r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4038
Expires: Fri, 27 Jan 2023 21:11:20 GMT
Date: Fri, 27 Jan 2023 20:04:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4041
Expires: Fri, 27 Jan 2023 21:11:23 GMT
Date: Fri, 27 Jan 2023 20:04:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 19:42:59 GMT
content-type: application/json
age: 1263
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11633
Expires: Fri, 27 Jan 2023 23:17:55 GMT
Date: Fri, 27 Jan 2023 20:04:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TIXSg4IujvLUZIs4V0nWMRnXEVB6IlhxuoFhpzSP03KJFPzMPTQcuuY0m9KBOh2B10qFnoS/5X021WYFjbaO6A==
x-amz-request-id: NJC9HM52T2CW1FYS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 19:49:32 GMT
age: 870
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/engsender4.html?city=Mountain%20View&model=Desktop&brand=Desktop&cep=UbLEJrAXAY9p61kzI-8fRpLpj9tpkW8bQYmuPWSeyOEeixfEzpHKaoUH9lAXxVd0cGfKn9BZfVbxx369IaLNu3RGOM7qVHYbWshBAHnrTmmXh1zGDcrq94W6osb8nEfbSVl2inKx6kL2wGhn4a8yq0a2DMhGcnVq2aqzzGGqqtUGXHveLNBOcpO7X2x8s9N2571aID1_XGfw_J6qODB4PBFO22MOZiGJ2Iq5v7m7Qep8SF5vKYUynFWGyFjkSvYofzucH6y5NEz4Lh4lWEr6SYl01rGRgHMgm4vWF24N_JRfmIWs_pFlwFFjiod94K_W7Ug46yGibuYj7JOFkCsTO_1Ner3DFb9hhTMe3FSseAqVQZ350y24pRanR77LhX68Tee30uu8zLjDKaENz9xESJ7zlXfYMuDUDZf0RGypFUo&lptoken=165d74f08563161d23e6
45.76.148.82301 Moved Permanently 960 B URL HTTP/1.1 64.winprizes664.monster/en1/engsender4.html?city=Mountain%20View&model=Desktop&brand=Desktop&cep=UbLEJrAXAY9p61kzI-8fRpLpj9tpkW8bQYmuPWSeyOEeixfEzpHKaoUH9lAXxVd0cGfKn9BZfVbxx369IaLNu3RGOM7qVHYbWshBAHnrTmmXh1zGDcrq94W6osb8nEfbSVl2inKx6kL2wGhn4a8yq0a2DMhGcnVq2aqzzGGqqtUGXHveLNBOcpO7X2x8s9N2571aID1_XGfw_J6qODB4PBFO22MOZiGJ2Iq5v7m7Qep8SF5vKYUynFWGyFjkSvYofzucH6y5NEz4Lh4lWEr6SYl01rGRgHMgm4vWF24N_JRfmIWs_pFlwFFjiod94K_W7Ug46yGibuYj7JOFkCsTO_1Ner3DFb9hhTMe3FSseAqVQZ350y24pRanR77LhX68Tee30uu8zLjDKaENz9xESJ7zlXfYMuDUDZf0RGypFUo&lptoken=165d74f08563161d23e6
IP 45.76.148.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (627)
Hash 59dd0b2891537533f78d62b1ce9efce0
e55b11aaa6ba75c849c37248a73898b5030a2359
77d155801eb14fe7a6a34e28bbb9b10f73fa9c533df4e182c4d2b7a2e480fa45
GET /en1/engsender4.html?city=Mountain%20View&model=Desktop&brand=Desktop&cep=UbLEJrAXAY9p61kzI-8fRpLpj9tpkW8bQYmuPWSeyOEeixfEzpHKaoUH9lAXxVd0cGfKn9BZfVbxx369IaLNu3RGOM7qVHYbWshBAHnrTmmXh1zGDcrq94W6osb8nEfbSVl2inKx6kL2wGhn4a8yq0a2DMhGcnVq2aqzzGGqqtUGXHveLNBOcpO7X2x8s9N2571aID1_XGfw_J6qODB4PBFO22MOZiGJ2Iq5v7m7Qep8SF5vKYUynFWGyFjkSvYofzucH6y5NEz4Lh4lWEr6SYl01rGRgHMgm4vWF24N_JRfmIWs_pFlwFFjiod94K_W7Ug46yGibuYj7JOFkCsTO_1Ner3DFb9hhTMe3FSseAqVQZ350y24pRanR77LhX68Tee30uu8zLjDKaENz9xESJ7zlXfYMuDUDZf0RGypFUo&lptoken=165d74f08563161d23e6 HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 27 Jan 2023 20:04:02 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 960
Connection: keep-alive
Location: https://64.winprizes664.monster/en1/engsender4.html?city=Mountain%20View&model=Desktop&brand=Desktop&cep=UbLEJrAXAY9p61kzI-8fRpLpj9tpkW8bQYmuPWSeyOEeixfEzpHKaoUH9lAXxVd0cGfKn9BZfVbxx369IaLNu3RGOM7qVHYbWshBAHnrTmmXh1zGDcrq94W6osb8nEfbSVl2inKx6kL2wGhn4a8yq0a2DMhGcnVq2aqzzGGqqtUGXHveLNBOcpO7X2x8s9N2571aID1_XGfw_J6qODB4PBFO22MOZiGJ2Iq5v7m7Qep8SF5vKYUynFWGyFjkSvYofzucH6y5NEz4Lh4lWEr6SYl01rGRgHMgm4vWF24N_JRfmIWs_pFlwFFjiod94K_W7Ug46yGibuYj7JOFkCsTO_1Ner3DFb9hhTMe3FSseAqVQZ350y24pRanR77LhX68Tee30uu8zLjDKaENz9xESJ7zlXfYMuDUDZf0RGypFUo&lptoken=165d74f08563161d23e6
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:02 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 19:49:03 GMT
age: 899
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17524
Expires: Sat, 28 Jan 2023 00:56:07 GMT
Date: Fri, 27 Jan 2023 20:04:03 GMT
Connection: keep-alive
push.services.mozilla.com/
54.148.77.40101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.77.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XDZLVrWVpnjv5DZ0bqpYZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dn7EoWkMtTBP4Ba9sZaaWOgGPvY=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 364480b14ca76af8f2016c1f8ab1a123
b155ff3301c2c940252dd9741a2ec52c4e3b110d
21140e98a6da7f0903106a0aac13e07a87c9f377b068b5e1671bd81af8202289
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21140E98A6DA7F0903106A0AAC13E07A87C9F377B068B5E1671BD81AF8202289"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5240
Expires: Fri, 27 Jan 2023 21:31:23 GMT
Date: Fri, 27 Jan 2023 20:04:03 GMT
Connection: keep-alive
push-sdk.net/f/sdk.js?z=781559
157.90.33.122200 OK 12 kB URL HTTP/2 push-sdk.net/f/sdk.js?z=781559
IP 157.90.33.122:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (45779), with no line terminators
Hash 0cdb6e2ddc9472b7d46c9f845467bdd7
39a9df9442212ef71daae13e243233a8774f7922
31b7923a470ad71990729546d60ac03bfc2bad68fffac3b540dd2003bbf15f22
GET /f/sdk.js?z=781559 HTTP/1.1
Host: push-sdk.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: application/javascript; charset=utf-8
content-length: 11733
content-encoding: gzip
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
push-sdk.net/event?z=781559
157.90.33.122200 OK 0 B URL HTTP/2 push-sdk.net/event?z=781559
IP 157.90.33.122:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event?z=781559 HTTP/1.1
Host: push-sdk.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 82
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-length: 0
access-control-allow-origin: null
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-CSRF-Token
access-control-expose-headers: Authorization
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
pragma: no-cache
expires: Tue, 11 Jan 1994 00:00:00 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash fbc689e17d6097d51bde604be7aba923
981e2376b7c65044e68c37c3230f26009bbcf701
9c70aeef462145d93eca1588305454638abefc90d5bacc603c64507b03e0c1f5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 20:04:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 07:28:20 GMT
Expires: Fri, 03 Feb 2023 07:28:19 GMT
Etag: "981e2376b7c65044e68c37c3230f26009bbcf701"
Cache-Control: max-age=558855,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790418633fe5b50f-OSL
uidsync.net/sync?user_id=Ofwx5sJ3FCq9f6K50ME85L
157.90.33.122204 No Content 0 B URL HTTP/2 uidsync.net/sync?user_id=Ofwx5sJ3FCq9f6K50ME85L
IP 157.90.33.122:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?user_id=Ofwx5sJ3FCq9f6K50ME85L HTTP/1.1
Host: uidsync.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Origin: https://64.winprizes664.monster
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
HTTP/2 204 No Content
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
access-control-allow-origin: https://64.winprizes664.monster
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-CSRF-Token
access-control-expose-headers: Authorization
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
pragma: no-cache
expires: Tue, 11 Jan 1994 00:00:00 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/ix-s.png
45.76.148.82200 OK 50 kB URL HTTP/2 64.winprizes664.monster/en1/images/ix-s.png
IP 45.76.148.82:0
File type PNG image data, 150 x 236, 8-bit/color RGBA, non-interlaced\012- data
Hash ad001dc709b9157087aca5c625eeb2ce
152a7d2adb91c6a3ff56e8aad051ebe0b6e5f64d
4c8c40e83d49b0c0d106730661f07688e7cb9a1ab4f8c0e82dade23c292d9a76
GET /en1/images/ix-s.png HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/png
content-length: 49481
last-modified: Wed, 14 Dec 2022 09:05:43 GMT
etag: "c149-5efc60a8bd0b3"
accept-ranges: bytes
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/pw_ix.png
45.76.148.82200 OK 86 kB URL HTTP/2 64.winprizes664.monster/en1/images/pw_ix.png
IP 45.76.148.82:0
File type PNG image data, 501 x 501, 8-bit/color RGBA, non-interlaced\012- data
Hash 118bf8883923de6a916087ffbbb7283c
506810fb5f8e562ed0b21874c1aa2eddb932813a
d19c709b63fd66d5fcecbfe7eebbff5b54b35d7d025482db6dae7d36fb6e57fb
GET /en1/images/pw_ix.png HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/png
content-length: 86455
last-modified: Wed, 14 Dec 2022 09:05:43 GMT
etag: "151b7-5efc60a943cf8"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash fbc689e17d6097d51bde604be7aba923
981e2376b7c65044e68c37c3230f26009bbcf701
9c70aeef462145d93eca1588305454638abefc90d5bacc603c64507b03e0c1f5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 20:04:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 07:28:20 GMT
Expires: Fri, 03 Feb 2023 07:28:19 GMT
Etag: "981e2376b7c65044e68c37c3230f26009bbcf701"
Cache-Control: max-age=558854,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790418633c521c02-OSL
64.winprizes664.monster/en1/images/like_user_1.jpg
45.76.148.82200 OK 1.3 kB URL HTTP/2 64.winprizes664.monster/en1/images/like_user_1.jpg
IP 45.76.148.82:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 2aa0d43e70d60d76ac4bdff139f8c7cb
d7e3433297ad90f5d99249aee29b645265c9f3eb
e7c85bfa7ba6d75dd0de72e51da2e185351ced82b32090ab35395766ef4849fa
GET /en1/images/like_user_1.jpg HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/jpeg
content-length: 1293
last-modified: Wed, 14 Dec 2022 09:05:43 GMT
etag: "50d-5efc60a8d8634"
accept-ranges: bytes
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/like_user_2.jpg
45.76.148.82200 OK 1.2 kB URL HTTP/2 64.winprizes664.monster/en1/images/like_user_2.jpg
IP 45.76.148.82:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash f9299c2023539a8f27a6e1b12ed260e5
046baf9bcd1bbdf9d51ca63e3899ea2e7f5de0b2
ba0c57dd9fbd100462ac62c8c8b3156caf1283d250fb56ee8ce5b0f53e575ccd
GET /en1/images/like_user_2.jpg HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/jpeg
content-length: 1216
last-modified: Wed, 14 Dec 2022 09:05:43 GMT
etag: "4c0-5efc60a8e5154"
accept-ranges: bytes
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/sg11.jpg
45.76.148.82200 OK 1.1 kB URL HTTP/2 64.winprizes664.monster/en1/images/sg11.jpg
IP 45.76.148.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash fa78334b7b3fe4595f525e6ba9c4466c
3809db7302dfd86f77f580a3f04069e3b459d6d1
10172c3d6c49df29fdbf01a893356400c83a2d2e1186b3c2aa7cd275cca4121e
GET /en1/images/sg11.jpg HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/jpeg
content-length: 1074
last-modified: Wed, 14 Dec 2022 09:05:43 GMT
etag: "432-5efc60a9536f8"
accept-ranges: bytes
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/sg12.jpg
45.76.148.82200 OK 1.3 kB URL HTTP/2 64.winprizes664.monster/en1/images/sg12.jpg
IP 45.76.148.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 910d65af4bfbfd8d93b5ec9335c2f63f
47ef95f6f57f2eaafbe71b9ff7d5f61428b07c8e
21c395e38bc58031ce293e2dd95b70b36707f8b363a17ca6a1f4c032d5dd95df
GET /en1/images/sg12.jpg HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/jpeg
content-length: 1297
last-modified: Wed, 14 Dec 2022 09:05:43 GMT
etag: "511-5efc60a96cd39"
accept-ranges: bytes
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/sg13.jpg
45.76.148.82200 OK 911 B URL HTTP/2 64.winprizes664.monster/en1/images/sg13.jpg
IP 45.76.148.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 7593f65c7649feccda82760104bd6433
9e7d622d491a382a0a3ea2a39e9dc4b9e285e906
78b47876633a6beeedd2d95ee4bb48ec0624a0832455505d2641aeac52d07e8b
GET /en1/images/sg13.jpg HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/jpeg
content-length: 911
last-modified: Wed, 14 Dec 2022 09:05:43 GMT
etag: "38f-5efc60a97a7fa"
accept-ranges: bytes
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/sg14.jpg
45.76.148.82200 OK 1.1 kB URL HTTP/2 64.winprizes664.monster/en1/images/sg14.jpg
IP 45.76.148.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 216a91126745ea4488ce4bdb68baa39b
940ecaf6f297fce00e3a5e024d9ced96138862f3
66d1866103a68881af9d09443df17f3f24160be26e87c6e1635b9215da2874ca
GET /en1/images/sg14.jpg HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/jpeg
content-length: 1130
last-modified: Wed, 14 Dec 2022 09:05:43 GMT
etag: "46a-5efc60a993e3a"
accept-ranges: bytes
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/sg16.jpg
45.76.148.82200 OK 1.1 kB URL HTTP/2 64.winprizes664.monster/en1/images/sg16.jpg
IP 45.76.148.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 718532c5e8543346a94704fcfc76893e
584403fec3d3f4934c891936ff0138febe451ab9
bbbf269b5f83cf696b4c9fdbead35483e58b5b95c5348c8d7c280eca984f1acd
GET /en1/images/sg16.jpg HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/jpeg
content-length: 1054
last-modified: Wed, 14 Dec 2022 09:05:44 GMT
etag: "41e-5efc60a9b8ffc"
accept-ranges: bytes
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/sg15.jpg
45.76.148.82200 OK 1.0 kB URL HTTP/2 64.winprizes664.monster/en1/images/sg15.jpg
IP 45.76.148.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 23c3abe0676521495de54fc5903095e7
66bd07b47cf4886685e34241e9096f736fae46c5
87cfa8a5c9b61d716c5b08d18f409852f90d5c6b1978c15bcb9d145c7d2755ce
GET /en1/images/sg15.jpg HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/jpeg
content-length: 1036
last-modified: Wed, 14 Dec 2022 09:05:43 GMT
etag: "40c-5efc60a9a289b"
accept-ranges: bytes
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/sg17.jpg
45.76.148.82200 OK 1.4 kB URL HTTP/2 64.winprizes664.monster/en1/images/sg17.jpg
IP 45.76.148.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 99c210db33a7db52c417c1a4bc19c361
51a56b4378519d86bd7cf97330d5db40e01e6213
caa81c4a5f49a16add5aa4437cefaa7b8ffdd537d2a60143e40c714c8835e69e
GET /en1/images/sg17.jpg HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/jpeg
content-length: 1359
last-modified: Wed, 14 Dec 2022 09:05:44 GMT
etag: "54f-5efc60a9cc87c"
accept-ranges: bytes
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/clip_footer_3.png
45.76.148.82200 OK 2.5 kB URL HTTP/2 64.winprizes664.monster/en1/images/clip_footer_3.png
IP 45.76.148.82:0
File type PNG image data, 52 x 59, 8-bit colormap, non-interlaced\012- data
Hash e1b626392882cc25b4d891afaa68afd4
454d7abdbc2548d04feb95436ea0ab4126b4f00b
ef3b8785199a0a640150a9d9ceb9b7cff2b118ee377ce36317d4a3e716bd944f
GET /en1/images/clip_footer_3.png HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/png
content-length: 2460
last-modified: Wed, 14 Dec 2022 09:05:42 GMT
etag: "99c-5efc60a856810"
accept-ranges: bytes
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/footer_right.png
45.76.148.82200 OK 4.9 kB URL HTTP/2 64.winprizes664.monster/en1/images/footer_right.png
IP 45.76.148.82:0
File type PNG image data, 168 x 66, 8-bit colormap, non-interlaced\012- data
Hash 0e786b7344ac0b63609290a3a415fc4f
c2e77827e895aaa13522f1c5c0ef79d4caef0bb2
f044237e4439b415a4947127f26fb14b4d32cf1d32ff51fd8f0ff4d21d2692e5
GET /en1/images/footer_right.png HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/png
content-length: 4919
last-modified: Wed, 14 Dec 2022 09:05:42 GMT
etag: "1337-5efc60a887551"
accept-ranges: bytes
X-Firefox-Spdy: h2
uidsync.net/sync?user_id=Ofwx5sJ3FCq9f6K50ME85L
157.90.33.122200 OK 62 B URL HTTP/2 uidsync.net/sync?user_id=Ofwx5sJ3FCq9f6K50ME85L
IP 157.90.33.122:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash 8844e6bde0dfcfc6991808d4f0b54d50
753c2b31180fcab55ed9f7b76048e141f3074940
8ac1642879028e77b6ff5615f9dd3c3488c9135c9b4b8d1eea56fe5da1332ce6
GET /sync?user_id=Ofwx5sJ3FCq9f6K50ME85L HTTP/1.1
Host: uidsync.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://64.winprizes664.monster
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:04 GMT
content-type: application/json; charset=utf-8
content-length: 62
access-control-allow-origin: https://64.winprizes664.monster
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-CSRF-Token
access-control-expose-headers: Authorization
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
pragma: no-cache
expires: Tue, 11 Jan 1994 00:00:00 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
set-cookie: rauid=Ofwx5sJ3FCq9f6K50ME85L; expires=Sat, 27 Jan 2024 20:04:04 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/images/ix-g.png
45.76.148.82200 OK 46 kB URL HTTP/2 64.winprizes664.monster/en1/images/ix-g.png
IP 45.76.148.82:0
File type PNG image data, 150 x 236, 8-bit/color RGBA, non-interlaced\012- data
Hash e9e9eabd23b0d1a50684dbf423150db2
2ad653b70ecb4da11284d34a19d31fb5c0d601de
6dfef9d6d6b668e5d8f7750e61a2b9ef00458d4a8cb887735a427dde2c6a9304
GET /en1/images/ix-g.png HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: image/png
content-length: 45819
last-modified: Wed, 14 Dec 2022 09:05:43 GMT
etag: "b2fb-5efc60a8b24d3"
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13206
Expires: Fri, 27 Jan 2023 23:44:10 GMT
Date: Fri, 27 Jan 2023 20:04:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13206
Expires: Fri, 27 Jan 2023 23:44:10 GMT
Date: Fri, 27 Jan 2023 20:04:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13206
Expires: Fri, 27 Jan 2023 23:44:10 GMT
Date: Fri, 27 Jan 2023 20:04:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f62e9b7bdca82d18c945851912d8fea8
a7ca44d337c43bc5c6145b26778661c71cc50484
5da02cc405c1cada55813ffe376844375f1d6ad222cbb63405348b1f5132a0b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9595
x-amzn-requestid: c257bfbe-1bd7-4540-bbfa-e4c49a2624a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXwfGigoAMFvBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a002-226c08656eeefbfa3c2dddb6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k9njnQmggD7UkVJzZqSzo90HJJjTjGK0QIoPU0HWYKrSstjM6s1rOw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:57:18 GMT
age: 79606
etag: "a7ca44d337c43bc5c6145b26778661c71cc50484"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 869cdfba2637cc932ce387317a3c485e
51d87a5223d87c959bf27b2a825dce0a28f52ada
6dc4247dd3110836195f9962463bd8265be89633e9e589bf19955991751c26fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5669
x-amzn-requestid: 17f6235c-d495-4813-9453-407331e0dcad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1ZSH4fIAMFxeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c3b-67ff5c7f416727670e7c3b21;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uBZkutqH9dy9U8-_i3LISu9nYOtCTP8YtgxvgZVywkDx7bRzLjqUhw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 04:27:02 GMT
age: 56222
etag: "51d87a5223d87c959bf27b2a825dce0a28f52ada"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 79b70f1f-a157-4dd4-8743-825714195b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9T3UGA3oAMFSlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c86695-36e60aba09c152c73b8aefcb;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 21:37:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zt4bgV2C6Wb_Ufa5mZ7-UDTfCvhXJggPJw9668v5DEmyBnWZ-aNrCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 23:01:22 GMT
age: 75762
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MeE0Qrn_yZvUApGQTbOKQ14Z2ipPLbPFPyVqkKTk0Bs7ETn0UU6yMg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:48:43 GMT
age: 80121
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lkM4qVkPHqOdWwmxP2ShOgbbR6fjFtWmdavpgPyn7SQDkuggfHad7g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 12:26:22 GMT
age: 27462
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71e9b44e-6d59-411b-90e8-54e0efae62a5.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71e9b44e-6d59-411b-90e8-54e0efae62a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41fd0074a6ce752b1271302feade4cee
6311d1365504f06cb7516606c56c502d553c9d16
544c508899fe8855b0975a87cb0bf35663ab4ad0ec8fd057b3962d50cc001b8c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71e9b44e-6d59-411b-90e8-54e0efae62a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7365
x-amzn-requestid: c2a8ae3d-47f8-415f-bf08-78dd12ede3d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYRwEUbIAMFnag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0d7-38f72fec78120cf113c7a4f7;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w2YQTruAWzbdhCWhHu5V1Wj0DlkD6-BsEwgjtR9RJqqmStbW8mPS9w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:51:32 GMT
age: 79952
etag: "6311d1365504f06cb7516606c56c502d553c9d16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/action_icons_20px_2x.png
45.76.148.82404 Not Found 0 B URL HTTP/2 64.winprizes664.monster/en1/action_icons_20px_2x.png
IP 45.76.148.82:0
GET /en1/action_icons_20px_2x.png HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/comment_action_2x.png
45.76.148.82404 Not Found 0 B URL HTTP/2 64.winprizes664.monster/en1/comment_action_2x.png
IP 45.76.148.82:0
GET /en1/comment_action_2x.png HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/notify_2x.png
45.76.148.82404 Not Found 0 B URL HTTP/2 64.winprizes664.monster/en1/notify_2x.png
IP 45.76.148.82:0
GET /en1/notify_2x.png HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/engsender4.html?city=Mountain%20View&model=Desktop&brand=Desktop&cep=UbLEJrAXAY9p61kzI-8fRpLpj9tpkW8bQYmuPWSeyOEeixfEzpHKaoUH9lAXxVd0cGfKn9BZfVbxx369IaLNu3RGOM7qVHYbWshBAHnrTmmXh1zGDcrq94W6osb8nEfbSVl2inKx6kL2wGhn4a8yq0a2DMhGcnVq2aqzzGGqqtUGXHveLNBOcpO7X2x8s9N2571aID1_XGfw_J6qODB4PBFO22MOZiGJ2Iq5v7m7Qep8SF5vKYUynFWGyFjkSvYofzucH6y5NEz4Lh4lWEr6SYl01rGRgHMgm4vWF24N_JRfmIWs_pFlwFFjiod94K_W7Ug46yGibuYj7JOFkCsTO_1Ner3DFb9hhTMe3FSseAqVQZ350y24pRanR77LhX68Tee30uu8zLjDKaENz9xESJ7zlXfYMuDUDZf0RGypFUo&lptoken=165d74f08563161d23e6
45.76.148.82200 OK 0 B URL HTTP/2 64.winprizes664.monster/en1/engsender4.html?city=Mountain%20View&model=Desktop&brand=Desktop&cep=UbLEJrAXAY9p61kzI-8fRpLpj9tpkW8bQYmuPWSeyOEeixfEzpHKaoUH9lAXxVd0cGfKn9BZfVbxx369IaLNu3RGOM7qVHYbWshBAHnrTmmXh1zGDcrq94W6osb8nEfbSVl2inKx6kL2wGhn4a8yq0a2DMhGcnVq2aqzzGGqqtUGXHveLNBOcpO7X2x8s9N2571aID1_XGfw_J6qODB4PBFO22MOZiGJ2Iq5v7m7Qep8SF5vKYUynFWGyFjkSvYofzucH6y5NEz4Lh4lWEr6SYl01rGRgHMgm4vWF24N_JRfmIWs_pFlwFFjiod94K_W7Ug46yGibuYj7JOFkCsTO_1Ner3DFb9hhTMe3FSseAqVQZ350y24pRanR77LhX68Tee30uu8zLjDKaENz9xESJ7zlXfYMuDUDZf0RGypFUo&lptoken=165d74f08563161d23e6
IP 45.76.148.82:0
GET /en1/engsender4.html?city=Mountain%20View&model=Desktop&brand=Desktop&cep=UbLEJrAXAY9p61kzI-8fRpLpj9tpkW8bQYmuPWSeyOEeixfEzpHKaoUH9lAXxVd0cGfKn9BZfVbxx369IaLNu3RGOM7qVHYbWshBAHnrTmmXh1zGDcrq94W6osb8nEfbSVl2inKx6kL2wGhn4a8yq0a2DMhGcnVq2aqzzGGqqtUGXHveLNBOcpO7X2x8s9N2571aID1_XGfw_J6qODB4PBFO22MOZiGJ2Iq5v7m7Qep8SF5vKYUynFWGyFjkSvYofzucH6y5NEz4Lh4lWEr6SYl01rGRgHMgm4vWF24N_JRfmIWs_pFlwFFjiod94K_W7Ug46yGibuYj7JOFkCsTO_1Ner3DFb9hhTMe3FSseAqVQZ350y24pRanR77LhX68Tee30uu8zLjDKaENz9xESJ7zlXfYMuDUDZf0RGypFUo&lptoken=165d74f08563161d23e6 HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Wed, 14 Dec 2022 09:08:12 GMT
etag: W/"6400-5efc61370048c"
content-encoding: br
X-Firefox-Spdy: h2
64.winprizes664.monster/favicon.ico
45.76.148.82404 Not Found 0 B URL HTTP/2 64.winprizes664.monster/favicon.ico
IP 45.76.148.82:0
GET /favicon.ico HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 27 Jan 2023 20:04:04 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/spin_prize2.png
45.76.148.82404 Not Found 0 B URL HTTP/2 64.winprizes664.monster/en1/spin_prize2.png
IP 45.76.148.82:0
GET /en1/spin_prize2.png HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
64.winprizes664.monster/en1/menu_2x.png
45.76.148.82404 Not Found 0 B URL HTTP/2 64.winprizes664.monster/en1/menu_2x.png
IP 45.76.148.82:0
GET /en1/menu_2x.png HTTP/1.1
Host: 64.winprizes664.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 27 Jan 2023 20:04:03 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2