GET /c/da57dc555e50572d?AID_NAME=_AID_NAME_}&CAMPAIGN_ID=_CAMPAIGN_ID_&CAMPAIGN_NAME=_CAMPAIGN_NAME_&click_id=qhgch635f7675000fa93a&j1=1&s1=172555&s2=1572690&s3=ubt-tt&source=tiktok HTTP/1.1
Host: rngngm.lmpresivedate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
 52.19.101.114
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: nginx
Date: Fri, 02 Dec 2022 03:47:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: unique_id=63892e4700031b7a; Path=/; Expires=Tue, 31 Jan 2023 03:47:20 GMT
unique_id2=638937a200026c71; Path=/; Expires=Thu, 02 Mar 2023 03:47:20 GMT
638937a200026c71_c=1; Path=/; Expires=Thu, 02 Mar 2023 03:47:20 GMT
ref_token=15966_154911_1018_164680_99207_172555; Path=/; Expires=Sun, 01 Jan 2023 03:47:20 GMT
impression=; Path=/; Expires=Fri, 02 Dec 2022 03:47:20 GMT
638937a200026c71_sl=[276666]; Path=/; Expires=Fri, 16 Dec 2022 03:47:20 GMT
Content-Encoding: gzip
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16810
Expires: Fri, 02 Dec 2022 08:27:31 GMT
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 5724
Cache-Control: max-age=116355
Date: Fri, 02 Dec 2022 03:47:21 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 12:06:36 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
 34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 03:18:10 GMT
cache-control: public,max-age=3600
age: 1751
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11075
Expires: Fri, 02 Dec 2022 06:51:56 GMT
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: 9SMqK6DB4xTkq4UEa2FdhPhHmUKGTbHIho58DhKgnOn0eQLg93EBoKG3KJomUieMl5yccedbgkA=
x-amz-request-id: BASM3M0K21NCVT7Z
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 03:45:57 GMT
age: 84
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Fri, 02 Dec 2022 03:47:21 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /landings/276666/1669379309/css/style.css?1669379309 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: text/css
x-amz-id-2: 61rgDawWXepJkP5m0MXEmO1GqFzKux/rCQQ/UPOL36Oqww1ApIqBHbGHGk6ukFjZSuLGwQHjS+I=
x-amz-request-id: PV5RM983X205991X
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "dc3b12df3464b9db5c0357f195ec3efd"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 2688
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/css/reviews.css?1669379309 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: text/css
x-amz-id-2: uRfsFla5UzTL7DPf5CxjSCS4utc5ZqY14JXJtYxQ/cRAz+vDH2G2TXvWOPioHuX9iyi6XpG68vg=
x-amz-request-id: PV5YKQ5YPSPHQDZ0
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "8d406331d9e001b5484749e32a72e5cf"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 1041
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/css/timer.css?1669379309 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: text/css
x-amz-id-2: NQ6GKIMI/7wnH8BTlNMQEtySm86sQBvf2Lp9X/BkGOAvbd4uj7Y7mhdWxmJwMvYPmd/lAbqYJxc=
x-amz-request-id: PV5Q1R6MW2MQMBE9
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "9ec38af926ee0d5ce953930a92f3955b"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 706
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/css/popup.css?1669379309 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: text/css
x-amz-id-2: FDRgTELC85iBnzPObdO5kyZHo4q9q4cD+u+z/oObyLMiJuo3btiyI6SQpE9ZeeNXXDMQ0nDAWSs=
x-amz-request-id: PV5GCTCWWSKM74PN
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "7b875d022914f8540722b4a8a849afc1"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 592
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/js/jquery.validate.min.js?1669379309 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: rF9tt71cAmmciYh5K3OlqgWcyw2wGlmsAhYVNq+RdR1thEOHPZWyRCevEyIEl/U4NwC/X1JmThm9n/GQY5Aopg==
x-amz-request-id: PV5YX44FC7MWKVD6
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "23d73c6bd6cbea8f06d0cc227896a827"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 7815
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/js/title_tanslate.js?1669379309 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: 26fUjg+ZbABeEpqYM+eGFmScMlcEshLBNjYQIo/RKRG7yqYlhZnhu18EIc9846trL13jv4zOiDQ=
x-amz-request-id: PV5R1MW2WZQQ7KWZ
Last-Modified: Fri, 25 Nov 2022 12:28:34 GMT
ETag: "5f373fa5bf21c44b9ad23b70ef96e73d"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 1298
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/js/timer.js?1669379309 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: UZVDFcTDVCvL21pZWrTzBauOW5+CHZVtc7EHQD/TN3AKWxTtoER3xemMa4uTK1H4cwvOyAjHj5w=
x-amz-request-id: PV5QC9E08JNXNJ3K
Last-Modified: Fri, 25 Nov 2022 12:28:34 GMT
ETag: "3350ef7fbc19030e06999dbb12a2c9b0"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 903
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/js/translate-popup-timer.js?1669379309 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: HCPlbFdkAVUQHDMVt8wdoX1M/v8vmt124OP2WzijG9uNVYEa7fh8Mc/WhwpRgrpp5QhqSwy/vYA=
x-amz-request-id: PV5HVVBGCMQZFMX5
Last-Modified: Fri, 25 Nov 2022 12:28:34 GMT
ETag: "e87a84612ebce6b2a84f41ef7f6d40b0"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 1080
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/js/translates-review.js?1669379309 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: XBNbTbh/lqNpQkwmz1vxfmNQcEXLTEqNAQOXLMvKdEl+gfl40wWMK5fLT+qWBZzBo+xagbxgg4E=
x-amz-request-id: PV5YQDJY7B10HMVE
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "9061bd0c6ff627d3a43a9e6c125350a7"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 14059
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/js/jquery-2.2.4.min.js?1669379309 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: JOgtstjdFrkjpRdyj6ya7zoZy7yYG54gpavtvCi8qmpljdqd6/EIod626enqg8pnY9MYSILhNcY=
x-amz-request-id: PV5JX5C8J9VE3DMH
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "2f6b11a7e914718e0290410e85366fe9"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 29855
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/js/translates.js?1669379309 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: text/javascript
x-amz-id-2: ce7xuead7/dHoTNJnXRjSTFCXCJPns1l+aBJU11nUFJKKjVawZfu/BbkzZmMCyLR4QJdQcG6qzQ=
x-amz-request-id: PV5HAG25NYFY96C0
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "b9627d60572ae478211faf00a5dbb72e"
Accept-Ranges: bytes
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 29792
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/password.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: VHld9CR1wrdg0X/TXxOyjI/XvKVrBfli9A96SpfWa90oW8zZzDeXMoolFP19SvNYcKgZ41/Yu/s=
x-amz-request-id: 4NM6Q372MK8D9KS4
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "f42aef7f97d4c9bdb074673081f38ac7"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1339
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/unlock.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: I1Z7hqfm0uth5mrGJKzcZZTJLx2C83yhySfL+Lgp2Z4yf85E8k/M/FQyOcgRVm1kGpBQxWtNVMc=
x-amz-request-id: 4NM9EY704J70XRJN
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "a732e1e06affb4575c050fdb0131e5ca"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 2378
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/shield.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: /1I6dVdX8quP7l92Qzr1WXP19WzUZmoRgmGEr3waskDQRSsUnBAeIf3smpGFP8QIQ0ROyzO7/6g=
x-amz-request-id: 4NM8F0A1ZFP54BRK
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1539
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/1-eu.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: 5mvga0mUVu9+QbpKFtO27iBYaAqzjBSFTNQruJ3BXUHxdmlacp3y8NH2HKOQrUyTy17lC+C3xvM=
x-amz-request-id: C72Y3M6CDXRYNHWH
Last-Modified: Fri, 25 Nov 2022 12:28:31 GMT
ETag: "0b2eb782c549d40b2bcb97934ab6f821"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 15567
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/icon-like2.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: uxoNzDcVOQE/ow6DCMCwBR0U3ouykKCSQJMXApaAc4hXBmyW2EDUVBseWadWlkSHWCKJF0T1UyQ=
x-amz-request-id: C72W2A7F83A8A7QZ
Last-Modified: Fri, 25 Nov 2022 12:28:32 GMT
ETag: "a1d69d8f51567ce108bdd71df17be930"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 473
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/icon-flag.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: 0YQs+UogXMZdUVG7wzqVr+UFVy6YFMVC0DQr/41BHz0SQc0bDv4J7agXNk4+xLiHodnc9fAwofc=
x-amz-request-id: C72MTJFS7FD5KS10
Last-Modified: Fri, 25 Nov 2022 12:28:32 GMT
ETag: "5da118a4447db10c8aceb6cb0e69e89c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 658
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/icon-message.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: 8t0qGwfvEd12U/TitNeR8Wx/oaCbFzDvvMIGT5ABGrQa1UTLuguIIbT/UJKIm67Hg2m9bGCBQ/w=
x-amz-request-id: C72XQ2DTNJ3HSERG
Last-Modified: Fri, 25 Nov 2022 12:28:32 GMT
ETag: "8f91b2bbb14c2fac1a9be78688501512"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 883
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/icon-direct.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: 9OYwp8m1SKsIUa12RVrNWaePAFMq8Nq1cmtd9lP5yLBHTK1PI+PQJKUv3pVdQ+pSYyAJ2llPfEo=
x-amz-request-id: C72SXBWTF2RKNDNH
Last-Modified: Fri, 25 Nov 2022 12:28:32 GMT
ETag: "9adf524396b45e89252717b159cfb95d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1141
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/4-eu.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: ZhqatN7Zc/pwXLgw8brwvIZX5tXefBsi+SN8q+uBt1sP7JaZXVVC7fFQM3HgudY9SzCy/v4Z1nc=
x-amz-request-id: C72X5ZJFMZQRBACE
Last-Modified: Fri, 25 Nov 2022 12:28:31 GMT
ETag: "4031404ec6ab92ac12eea40f1a074794"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 16220
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/3-eu.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: Kt6RmcJDRA8F4XE0CR/9/g2Hcn/m7kSnQlEa8/raKqZB1Hwrp8JPW3SlYc1Dlzv3rITYVxGmvKM=
x-amz-request-id: C72XTCQGV7FGF022
Last-Modified: Fri, 25 Nov 2022 12:28:31 GMT
ETag: "d8f5f0299333c22c41ab084120961d49"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 15013
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/8-eu.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: fLDWvnwzh4BhifhyBo4sxR+/1pM4OZJJa2uNgkCtoI0hpnhf1gc5MSOXlXX32gpiA7qna4cBoko=
x-amz-request-id: C72P8ZHW389P1B7A
Last-Modified: Fri, 25 Nov 2022 12:28:31 GMT
ETag: "ef40a69fcb961a0677eaf2e29b93aa3a"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 13479
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/7-eu.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: Qacn6P9GkdzAXJx1SfoQxcmyVI4XIOw3bR+PJNvtWGuL4HpQPtSxkI8Okc4O/ik0O4oYGMyJKtA=
x-amz-request-id: C72TCPX4PEVZ30Y9
Last-Modified: Fri, 25 Nov 2022 12:28:31 GMT
ETag: "12ec30bbdbaf0895e9b0757dfa2db143"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 15653
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/2-eu.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: V5roKOwYbmu8mrnr2UKPE7ewBl9sFGlNo3LwL3L04Lv+A62xbZDjsSr+JPz6YawpFcpoUn8YcUk=
x-amz-request-id: C72TCCXQCD1BW2BF
Last-Modified: Fri, 25 Nov 2022 12:28:31 GMT
ETag: "8406e97c1968881d481cd55c66743204"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 14098
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/6-eu.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: 9fVXcMv3K5aAx9Wb4VsPhrnbKzZj/8tOLtUx6zYRACpxCqmHlPg729UiELGQcPPYhCMmO2T268M=
x-amz-request-id: C72JK4WT52V4NF26
Last-Modified: Fri, 25 Nov 2022 12:28:31 GMT
ETag: "f424c0e5631daf23b07f1ecdcaf8f69c"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 14265
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/5-eu.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: R2N3s3OMPZVx3ou6ljsqGMJnsh/yqWvTxnSYmPKRslgs+UGds/VN5TQsR+UNZpYSs2eVgiCEk+Q=
x-amz-request-id: C72HB4XJX31GA6WW
Last-Modified: Fri, 25 Nov 2022 12:28:31 GMT
ETag: "08c6cea7e489f3caf50bfa02fcffc8d5"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 15153
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/icon-city.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: +MS2kTDwz3+kM2B3PPYZiqQv1QDin5Wzofq4MyUMbxBwbebOKkvJ86DsZ7Ad4x+eyRXcMCQPZhA=
x-amz-request-id: 4NM01X65GH85MB3Y
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "5f5ead641bc30316f498592eec2016a1"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 839
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/logo_inst3.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: w9BAp63IloBovOpFCCxArwKsl57TSq0MDL49Zp5l0jR0SgF8LSQhbCTrhSh1V/gpCo1tFge3pQU=
x-amz-request-id: 4NMFVFB3PF059YNP
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "0025657d9d2274a15aed06a9eadd2ab2"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 7042
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/110010_4.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
x-amz-id-2: 8f/7euMSPP5CPChxQdS+6Ybr59TFkj0mtLRnjFZkEQZIx20M0DLnkYVtLX5TIg0997tcJX7E598=
x-amz-request-id: 4NM7XWX88JQM88RF
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "daf4cb58fb756b1ed20036941b7a6b72"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 55243
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/blocked-icon.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: JLDr3D+oQGVVPoWaVsuvnBN4gij+/wrj/l9RH4iVHNi1w4vM+F4nd2RHRQJQGNLftOGpKWs3MfY=
x-amz-request-id: C72TRQ2JC7C2HP04
Last-Modified: Fri, 25 Nov 2022 12:28:32 GMT
ETag: "87487ad255dde0624f59abb85602defc"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 502
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /css2?family=Inter:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 03:47:21 GMT
date: Fri, 02 Dec 2022 03:47:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /landings/276666/1669379309/images/icon-home.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/276666/1669379309/css/style.css?1669379309
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: GKC9yry3mWvVtuxi5v4sV1+xo3W7bMUMXlx/hWS4JCbjKEVUoNfYCeG18JL5rRPAhkyM+/ibBto=
x-amz-request-id: 4NMD5R54XMXSMTAV
Last-Modified: Fri, 25 Nov 2022 12:28:32 GMT
ETag: "02866968d59a649b76df83c300d2d8f6"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 889
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/icon-search.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/276666/1669379309/css/style.css?1669379309
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: 8ZQbkoU97r5U5MfCLmbeGj3rlfhEGrMl+U7EFVhoNXtBPj6YkcWRiMvSdaNfgOjvYBcHNcRiDrw=
x-amz-request-id: 4NM99PNSC312F93E
Last-Modified: Fri, 25 Nov 2022 12:28:32 GMT
ETag: "aa6ea58a389a3ebe541d5f9d622dedd7"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1189
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/icon-plus.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/276666/1669379309/css/style.css?1669379309
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: HreFubIueIhomt1V/Rzy7sDTXaVFutyZ+wLViZwUo4piLZro8SsY4tiubKCwVfma3Hrsj9D7Fwo=
x-amz-request-id: 2D3MZDVV0F2QCDMT
Last-Modified: Fri, 25 Nov 2022 12:28:32 GMT
ETag: "f89e15ef5cf4b32ca987f73bd4a2ef9d"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1117
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/icon-like.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/276666/1669379309/css/style.css?1669379309
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: PASNLFLRkoQMFf2YEcdY/GO/06D3RuKEFzS31QN5H15AVSGUHMFLSIcSmN7043Qu/k7iZbDWORA=
x-amz-request-id: C72QWK1J21EPX1GW
Last-Modified: Fri, 25 Nov 2022 12:28:32 GMT
ETag: "2457f6954df5056e25151bcdd05a2718"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 914
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
GET /landings/276666/1669379309/images/icon-user.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/276666/1669379309/css/style.css?1669379309
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/svg+xml
x-amz-id-2: QGahi98KF+/POSSRzDnFvfcFCJSO130vTrvLgvi9awdpxJal+Kl5xo+Y3GBFQP11fh8JyutMU4g=
x-amz-request-id: C72YM5Z7Y54XBT2Z
Last-Modified: Fri, 25 Nov 2022 12:28:32 GMT
ETag: "00aa56c530f0df6ddbb8805f25376920"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 844
Date: Fri, 02 Dec 2022 03:47:21 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
POST /ortb HTTP/1.1
Host: rngngm.lmpresivedate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 294
Origin: http://rngngm.lmpresivedate.com
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/c/da57dc555e50572d?s1=172555&s2=1572690&s3=ubt-tt&s5=backuser&click_id=qhgch635f7675000fa93a&iexpp=1&j1=1&AID_NAME=_AID_NAME_}&CAMPAIGN_ID=_CAMPAIGN_ID_&CAMPAIGN_NAME=_CAMPAIGN_NAME_&source=tiktok
Cookie: unique_id=63892e4700031b7a; unique_id2=638937a200026c71; 638937a200026c71_c=1; ref_token=15966_154911_1018_164680_99207_172555; 638937a200026c71_sl=[276666]
|
search
52.19.101.114
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Server: nginx
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Length: 13
Connection: keep-alive
|
GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1
Host: rngngm.lmpresivedate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/c/da57dc555e50572d?s1=172555&s2=1572690&s3=ubt-tt&s5=backuser&click_id=qhgch635f7675000fa93a&iexpp=1&j1=1&AID_NAME=_AID_NAME_}&CAMPAIGN_ID=_CAMPAIGN_ID_&CAMPAIGN_NAME=_CAMPAIGN_NAME_&source=tiktok
Cookie: unique_id=63892e4700031b7a; unique_id2=638937a200026c71; 638937a200026c71_c=1; ref_token=15966_154911_1018_164680_99207_172555; 638937a200026c71_sl=[276666]
|
search
52.19.101.114
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Fri, 02 Dec 2022 03:47:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 09 Dec 2022 03:47:21 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rngngm.lmpresivedate.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 01:47:01 GMT
expires: Mon, 27 Nov 2023 01:47:01 GMT
cache-control: public, max-age=31536000
age: 439220
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa0ZL7SUc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rngngm.lmpresivedate.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17076
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 05:27:30 GMT
expires: Fri, 01 Dec 2023 05:27:30 GMT
cache-control: public, max-age=31536000
age: 80392
last-modified: Mon, 11 Jul 2022 21:07:51 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /js/pushjs/1.0.0/utils.js HTTP/1.1
Host: rngngm.lmpresivedate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/c/da57dc555e50572d?s1=172555&s2=1572690&s3=ubt-tt&s5=backuser&click_id=qhgch635f7675000fa93a&iexpp=1&j1=1&AID_NAME=_AID_NAME_}&CAMPAIGN_ID=_CAMPAIGN_ID_&CAMPAIGN_NAME=_CAMPAIGN_NAME_&source=tiktok
Cookie: unique_id=63892e4700031b7a; unique_id2=638937a200026c71; 638937a200026c71_c=1; ref_token=15966_154911_1018_164680_99207_172555; 638937a200026c71_sl=[276666]
|
search
52.19.101.114
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Fri, 02 Dec 2022 03:47:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 09 Dec 2022 03:47:22 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
|
GET /landings/276666/1669379309/images/favicon.png?t=20221202034720 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 200 OK
Content-Type: image/png
x-amz-id-2: UVGBHSlbmpSbqaqmaowqkl4CIULZ9l+6YJJoc/gqIJBhItISlHdMvEQFZ9BUTF4ZyzgLMj3mbTA=
x-amz-request-id: DDXMF6Q16D2TSS82
Last-Modified: Fri, 25 Nov 2022 12:28:33 GMT
ETag: "40a54c3ecf143b64096b063ff793fdbb"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 4093
Date: Fri, 02 Dec 2022 03:47:22 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:47:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.35
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:48:07 GMT
expires: Fri, 01 Dec 2023 21:48:07 GMT
cache-control: public, max-age=31536000
age: 21555
last-modified: Thu, 10 May 2018 20:35:51 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.35
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 10:16:35 GMT
expires: Thu, 30 Nov 2023 10:16:35 GMT
cache-control: public, max-age=31536000
age: 149447
last-modified: Thu, 10 May 2018 20:35:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 03:11:15 GMT
cache-control: public,max-age=3600
age: 2167
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 5721
Cache-Control: max-age=111288
Date: Fri, 02 Dec 2022 03:47:22 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:42:10 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DDTuyXWH3jWggBYo0G4vpg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
34.215.94.42
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kfH9B0aVRHRBTCZroWqHBcFvs3g=
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15675
Expires: Fri, 02 Dec 2022 08:08:38 GMT
Date: Fri, 02 Dec 2022 03:47:23 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15675
Expires: Fri, 02 Dec 2022 08:08:38 GMT
Date: Fri, 02 Dec 2022 03:47:23 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15675
Expires: Fri, 02 Dec 2022 08:08:38 GMT
Date: Fri, 02 Dec 2022 03:47:23 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15675
Expires: Fri, 02 Dec 2022 08:08:38 GMT
Date: Fri, 02 Dec 2022 03:47:23 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15675
Expires: Fri, 02 Dec 2022 08:08:38 GMT
Date: Fri, 02 Dec 2022 03:47:23 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7334
x-amzn-requestid: a6b8b420-8394-496b-8be8-26dee52e3887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoHJOoAMF75g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0b38d07f518c8b3134457df2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 17nFm7AQdmRYS_af-EJ4XBVw8l3YudcphlpcZMveuVjvjhhYdkAQsw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:33:10 GMT
age: 18853
etag: "23753fe8af09ec8ffa10eed4d201a71833885c99"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:15:42 GMT
age: 73901
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 22356
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 3711
x-amzn-requestid: 68772438-16c4-40ab-a40e-860425d8301c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGyhHVsIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e76-21d27db6708228002e738938;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JOCSKxy4WUDbS22Gd9BlyN1gmcDsDNlNWnT57KITGlNwfOe_Iaco9g==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:59 GMT
age: 21504
etag: "6c56f4015305eff04a99cec9758cd40bf4e5f704"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:08:56 GMT
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
age: 20307
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 15495
x-amzn-requestid: 977cdbce-3a9c-4006-a5a1-5c4c82bd4a94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDIFxzIAMFzEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-4b2cb3a16ca745537a8caf8c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nwKxQKsw8g5zCzfMFu_XpOac5rhImez29TKrycGJzozZyHTzoCHASw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:20:06 GMT
age: 19637
etag: "f799dfd89a4f5a452dc837b8616549f578fb4184"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /landings/276666/1669379309/images/4.mp4 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://rngngm.lmpresivedate.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.101.11.40
HTTP/1.1 206 Partial Content
Content-Type: video/mp4
x-amz-id-2: 6mhXYTM8nvK5WTnF6LDWez/sARUE5tIpZ9N2ycVjo6+UjVZJ7reVZwP6qpilQRICNVZfNxCxaKc=
x-amz-request-id: B957B22WMJDJQ28M
Last-Modified: Fri, 25 Nov 2022 12:28:32 GMT
ETag: "7be5f3025f66769e720214f2fd221905"
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 02 Dec 2022 03:47:21 GMT
Content-Range: bytes 0-1264919/1264920
Content-Length: 1264920
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
--- Additional Info ---
|
3.64.163.50
104.21.74.156
185.107.56.197