6 Sha1: 4e7be71c5ce43cc934262788d47edc297fcf4b6b Sha256: 8b9dd6e23d69ea8f9493b3a21aed910d22744dae467c8ea5f41805c35788adfc
GET /landings/277098/1669380435/images/blocked-icon.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: f7a4b3fb74b9e06f243f23ede51a801a0aa3fa2c0040bc44a49a97444780923d 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: 8UK21aOInb1vYrzWOlpJx1dy0puk13YLZcaxR1PezQ4IuAvE4LfTdo+y4hxkvzRIhNm2BUFhJIU= x-amz-request-id: HK3XFHHBGS4YH5NC Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT ETag: "87487ad255dde0624f59abb85602defc" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 502 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 23 x 32, 8-bit/color RGBA, non-interlaced\012- data Size: 502 Md5: 87487ad255dde0624f59abb85602defc Sha1: caafad17df41875bed690353ead6cc495a9bf8c2 Sha256: f7a4b3fb74b9e06f243f23ede51a801a0aa3fa2c0040bc44a49a97444780923d
GET /landings/277098/1669380435/images/6-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: NLf6Im8bjlh9IzRhYQky7gW1GqO7XTfWZF9bsc3uc9mgFiA1SyernKPGa2rbhGJucdgU1HTfaJA= x-amz-request-id: HK3NVZWEYWR8BA9K Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "9a6870069cb979e16b239f9ed485fb3c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 3256 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data Size: 3256 Md5: 9a6870069cb979e16b239f9ed485fb3c Sha1: c1dc7f3620c8cc391648c550f91b269b04d3c612 Sha256: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818
GET /landings/277098/1669380435/images/preview.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 680b57e32b4b3dbba13d5be961805fbc627d902c40a0821c26ea6454c4b2792a 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: Ej9/PSTuWSKQp/QtSgbuFAkpVSmcKM4DvjkpfhqsgRCqLjKUmitnqtrvdDp2BNnPCW74VbvEjYg= x-amz-request-id: HK3ZKGCZBABSA4PT Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT ETag: "a04e546bb075c2adba6559501db4e8d9" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 149522 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=862, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=593], progressive, precision 8, 593x593, components 3\012- data Size: 149522 Md5: a04e546bb075c2adba6559501db4e8d9 Sha1: fcc89d946f43be0505427f486e285dda5bedf24f Sha256: 680b57e32b4b3dbba13d5be961805fbc627d902c40a0821c26ea6454c4b2792a
GET /landings/277098/1669380435/images/110010_1.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 09e3f147578d663b2b33b05eec941e4cd5f03afa54091a458e8cdc76a9ea9977 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: bzklmk7DA+dGQZzbbtQ3KlDpUbr2Ht12ixTfXhRv8skCN7v8jbUt/EzuAUQ1GqdLtL5naX4lvLA= x-amz-request-id: NN5A91HZ93DXVV5M Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "f0a79db4dd92694735ee0e6a311fc42c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 56596 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 682x388, components 3\012- data Size: 56596 Md5: f0a79db4dd92694735ee0e6a311fc42c Sha1: af0cbc1a6abcade4ae78b7df736a0206c218f6c1 Sha256: 09e3f147578d663b2b33b05eec941e4cd5f03afa54091a458e8cdc76a9ea9977
GET /landings/277098/1669380435/images/3-eu.jpg HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/jpeg x-amz-id-2: lrI7vRvvmXyMbW7tsB5nvXL49LeuQIoPAbGWVatjYpa8IUMMA84/imsbSIfE8Y5q88m3hBeAQ8g= x-amz-request-id: 15MGR6SWQ5AEYMX9 Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "1dc512dcb0850f22cfa72c789578085c" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 3946 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 80x80, components 3\012- data Size: 3946 Md5: 1dc512dcb0850f22cfa72c789578085c Sha1: 933e9c5648e782c9f9a1504d2248f0acb4b9950b Sha256: 7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 5af61422c4eaa1b995ec63e463abda26 Sha1: db75634681ed688840773ce828c169ac9da7d131 Sha256: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
GET /landings/277098/1669380435/images/shutterstock_1549109471_web_w.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277098/1669380435/css/main.css?1669380435 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: db5fd51b01facb3e563fadb03487b7adffa79afd80aacd64b5689eedfb465dc3 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: A2GoKSB3lGhzXcQxd6GulywxPcKc73ejTLOX00fe0+g5VEJaHDKNobRTA9uNselpfV6BKeKc/R8= x-amz-request-id: 15MT5FBBGNJME9XA Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "94e08bf0e1ba6c7b863d84f0fe8d1052" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 87114 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 1920 x 1080, 4-bit colormap, non-interlaced\012- data Size: 87114 Md5: 94e08bf0e1ba6c7b863d84f0fe8d1052 Sha1: 968b61a83e3beeb6acf55f2679a7ccd5b6c8b5c0 Sha256: db5fd51b01facb3e563fadb03487b7adffa79afd80aacd64b5689eedfb465dc3
GET /landings/277098/1669380435/images/action_icons_20px_2x.png HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/landings/277098/1669380435/css/reviews.css?1669380435 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: UyC4fwxDKsuraT/28VKQUAkWVuiaU8XiE06fnnmzROTJXnxmAXhchqjlqjg+KejYvyj289S+HQQ= x-amz-request-id: 15MN2YMS0FFH84Q2 Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "b699975b5fe73b087e711a33ff24ee1e" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1726 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data Size: 1726 Md5: b699975b5fe73b087e711a33ff24ee1e Sha1: 0e33cc5c32a5e7d18440751e3946076664caaf53 Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e9895464b828d538dc654c678c82b181 Sha1: af5791cd48761cb3f3f979b481c23e1508692823 Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e9895464b828d538dc654c678c82b181 Sha1: af5791cd48761cb3f3f979b481c23e1508692823 Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://jwbvdz.exceilentdate.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4 (...) FQDN: fonts.gstatic.com IP: 216.58.207.195 HASH: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 216.58.207.195 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 18:53:49 GMT expires: Thu, 23 Nov 2023 18:53:49 GMT cache-control: public, max-age=31536000 age: 340421 last-modified: Wed, 11 May 2022 19:24:42 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size: 15860 Md5: e9f5aaf547f165386cd313b995dddd8e Sha1: acdef5603c2387b0e5bffd744b679a24a8bc1968 Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /css2?family=Ubuntu:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Ubuntu:wght@400;700&di (...) FQDN: fonts.googleapis.com IP: 142.250.74.10 HASH: 83d2e5cc4c1a635bb277843c8bd36dcba921f39307320b8e64048ac805f0d84a 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 27 Nov 2022 17:27:30 GMT date: Sun, 27 Nov 2022 17:27:30 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 16285 Md5: f2e37acf22ee9ac97fda17ebfce01be9 Sha1: 5e12d8f62cbd976695cc2d1fab2b06638e5cd6e8 Sha256: 83d2e5cc4c1a635bb277843c8bd36dcba921f39307320b8e64048ac805f0d84a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 27 Nov 2022 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e9895464b828d538dc654c678c82b181 Sha1: af5791cd48761cb3f3f979b481c23e1508692823 Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
GET /landings/277098/1669380435/images/favicon.ico?t=20221127172729 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 HASH: d33210764a14dfd57a8193ae2a5426ea1b9b63460fd3eced0aa9c175a1a833d3 184.31.15.67 HTTP/1.1 200 OK Content-Type: image/x-icon x-amz-id-2: FXJsMNCEStnntuWodhX+nBT8P+nNZHijJrYe6k01VwcXzbhxgHuiC3yp7GZ+iFCYHdK6fSvNq3k= x-amz-request-id: Z5AXTGZATKTS6FGY Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT ETag: "8924ecd94cbad467c5c645d52fbee336" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 11340 Date: Sun, 27 Nov 2022 17:27:30 GMT Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info --- Magic: MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel\012- data Size: 11340 Md5: 8924ecd94cbad467c5c645d52fbee336 Sha1: b1f83e498743f6a50594d08a6eb89620467958d2 Sha256: d33210764a14dfd57a8193ae2a5426ea1b9b63460fd3eced0aa9c175a1a833d3
POST /ortb HTTP/1.1 Host: jwbvdz.exceilentdate.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 295 Origin: https://jwbvdz.exceilentdate.com Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/?s1=120749&s2=1506505&s3=170910&s5=backuser&click_id=1025f27a481a101ef03051546a3b8a&iexpp=1&j1=1&j5=1&j9=1&utm_source=1e3a4e532f1c7040&j8=1 Cookie: unique_id=638387600004896b; unique_id2=6383876000062aff; 6383876000062aff_c=1; ref_token=152840_120341_120749; 6383876000062aff_sl=[277098] Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	URL: jwbvdz.exceilentdate.com/ortb FQDN: jwbvdz.exceilentdate.com IP: 63.32.216.166 HASH: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208 63.32.216.166 HTTP/2 200 OK content-type: text/plain; charset=utf-8 server: nginx date: Sun, 27 Nov 2022 17:27:30 GMT content-length: 13 X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 13 Md5: 1031bf08481e45e42ceb3fd978c3d379 Sha1: 3d6d43df4c45f09f5d68593646fd83352323a5ea Sha256: c99e0e70ba976626855bf7f83fc0e333b57833bcaf3dcfba16215a6e4fa3e208 Alerts: Blocklists: - fortinet: Phishing
GET /?utm_source=1e3a4e532f1c7040&s1=120749&s2=1506505&s3=170910&s5=75077_102bafe7c94c86d88a5648a8701297&click_id=1025f27a481a101ef03051546a3b8a&j1=1&j5=1&j8=1&j9=1 HTTP/1.1 Host: jwbvdz.exceilentdate.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: jwbvdz.exceilentdate.com/?utm_source=1e3a4e532f1c7040&s (...) FQDN: jwbvdz.exceilentdate.com IP: 63.32.216.166 63.32.216.166 HTTP/2 200 OK content-type: text/html; charset=utf-8 server: nginx date: Sun, 27 Nov 2022 17:27:29 GMT set-cookie: unique_id=638387600004896b; Path=/; Expires=Thu, 26 Jan 2023 17:27:29 GMT; Secure; SameSite=None unique_id2=6383876000062aff; Path=/; Expires=Sat, 25 Feb 2023 17:27:29 GMT; Secure; SameSite=None 6383876000062aff_c=1; Path=/; Expires=Sat, 25 Feb 2023 17:27:29 GMT; Secure; SameSite=None ref_token=152840_120341_120749; Path=/; Expires=Tue, 27 Dec 2022 17:27:29 GMT; Secure; SameSite=None impression=; Path=/; Expires=Sun, 27 Nov 2022 17:27:29 GMT; Secure; SameSite=None 6383876000062aff_sl=[277098]; Path=/; Expires=Sun, 11 Dec 2022 17:27:29 GMT; Secure; SameSite=None content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn-dimi.akamaized.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Roboto:wght@400;700&di (...) FQDN: fonts.googleapis.com IP: 142.250.74.10 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 27 Nov 2022 17:27:30 GMT date: Sun, 27 Nov 2022 17:27:30 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /landings/277098/1669380435/images/bg.mp4 HTTP/1.1 Host: cdn-dimi.akamaized.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: video/webm,video/ogg,video/;q=0.9,application/ogg;q=0.7,audio/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- Connection: keep-alive Referer: https://jwbvdz.exceilentdate.com/ Sec-Fetch-Dest: video Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn-dimi.akamaized.net/landings/277098/1669380435/image (...) FQDN: cdn-dimi.akamaized.net IP: 184.31.15.67 184.31.15.67 HTTP/1.1 206 Partial Content Content-Type: video/mp4 x-amz-id-2: xJJkbnV9/InXSMwh55X0lom6vtNdpNB+zDIQHcdxDKCQH2wv2y8yNgzo91Q/mNKqBnthA88l220= x-amz-request-id: HK3RA2K7BS216KW7 Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT ETag: "e76858ed8489b22c01e5e7bc891c4eab" Accept-Ranges: bytes Server: AmazonS3 Date: Sun, 27 Nov 2022 17:27:30 GMT Content-Range: bytes 0-1077924/1077925 Content-Length: 1077925 Connection: keep-alive Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" --- Additional Info ---

                                        
                                            GET /75077/8047/27900/?aff_sub4=_bucket&aff_sub=test_r565&aff_sub2=55609&aff_sub3=w25a6i6ohlkjj9pk2i4mvuh2&source=102bafe7c94c86d88a5648a8701297&bo=2753,2754,2755,2756&aff_sub5=_test_r565&aff_sub4=ALGO_bucket HTTP/1.1 

                                        
                                            
Host: t.anmdr.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         54.230.111.123

                                        
                                            HTTP/1.1 301 Moved Permanently 

                                        
                                            
Content-Type: text/html

                                        

                                        
                                            
Server: CloudFront 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:27 GMT 

                                        
                                            
Content-Length: 167 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Location: https://t.anmdr.link/75077/8047/27900/?aff_sub4=_bucket&aff_sub=test_r565&aff_sub2=55609&aff_sub3=w25a6i6ohlkjj9pk2i4mvuh2&source=102bafe7c94c86d88a5648a8701297&bo=2753,2754,2755,2756&aff_sub5=_test_r565&aff_sub4=ALGO_bucket 

                                        
                                            
X-Cache: Redirect from cloudfront 

                                        
                                            
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-P1 

                                        
                                            
X-Amz-Cf-Id: DYbo6s04Z0BVXZ908gMO3nZyFhZ_TNxqaCchnpKYUyjRs8J0eWmBMA== 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   167

                                                Md5:    f5d40b7259645010f9a248858ad14178

                                                Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b

                                                Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 6255 

                                        
                                            
Cache-Control: max-age=154081 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:27 GMT 

                                        
                                            
Etag: "63833c71-1d7" 

                                        
                                            
Expires: Tue, 29 Nov 2022 12:15:28 GMT 

                                        
                                            
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT 

                                        
                                            
Server: ECS (ska/F71B) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    64b2a23eab6e5ae8c010ec7242be930c

                                                Sha1:   0673e4385ba01a5a245711bab96cafc34f765793

                                                Sha256: 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 939 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 17:19:23 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 484 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    567df7db606cf5d0871aa5bc9311b6da

                                                Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17

                                                Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 27 Nov 2022 17:27:28 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 329 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 17:08:54 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 1114 

                                        
                                            
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
etag: "1648230346554" 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        
                                            GET /75077/1?aff_sub=test_r565&aff_sub2=55609&aff_sub3=w25a6i6ohlkjj9pk2i4mvuh2&aff_sub4=ALGO_bucket&aff_sub5=_test_r565&source=102bafe7c94c86d88a5648a8701297&bo=2753%2C2754%2C2755%2C2756 HTTP/1.1 

                                        
                                            
Host: t.crdefault.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1

                                         54.230.111.50

                                        
                                            HTTP/2 303 See Other 

                                        
                                            
content-type: text/html; charset=utf-8

                                        

                                        
                                            
content-length: 938 

                                        
                                            
location: https://a.vfgtf.com/ab267e05-23a0-430a-bac4-772f7f629740?subID1=test_r565%3B102bafe7c94c86d88a5648a8701297&affiliateID=44542&source=10261b1eeead1c4d48177d05590a50&subID2=75077&s2=10261b1eeead1c4d48177d05590a50&s3=test_r565%3B102bafe7c94c86d88a5648a8701297&s4=75077&url=1&affsub=test_r565&affsource=102bafe7c94c86d88a5648a8701297&aff_click_id=10261b1eeead1c4d48177d05590a50&bo=2753%2C2754%2C2755%2C2756 

                                        
                                            
server: nginx/1.19.0 

                                        
                                            
date: Sun, 27 Nov 2022 17:27:28 GMT 

                                        
                                            
set-cookie: enc_aff_session_3785=ENC03314406e38380bf9d027b6d864f4f80fa299da8e637ef7d73cb57b133035dab48176cfd4524b2b57657e063a83884f64b2f214b307909aaa70db87ae96952fef5ec3ac1bd28237c8ebc090e9ff0f897bda5fb614705e7876d0277b3edd72ea806dc724a650abdb96144a9f1c2442c427b6eda996d3d4be64dc94c365fadc6dc0bb4439c9ba053c7722bf145d41c3420bf4367e52b6fa327333afeb196c5dbeabc25f954030ea2c0e5c58a8a6f5a617089584d9e840a5b17f9a1fb4ded994434572520e11e; Path=/; Expires=Tue, 26 Nov 2024 17:27:28 GMT; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D; Path=/; Expires=Wed, 22 Oct 2025 04:07:28 GMT; Secure 

                                        
                                            
tracking_id: 10261b1eeead1c4d48177d05590a50 

                                        
                                            
vary: Accept 

                                        
                                            
strict-transport-security: max-age=15724800; includeSubDomains 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-P1 

                                        
                                            
x-amz-cf-id: 4o9kCGhgTNqgi8sWSn1bSqK4qzNzlfrSW7q_ueM3fn6TrOPjtX3R5g== 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text, with very long lines (938), with no line terminators

                                                Size:   938

                                                Md5:    690a831fd0b347a652e37046a75157ab

                                                Sha1:   cce819589fb40fe9b8a0de47eb9a03fa98cb35c3

                                                Sha256: b7db399d499919a30ed16b818d0266bfeb24665072775e91a7abab1faf2e36f7

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: jvpX269Jv7q8ZWNyqoWIPw== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket

                                         52.41.201.177

                                        
                                            HTTP/1.1 101 Switching Protocols

                                        

                                        
                                            
Connection: Upgrade 

                                        
                                            
Upgrade: websocket 

                                        
                                            
Sec-WebSocket-Accept: RnYiTaedAmrGbHQDloCNUMqZYxc= 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /170910/3458/0/?aff_sub4=ALGO_bucket&aff_sub=test_r565%3B102bafe7c94c86d88a5648a8701297&aff_sub2=75077&aff_sub3=wt63h33q5bd8p9pkiurdum2s&source=10261b1eeead1c4d48177d05590a50&aff_sub5=_102bafe7c94c86d88a5648a8701297 HTTP/1.1 

                                        
                                            
Host: t.anmdr.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: aff_ran_url_8047=27900; enc_aff_session_8042=ENC030f864e802c1dbcb20c3355c157f83e8a3a846082137d0a18b33077198cc573ceb0495695495cf19e9baeb8227bc85929261425f0904e72c70d7a97410538f2a29f7dc997a5bf449105feb8c7ce578992b5b61d9c1f716770ada5c715832e3793958457820d9f7d9b8410e4905128956c1668340f50a833952d9772f97fc44c8fd7d1ce10575ca73f1ecccc6af5582d355c03d70ee03581a256f8456f69ca0829849ccd770337b2519e1d7a38d7032cadef1b9ef4650c8eb787a900ac58999071124192ac; ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1 

                                        
                                            
TE: trailers

                                         54.230.111.38

                                        
                                            HTTP/2 303 See Other 

                                        
                                            
content-type: text/html; charset=utf-8

                                        

                                        
                                            
content-length: 502 

                                        
                                            
location: https://jwbvdz.exceilentdate.com?utm_source=1e3a4e532f1c7040&s1=120749&s2=1506505&s3=170910&s5=75077_102bafe7c94c86d88a5648a8701297&click_id=1025f27a481a101ef03051546a3b8a&j1=1&j5=1&j8=1&j9=1 

                                        
                                            
server: nginx/1.19.0 

                                        
                                            
date: Sun, 27 Nov 2022 17:27:29 GMT 

                                        
                                            
set-cookie: enc_aff_session_3458=ENC0366ed8d911c56b38e3699f22e48eddc6c43ff9ff6ff2070ff6e68b5ae5a2a962957b209fd27d6f9484cf9696d10a991222d4997f1e3407ac4efb612ce8f44184354e8dfa8dc2d5433eaa67ba613d97a5dd4b962d2eb26249e05cab07c4a4a72281113ade704d53035024cb7d9218e0870b8221d720c475ab7ce4e1825f5cd6c421ccf4c2f0844de317dd387dd2c4a3a7484d99b3a067f4ded232f2bb18e8b5a23d27c25c88603ef8b8d2c9adabdb5fba970e1e3c7c53b71da3448cc0c85c3f3327bf17c7ecfaae591addae3afba4e910104ecb99584939157a7044d1a963ad8781609add0; Path=/; Expires=Tue, 26 Nov 2024 17:27:29 GMT; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D; Path=/; Expires=Wed, 22 Oct 2025 04:07:29 GMT; Secure 

                                        
                                            
tracking_id: 1025f27a481a101ef03051546a3b8a 

                                        
                                            
vary: Accept 

                                        
                                            
strict-transport-security: max-age=15724800; includeSubDomains 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-P1 

                                        
                                            
x-amz-cf-id: NqwpynH0Qx1HOdAO_GBqfJl3XGuvPOb70qU_UJzWGRx0x6mpCsJaOQ== 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text, with very long lines (502), with no line terminators

                                                Size:   502

                                                Md5:    42bffd9881b2a66f2261396861d088e1

                                                Sha1:   fedd91929b16e7dc2e8a42007749dd1b8af639a5

                                                Sha256: 4003bdd587f209b919b73d57ec34ce5aa3a6f65d24d14f69247f2c4739a8db87

                                        
                                            GET /landings/277098/1669380435/css/popup.css?1669380435 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
x-amz-id-2: CwQpqaBbrIybbqHVeMhUFaUTfT+aK7HB7q2JpAHHlEI1XjsVUTYdxDMdxJXCaVI2j90K9KURrj0= 

                                        
                                            
x-amz-request-id: XWFKYNYX2TBQHMY5 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:19 GMT 

                                        
                                            
ETag: "b47a3a5faf928711066b6f0deb015420" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:29 GMT 

                                        
                                            
Content-Length: 619 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with CRLF line terminators

                                                Size:   619

                                                Md5:    f140ccb2b3ee4baac59fd038f029a31b

                                                Sha1:   ffff86bf4e2538fd63e07a91a3d769c7fb5150d9

                                                Sha256: 389f3d6adf5fc48317bdf0d85eaa23dd2a18578736609da35190baba464c0298

                                        
                                            GET /landings/277098/1669380435/css/main.css?1669380435 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
x-amz-id-2: +J9simZ9bERM/XylaWuxJqfmY9+6PJWn1UMW7SMGyWqTXqI5cvvcSdJ/bquwn8DfmoekU2Pbcng= 

                                        
                                            
x-amz-request-id: XWFZT5XNAJG3VA95 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:19 GMT 

                                        
                                            
ETag: "1b3330282caecf2a63db5efcff61d78a" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:29 GMT 

                                        
                                            
Content-Length: 1939 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  assembler source, ASCII text

                                                Size:   1939

                                                Md5:    eff92142589385f46c875a06aa55b33a

                                                Sha1:   7f930e11fb86c757b527675794a3a81ae9261ed1

                                                Sha256: b7aa64b247f4a83c45522a6a1dde845fcce77d6072b0cf7a897544e4a00d6c39

                                        
                                            GET /landings/277098/1669380435/js/trls.js?1669380435 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: 1/Qj2+MNP2KO6cVV1cZKk3/Kh8FyZZ8XBxc2vlk9syYnOwtaNgsz6o0vWlKpBqGYa7QyovtfIxU= 

                                        
                                            
x-amz-request-id: XWFJBTVQZWNH60FK 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:19 GMT 

                                        
                                            
ETag: "08398cde9d04669865ac1a40cf30840b" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:29 GMT 

                                        
                                            
Content-Length: 10725 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text

                                                Size:   10725

                                                Md5:    2cc16ee545886ac217511e44f8fcfd1f

                                                Sha1:   3def6fb1d0341a47188343ad9b72a43a1108dded

                                                Sha256: 883c2c7df327c87c4f8f677bc9113fb87e4b509dce6b71db8b67124a9aa5ce82

                                        
                                            GET /landings/277098/1669380435/js/title_tanslate.js?1669380435 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/javascript

                                        

                                        
                                            
x-amz-id-2: xi7q0QNhfs+AZlfeSqvbkoC6eljGMmVnmtXN3X0a/MvA+epOfd96iuNSHjniPj2jBRtEpUzjbDk= 

                                        
                                            
x-amz-request-id: XWFK3VHMWTJB0P65 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:19 GMT 

                                        
                                            
ETag: "5f373fa5bf21c44b9ad23b70ef96e73d" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:29 GMT 

                                        
                                            
Content-Length: 1298 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text, with CRLF line terminators

                                                Size:   1298

                                                Md5:    0e212ad4454c941c45c2e57df42c2b4f

                                                Sha1:   fe9d7c484c2c0d7a6475692ef984c53a06c95406

                                                Sha256: e950a9e5e696f39d02028b27a4cd82fab1b6fd07fa34a238d3a3f7f5e90d95c3

                                        
                                            GET /landings/277098/1669380435/images/shield.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: RA/L5cLyZzAjnaE8pQt4jbzbL0iEnmagwPaaxF0NbnnivagWGFRoD4ukX2NGDYEsYq2mLLwWRVc= 

                                        
                                            
x-amz-request-id: 15MTN9AG3QWYZ2FR 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT 

                                        
                                            
ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1539 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310)

                                                Size:   1539

                                                Md5:    0c7a0dfd64cf020cd8a6dc0c3df1dbdf

                                                Sha1:   f705635388aebebae1223d828c38233067f28ab1

                                                Sha256: 856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888

                                        
                                            GET /landings/277098/1669380435/images/unlock.svg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: Z2UrGcYk28ixKLZ8OMqnNrnDrcJAIttfI4UDi0qWP9LsMQQkRpOEhfddNwBkilDydFH9fCcSFU4= 

                                        
                                            
x-amz-request-id: NN52VSVT8KD5E5PT 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT 

                                        
                                            
ETag: "a732e1e06affb4575c050fdb0131e5ca" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2378 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944)

                                                Size:   2378

                                                Md5:    a732e1e06affb4575c050fdb0131e5ca

                                                Sha1:   da4f4f204a4d22c7424274a91520e0ea993c48c7

                                                Sha256: e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f

                                        
                                            GET /landings/277098/1669380435/images/shutterstock_745475197.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: W85+0A+NmQqtMVJaBdVvq3urEI5fw7BwCGqEBrZZrflvxsAjlkgw1ewi7bzJ70beXFIytzNi+Zw= 

                                        
                                            
x-amz-request-id: 15MXY298X522C7SK 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT 

                                        
                                            
ETag: "13efb7d3bebedd1070118ff26ef75f0e" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 99417 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 1920 x 363, 8-bit colormap, non-interlaced\012- data

                                                Size:   99417

                                                Md5:    13efb7d3bebedd1070118ff26ef75f0e

                                                Sha1:   5468d7a02606ddbef66a356fa0b68804a8821f0b

                                                Sha256: cd99a78c0d74febf0c5c4915318b04a5a315508453f1dc456e821c3d6469729f

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" 

                                        
                                            
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=12583 

                                        
                                            
Expires: Sun, 27 Nov 2022 20:57:13 GMT 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    aebda342a81ad83f60d2523f54ccda67

                                                Sha1:   e590d9326e4a283e0929a8ffccb13cc4308af0e6

                                                Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" 

                                        
                                            
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=12583 

                                        
                                            
Expires: Sun, 27 Nov 2022 20:57:13 GMT 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    aebda342a81ad83f60d2523f54ccda67

                                                Sha1:   e590d9326e4a283e0929a8ffccb13cc4308af0e6

                                                Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    5af61422c4eaa1b995ec63e463abda26

                                                Sha1:   db75634681ed688840773ce828c169ac9da7d131

                                                Sha256: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 13049 

                                        
                                            
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cBsvpHDJoAMFhFQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: MA_O50Lu6RRAFJpzXmVXhkxvYazdX5Lhk2Qa5k9fYUhBta-IWpVT1g== 

                                        
                                            
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 01:46:48 GMT 

                                        
                                            
age: 56442 

                                        
                                            
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   13049

                                                Md5:    1db6041a0bdb2319ae85afcc30caaeec

                                                Sha1:   3b0ec6a7188dadf986f72fda8110296d9abd6f35

                                                Sha256: 05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 4803 

                                        
                                            
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cOo4iFHoIAMF2-g= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg== 

                                        
                                            
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 26 Nov 2022 21:51:37 GMT 

                                        
                                            
age: 70553 

                                        
                                            
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4803

                                                Md5:    cc0a257323f882caff067adb86d906e4

                                                Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc

                                                Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

                                        
                                            GET /landings/277098/1669380435/images/4-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: KHffhkhhcCYMBER9Iynrr4dym7DghcWHoOJuIBg/NX5Qlxll0dKfohq58vL+71sbh3xZVoGYYJs= 

                                        
                                            
x-amz-request-id: 15MXCMD77ZN8R4ZJ 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT 

                                        
                                            
ETag: "cb3aff7c886e4f72a98172b873b5e62d" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2586 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   2586

                                                Md5:    cb3aff7c886e4f72a98172b873b5e62d

                                                Sha1:   33de244dcb4db4abe54b6508ae8d1546eb279aa5

                                                Sha256: d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e

                                        
                                            GET /landings/277098/1669380435/images/2-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: p19O4XHtdFc3COPBErtA42CmNh0pF8CMMFri7pHWqfTUhOhXCXdKASRraSpfV5wmlP8f8bwaS2Q= 

                                        
                                            
x-amz-request-id: 15MXQ2WEQZ62N9X3 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT 

                                        
                                            
ETag: "66b6dc51bd19c799dcadf1dbeb628d9c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2009 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   2009

                                                Md5:    66b6dc51bd19c799dcadf1dbeb628d9c

                                                Sha1:   ff7fe6049e944186764bfc5041d624ec11f8d362

                                                Sha256: d3c1502509ae60909fe60c46cc58c41c1a9fe53ee7aeffb92d37a074ba8550f0

                                        
                                            GET /landings/277098/1669380435/images/lightning.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: vkeZE94tmv2pLdGdJat5czMKSNdLDVcEshyLt2QuFThdDQav0UQfP2l4qovcRkWFAXTUsLSRMME= 

                                        
                                            
x-amz-request-id: NN5FS5P5VZYZWR20 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT 

                                        
                                            
ETag: "f7d041540d78ae007d1fe5aed28bfe22" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 15158 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 13 x 22, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   15158

                                                Md5:    f7d041540d78ae007d1fe5aed28bfe22

                                                Sha1:   87f0f527b713204abd6eb85f52838857b0b1f313

                                                Sha256: 3404796b23bcfa338b2b6c0fd2e69c7c15d7711e315362b513e7c484881a5c28

                                        
                                            GET /landings/277098/1669380435/images/8-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: 15e+HtIJpWktXdM5mttnzNvY8HwHDrhnokyDpNdNAmjnuOeeWp5T3Ih4RU4Rb5lY2zKJDIi/dYk= 

                                        
                                            
x-amz-request-id: 15MK33ERHFJ1VWPN 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT 

                                        
                                            
ETag: "41bbda91cef3f22db1d45d66f7ca0961" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2458 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   2458

                                                Md5:    41bbda91cef3f22db1d45d66f7ca0961

                                                Sha1:   e2f8f56674e0180063a4f8287931dc0b273baf8e

                                                Sha256: d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e

                                        
                                            GET /landings/277098/1669380435/images/filter.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: pH8K57fHSTaQcZt7TqvZZv04I3rs8ZByAiM/aSscDkXqLZw6W6w02TnHQNQmH5EcA1Bo0kt+gSY= 

                                        
                                            
x-amz-request-id: HK3PMD9QB1SWWT8E 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT 

                                        
                                            
ETag: "4d51ab70b5dfb7e1262bc7b07d0cfdc6" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2287 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 38 x 33, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   2287

                                                Md5:    4d51ab70b5dfb7e1262bc7b07d0cfdc6

                                                Sha1:   4e7be71c5ce43cc934262788d47edc297fcf4b6b

                                                Sha256: 8b9dd6e23d69ea8f9493b3a21aed910d22744dae467c8ea5f41805c35788adfc

                                        
                                            GET /landings/277098/1669380435/images/6-eu.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: NLf6Im8bjlh9IzRhYQky7gW1GqO7XTfWZF9bsc3uc9mgFiA1SyernKPGa2rbhGJucdgU1HTfaJA= 

                                        
                                            
x-amz-request-id: HK3NVZWEYWR8BA9K 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT 

                                        
                                            
ETag: "9a6870069cb979e16b239f9ed485fb3c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 3256 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data

                                                Size:   3256

                                                Md5:    9a6870069cb979e16b239f9ed485fb3c

                                                Sha1:   c1dc7f3620c8cc391648c550f91b269b04d3c612

                                                Sha256: 3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818

                                        
                                            GET /landings/277098/1669380435/images/110010_1.jpg HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
x-amz-id-2: bzklmk7DA+dGQZzbbtQ3KlDpUbr2Ht12ixTfXhRv8skCN7v8jbUt/EzuAUQ1GqdLtL5naX4lvLA= 

                                        
                                            
x-amz-request-id: NN5A91HZ93DXVV5M 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT 

                                        
                                            
ETag: "f0a79db4dd92694735ee0e6a311fc42c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 56596 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 682x388, components 3\012- data

                                                Size:   56596

                                                Md5:    f0a79db4dd92694735ee0e6a311fc42c

                                                Sha1:   af0cbc1a6abcade4ae78b7df736a0206c218f6c1

                                                Sha256: 09e3f147578d663b2b33b05eec941e4cd5f03afa54091a458e8cdc76a9ea9977

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    5af61422c4eaa1b995ec63e463abda26

                                                Sha1:   db75634681ed688840773ce828c169ac9da7d131

                                                Sha256: 506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895

                                        
                                            GET /landings/277098/1669380435/images/action_icons_20px_2x.png HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/landings/277098/1669380435/css/reviews.css?1669380435 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
x-amz-id-2: UyC4fwxDKsuraT/28VKQUAkWVuiaU8XiE06fnnmzROTJXnxmAXhchqjlqjg+KejYvyj289S+HQQ= 

                                        
                                            
x-amz-request-id: 15MN2YMS0FFH84Q2 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT 

                                        
                                            
ETag: "b699975b5fe73b087e711a33ff24ee1e" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1726 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data

                                                Size:   1726

                                                Md5:    b699975b5fe73b087e711a33ff24ee1e

                                                Sha1:   0e33cc5c32a5e7d18440751e3946076664caaf53

                                                Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    e9895464b828d538dc654c678c82b181

                                                Sha1:   af5791cd48761cb3f3f979b481c23e1508692823

                                                Sha256: c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

                                        
                                            GET /css2?family=Ubuntu:wght@400;700&display=swap HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://cdn-dimi.akamaized.net/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.10

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
expires: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
cache-control: private, max-age=86400 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   16285

                                                Md5:    f2e37acf22ee9ac97fda17ebfce01be9

                                                Sha1:   5e12d8f62cbd976695cc2d1fab2b06638e5cd6e8

                                                Sha256: 83d2e5cc4c1a635bb277843c8bd36dcba921f39307320b8e64048ac805f0d84a

                                        
                                            GET /landings/277098/1669380435/images/favicon.ico?t=20221127172729 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/x-icon

                                        

                                        
                                            
x-amz-id-2: FXJsMNCEStnntuWodhX+nBT8P+nNZHijJrYe6k01VwcXzbhxgHuiC3yp7GZ+iFCYHdK6fSvNq3k= 

                                        
                                            
x-amz-request-id: Z5AXTGZATKTS6FGY 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:18 GMT 

                                        
                                            
ETag: "8924ecd94cbad467c5c645d52fbee336" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 11340 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel\012- data

                                                Size:   11340

                                                Md5:    8924ecd94cbad467c5c645d52fbee336

                                                Sha1:   b1f83e498743f6a50594d08a6eb89620467958d2

                                                Sha256: d33210764a14dfd57a8193ae2a5426ea1b9b63460fd3eced0aa9c175a1a833d3

                                        
                                            GET /?utm_source=1e3a4e532f1c7040&s1=120749&s2=1506505&s3=170910&s5=75077_102bafe7c94c86d88a5648a8701297&click_id=1025f27a481a101ef03051546a3b8a&j1=1&j5=1&j8=1&j9=1 HTTP/1.1 

                                        
                                            
Host: jwbvdz.exceilentdate.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1

                                         63.32.216.166

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=utf-8

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 27 Nov 2022 17:27:29 GMT 

                                        
                                            
set-cookie: unique_id=638387600004896b; Path=/; Expires=Thu, 26 Jan 2023 17:27:29 GMT; Secure; SameSite=None
unique_id2=6383876000062aff; Path=/; Expires=Sat, 25 Feb 2023 17:27:29 GMT; Secure; SameSite=None
6383876000062aff_c=1; Path=/; Expires=Sat, 25 Feb 2023 17:27:29 GMT; Secure; SameSite=None
ref_token=152840_120341_120749; Path=/; Expires=Tue, 27 Dec 2022 17:27:29 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Sun, 27 Nov 2022 17:27:29 GMT; Secure; SameSite=None
6383876000062aff_sl=[277098]; Path=/; Expires=Sun, 11 Dec 2022 17:27:29 GMT; Secure; SameSite=None 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /landings/277098/1669380435/images/bg.mp4 HTTP/1.1 

                                        
                                            
Host: cdn-dimi.akamaized.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Range: bytes=0- 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://jwbvdz.exceilentdate.com/ 

                                        
                                            
Sec-Fetch-Dest: video 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         184.31.15.67

                                        
                                            HTTP/1.1 206 Partial Content 

                                        
                                            
Content-Type: video/mp4

                                        

                                        
                                            
x-amz-id-2: xJJkbnV9/InXSMwh55X0lom6vtNdpNB+zDIQHcdxDKCQH2wv2y8yNgzo91Q/mNKqBnthA88l220= 

                                        
                                            
x-amz-request-id: HK3RA2K7BS216KW7 

                                        
                                            
Last-Modified: Fri, 25 Nov 2022 12:47:17 GMT 

                                        
                                            
ETag: "e76858ed8489b22c01e5e7bc891c4eab" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Date: Sun, 27 Nov 2022 17:27:30 GMT 

                                        
                                            
Content-Range: bytes 0-1077924/1077925 

                                        
                                            
Content-Length: 1077925 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43" 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	t.anmdr.link/75077/8047/27900/?aff_sub4=_bucket&aff_sub=test_r565&aff_sub2=55609&aff_sub3=w25a6i6ohlkjj9pk2i4mvuh2&source=102bafe7c94c86d88a5648a8701297&bo=2753,2754,2755,2756&aff_sub5=_test_r565&aff_sub4=ALGO_bucket
IP	54.230.111.117 (United States)
ASN	#16509 AMAZON-02
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-11-27 17:27:38 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	1
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (17)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.230.111.117

Last 5 reports on ASN: AMAZON-02

Last 5 reports on domain: anmdr.link

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (14)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (67)

Overview

Domain Summary (17)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.230.111.117

Last 5 reports on ASN: AMAZON-02

Last 5 reports on domain: anmdr.link

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (14)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (67)

Network Intrusion Detection Systems