resurantslooniters.com/4cb8f027-61be-4798-a678-bbe16ce485ac
18.196.84.70302 0 B URL HTTP/1.1 resurantslooniters.com/4cb8f027-61be-4798-a678-bbe16ce485ac
IP 18.196.84.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /4cb8f027-61be-4798-a678-bbe16ce485ac HTTP/1.1
Host: resurantslooniters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Tue, 20 Sep 2022 04:19:36 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Pragma: no-cache
Set-Cookie: 4cb8f027-61be-4798-a678-bbe16ce485ac-v4=_rAjdE5IE7k4hMhbJG6wm5VRh22lma_S81TjFm7BsB8; Max-Age=86400; Expires=Wed, 21-Sep-2022 04:19:36 GMT; Domain=resurantslooniters.com; Path=/; HttpOnly
cep-v4=T2YpHelAl5NgK6bvypV8BcE5URDt32bdIQJ-bvbyVQPsjetTxbcNyrd0ZI7G4BD-MMlev1qcrc1u8LgdP-H633dZGX6-0bbWUpOQVs7z99iywhM7kSoazSTaDdB5bu5tvCY9x1JkUdSlCcoQmhCD2quEfCfD7Ik81dQ4aSFo2_fQ5Zve1hmBZ8nvZPhkj67ro87s3PPFI-FU_6-tqXdqag4KuKPlnX3Gk4PmVaNYQF-krmEt5E8WX3BhsiKrmCF8r1lsNAcEoubMopqZvoeO3vp56pduhw5h_2NvGfVTWpFso9IdPXv_d3o6X5tZ3bMF9k3FlSFz-sqpRSxBv_mVm3aDSFQn9a6b59Vio7w1bAg; Max-Age=86400; Expires=Wed, 21-Sep-2022 04:19:36 GMT; Domain=resurantslooniters.com; Path=/; HttpOnly
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 04:13:04 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5qZhOjGSfpfkEzmXFlWN2UMHxSbXtzEky70KsLanEWJYJmZinhksSw==
Age: 392
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19995
Expires: Tue, 20 Sep 2022 09:52:51 GMT
Date: Tue, 20 Sep 2022 04:19:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 19 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PG3yQI8cW5Y_972LVVgxNOPwAoKEYtVWwp0A0udGjlsVnuE2sztfJg==
age: 85463
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 04:19:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 49ca68614c0179bd499f9eb6d166ea35
4b57d18d5fe7b61f88369050a49a54455392bd39
bdeb1ab8d854c042316ea734935df15cd46a370037e588988ba2743e8d120724
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 04:19:36 GMT
Last-Modified: Tue, 20 Sep 2022 03:38:56 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zzYSovrZQyZupSu7bJpDFmpzz_9Cus43q4qLIQ_4k-OrhW_SRsmd9w==
Age: 2441
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 04:03:22 GMT
Expires: Tue, 20 Sep 2022 04:40:01 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: U-2_HXiUCoxwvuQmU6cemhnlfY4efSZaABO-9eC0mm1obS065VOu5g==
Age: 974
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
52.216.249.44200 OK 25 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
IP 52.216.249.44:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (538)
Hash 8006ff8d24ed7f313ee2dd379f57a739
03c5317376110a694680bff4979ee46b5a13346d
94fce3d57a030cedc517b43cbde81aeac613ca157e685e8a6f06dc2a70b0a906
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
x-amz-id-2: RKBC7up/m9fy+MqOcUBVsuYMaWglZnEnvf46xmzQzaYc97Lh+EEJYCITjrxCyu+4NMdjn64LrtU=
x-amz-request-id: FZHB4C8XGKDSEW3S
Date: Tue, 20 Sep 2022 04:19:37 GMT
Last-Modified: Tue, 20 Sep 2022 02:43:33 GMT
ETag: "8006ff8d24ed7f313ee2dd379f57a739"
Accept-Ranges: bytes
Content-Type: text/html
Server: AmazonS3
Content-Length: 24714
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5c817aa82ca8ed4a4257fd1e1628b423
7905c62b6bbc582860c07b75eddae371a4b8d02b
dce1783ecfe50c83d30878b48d60e1cf3fe42a3fa4090fb5d318194de73e53d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 115
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 04:19:37 GMT
Last-Modified: Tue, 20 Sep 2022 04:17:43 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/jumostyle.css
52.216.249.44200 OK 17 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/jumostyle.css
IP 52.216.249.44:0
File type ASCII text, with CRLF line terminators
Hash 18127cec75a74233b98b2942e3b830b8
07e02aa77e8881a7cbae9a5789c8becceef564d5
3050ad75cdf446be35ba787aee330c09d8979dbfacc8dfbf6b92876ab6b9201f
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/jumostyle.css HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: qUyPaqPrjoB1GRmdVBml3b1Y1bPK5TQr8lLrPBlrmnoJC3AGFpWBIVdJ8dcRHZpr7bz7fG2dU1k=
x-amz-request-id: FZH7Z39EPP64N7DM
Date: Tue, 20 Sep 2022 04:19:37 GMT
Last-Modified: Tue, 20 Sep 2022 00:58:01 GMT
ETag: "18127cec75a74233b98b2942e3b830b8"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 16714
push.services.mozilla.com/
35.80.131.74101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.80.131.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v0B4pvHZsF2mXahpthNSjg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: telt63gnSZ1x00LprVX+LQPOi2c=
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/newmain.js
52.216.249.44200 OK 4.8 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/newmain.js
IP 52.216.249.44:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 970a516e7efa4aa016f3a8fb4e190ce5
20e0319a6f07c566e0f9645a5438ee698ca262f1
a6f0ce97777ffc04831041b2c01aea0a6814e1c245a5d06ec7c5c36f37b952d3
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/newmain.js HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: +RE+qPYTMM02qvBiXgaGr5WfLQeP8Ec/H+af2q6P0YwZMwSfAVnTGFeT8XKbQLXtGZHl1okp48M=
x-amz-request-id: 5PFEFBPNFS9XBMFE
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:58:07 GMT
ETag: "970a516e7efa4aa016f3a8fb4e190ce5"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 4754
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/jquery.min.js
52.216.249.44200 OK 86 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/jquery.min.js
IP 52.216.249.44:0
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/jquery.min.js HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: vs7hpvrZml8cs3iIJL/50mXyEAec/vT6vdg0esdEFfzZV4OTE1rQgwsRO9dPI5ckeQHenieHays=
x-amz-request-id: 5PFDR580KTMNM4JS
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:58:01 GMT
ETag: "2f6b11a7e914718e0290410e85366fe9"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 85578
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/6.jpg
52.216.249.44200 OK 2.2 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/6.jpg
IP 52.216.249.44:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 444a95e7661a07d48ae8a2b7d67792be
e31aa744a72a17d6a3e04cd0e6f9a9fc59a47b59
d815f00761793a93ef88b73ea6451d9300a052ce64f454d30f9446af3bd9ccda
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/6.jpg HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: vYg3UMPS6sN7UDZfsWpySLxZVzOokheIv1AIGvXAh9OZ4zOMW1cF9w3l0Kp+8O/xLCNV+Bu1oTs=
x-amz-request-id: 5PF53DD4F43Q167Q
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:50 GMT
ETag: "444a95e7661a07d48ae8a2b7d67792be"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2224
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/menu_2x.png
52.216.249.44200 OK 15 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/menu_2x.png
IP 52.216.249.44:0
File type PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 8714f78a15df3b8769c66518ad411404
4f1c074c4f7cd824c4e0a7a06a4f36838ec57bc7
c1d04143995e571804cca18baa14b05794545f77171d6697abde9ac432db57f1
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/menu_2x.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: 2vtNflV1rBBQkhBXcho1PRnvU50walI7Dsg9H/vUd6yws8bqjKkCbyZZo0J6kpPB+Xar18CCjpc=
x-amz-request-id: 5PF9G1KT9AXWEH6W
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:58:06 GMT
ETag: "8714f78a15df3b8769c66518ad411404"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 15194
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/4.jpg
52.216.249.44200 OK 3.0 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/4.jpg
IP 52.216.249.44:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 5f6bc62e6e66a94b4ce9b971a798ceff
05faaed9dbd1a5462485d4deeed888312a3b4973
cfa55f5831710c40e2429ec2528b080fb2e6b11b560abfa8eaa1710b63770af3
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/4.jpg HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: ql+qwMf5b80mJjmQKWgIzrfBSmZUhQ0sH6yMpkvMAmM1jtL0MaUMp88Ud0bKDzBogJPOVP1i9B8=
x-amz-request-id: 5PFE81KB9D799S8H
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:50 GMT
ETag: "5f6bc62e6e66a94b4ce9b971a798ceff"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2950
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/8.jpg
52.216.249.44200 OK 2.9 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/8.jpg
IP 52.216.249.44:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 4ccf612375cb7df45e271ecd2983281e
db4bc5414c30c39531e38c9a3f34b087cd68b4b6
75f237c0722d2dd3ef7d7e4bad43a70ac57bad90c81b9cb8b9c9b445c0a76a1b
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/8.jpg HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: lWrddB7jMXqRB89B6kr2xdKkiKlxsmqiIcXYn/Td2tiEa27baponXqdAp7aOBD90QUapQ7qFFtI=
x-amz-request-id: 5PF0WAA71V617AB2
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:52 GMT
ETag: "4ccf612375cb7df45e271ecd2983281e"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2853
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/7.jpg
52.216.249.44200 OK 2.8 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/7.jpg
IP 52.216.249.44:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 6063e3355d6e928b55810c359ee1d382
a6a19cb61b8a8f9ed538a6467a7a41ed85fc01ad
9db1c16bd8c27942b3d83cff9d81462ced2b7827ab45fe53ff3fcec32ed138d9
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/7.jpg HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: Gg0C/6yMXWrvK1rJrDNlXJJFyObtU/157FmBuu5fh57mH9qFxCt+YfMSSa7lUaTC406uADPergY=
x-amz-request-id: 5PF0F4QTQ3GV9Q6Z
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:51 GMT
ETag: "6063e3355d6e928b55810c359ee1d382"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2787
resurantslooniters.com/click
18.196.84.70400 Bad Request 152 B URL HTTP/2 resurantslooniters.com/click
IP 18.196.84.70:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash d9bacc468aa23334526933389545e120
e26288b4bada404ce340ca72989f9f1193dc649c
0605685efb44dd3decd77517436c575731b61f807247587de67080c579ffa2d4
Analyzer Verdict Alert fortinet Phishing
GET /click HTTP/1.1
Host: resurantslooniters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
server: nginx
date: Tue, 20 Sep 2022 04:19:37 GMT
content-type: text/html
content-length: 152
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
X-Firefox-Spdy: h2
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/clip_footer_3.png
52.216.249.44200 OK 2.5 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/clip_footer_3.png
IP 52.216.249.44:0
File type PNG image data, 52 x 59, 8-bit colormap, non-interlaced\012- data
Hash e1b626392882cc25b4d891afaa68afd4
454d7abdbc2548d04feb95436ea0ab4126b4f00b
ef3b8785199a0a640150a9d9ceb9b7cff2b118ee377ce36317d4a3e716bd944f
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/clip_footer_3.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: hdu4yiojq9iVGhBO6gkNRPGOdVaQ8eC7iqqORYH1iLX+nfQsHzLlfmqtYRU15J//QaissHkfj1o=
x-amz-request-id: 5PF4PH576M3M4Z29
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:55 GMT
ETag: "e1b626392882cc25b4d891afaa68afd4"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2460
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/commm.jpg
52.216.249.44200 OK 82 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/commm.jpg
IP 52.216.249.44:0
File type JPEG image data, JFIF standard 1.00, resolution (DPI), density 96x96, segment length 16, comment: "LEAD Technologies Inc. V1.01", baseline, precision 8, 1201x714, components 3\012- data
Hash 56f39f6b377ff9f4f57ee5c305123ff4
69f2ee78398ed5cac60c078d8379200730ad05f7
1ec47c6d1f1ca70270f1504c3d4066655750378ade8a7a89e530e44970375570
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/commm.jpg HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: sGSaoXM2v7edURSmyQs9FCoC9qHH1TY6qMa3ZssIAO6JWfRhQHeu71mF43guEtIUzflTbOXnfWA=
x-amz-request-id: 5PF95A7672MJ5T3R
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:58 GMT
ETag: "56f39f6b377ff9f4f57ee5c305123ff4"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 81652
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/comm2.jpg
52.216.249.44200 OK 121 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/comm2.jpg
IP 52.216.249.44:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2018 (Windows), datetime=2022:05:10 10:37:58], progressive, precision 8, 1080x1258, components 3\012- data
Size 121 kB (121415 bytes)
Hash 5e474c6e84e2212e0c830edc40e4c908
0d59a673b0753a363592c411c5da4646ed05b3f4
357bfeef4a223f1142957da30dfc785bf3d02ce41fe20f28c2cb423da9c82a1c
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/comm2.jpg HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: qcxbHxomDdangmfgeC1rPk8X6FJ2nDe72KNVOyGex2a4jWjE7JHIQ9QZJUEbjFnJcTsm1gmNSlE=
x-amz-request-id: 5PFEK8SAT3VE8HQK
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:56 GMT
ETag: "5e474c6e84e2212e0c830edc40e4c908"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 121415
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/notify_2x.png
52.216.249.44200 OK 15 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/notify_2x.png
IP 52.216.249.44:0
File type PNG image data, 56 x 46, 8-bit gray+alpha, non-interlaced\012- data
Hash 6c42a2267cbd1c2dd9f54843c8236c8a
8aaf90a56386598c3c603304a20b2e1be9ad0fdb
75ed54ca72cee1f79dace6bb70f9708b892417c26a1fdf8aaed3229cc5d79b83
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/notify_2x.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/jumostyle.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: 3Xb7jhEpUEaDOyk3AuWjq5DPUwRELEti1DaRlwBTE5fMDlQPCRSbmQ0cRosImY9mU9EbHgzJMcM=
x-amz-request-id: 5PF8JPD6TCXYRH1K
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:41 GMT
ETag: "6c42a2267cbd1c2dd9f54843c8236c8a"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 15196
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/gift.png
52.216.249.44200 OK 32 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/gift.png
IP 52.216.249.44:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash c562f63263ffff2688791c38014b36bc
59fe19592cb3f6a2709c418026f0a1ddb12c1314
c331ce815fcd0ed99bc592c082eed6e51efd0f107d2ae967021d0273def59ae8
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/gift.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: HXirHhjOz5HM5v0j4G7kgQjIMGpwHSXd9i0Uzklqfrl+akTMp+uB8h9DVts4qfi+Tw8CR5gJot0=
x-amz-request-id: 5PF0MHBT3NRN2PKH
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:58:00 GMT
ETag: "c562f63263ffff2688791c38014b36bc"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 32266
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/footer_right.png
52.216.249.44200 OK 19 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/footer_right.png
IP 52.216.249.44:0
File type PNG image data, 300 x 118, 8-bit/color RGBA, non-interlaced\012- data
Hash 6269d1ab501134b82c222d8a0ee8e7e0
aa9882644f1cee5a9d4667305659f177a8361eb0
cc5edb79e789204202959200acc81743f64cdb57543265c630270c3e2805c426
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/footer_right.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: xxC19YR7Ur0tZxwk6HJbhwYJkfMa0T1OYTeZSdBfeQCCk8KPH6eUHzzga0ScmGYa3uPd5+cmVmA=
x-amz-request-id: 5PFAEFSTM1H54FEG
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:59 GMT
ETag: "6269d1ab501134b82c222d8a0ee8e7e0"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 19167
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/spin_prize2.png
52.216.249.44200 OK 20 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/spin_prize2.png
IP 52.216.249.44:0
File type PNG image data, 142 x 173, 8-bit/color RGBA, non-interlaced\012- data
Hash 841b7dfad526a441082480272cec4d68
449f96d4797b6fce41dd7a528d37ef6a8915c963
a8d7a8a7438d524a0428090ed9b4a4524cd02b5df2afa35ffeafbe4526fc8be3
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/spin_prize2.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/jumostyle.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: UI6eIEs+/8lWRKX9jtPMI7EbMRFP+rjGHK4RKPiIpwwohH7BX+/F+LjIPxRJkbjaJdCRYENlaV0=
x-amz-request-id: 5PFFN3VN75HMZEX4
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:44 GMT
ETag: "841b7dfad526a441082480272cec4d68"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 20274
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/like_user_1.jpg
52.216.249.44200 OK 1.3 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/like_user_1.jpg
IP 52.216.249.44:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 2aa0d43e70d60d76ac4bdff139f8c7cb
d7e3433297ad90f5d99249aee29b645265c9f3eb
e7c85bfa7ba6d75dd0de72e51da2e185351ced82b32090ab35395766ef4849fa
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/like_user_1.jpg HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: 5PsOSLREkr1mGPUK9vPZ6Fudh0LPfGY2tShYap1nZpR5zRAI83QQf4cVm1fkUohm7rnxkd5ILik=
x-amz-request-id: 5PFF2RPBZ76PADAY
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:58:02 GMT
ETag: "2aa0d43e70d60d76ac4bdff139f8c7cb"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 1293
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/action_icons_20px_2x.png
52.216.249.44200 OK 1.7 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/action_icons_20px_2x.png
IP 52.216.249.44:0
File type PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data
Hash b699975b5fe73b087e711a33ff24ee1e
0e33cc5c32a5e7d18440751e3946076664caaf53
4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/action_icons_20px_2x.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/jumostyle.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: dSMZHtuj9po6OJ+HYdxBuM+rg7sBQiKz3CsM8HGvh+lYkhy5zdPesmtPeNVvjqBfS0rpPSyxZC4=
x-amz-request-id: 5PFANAVXSM0S8B15
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:53 GMT
ETag: "b699975b5fe73b087e711a33ff24ee1e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1726
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/like_user_2.jpg
52.216.249.44200 OK 1.2 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/like_user_2.jpg
IP 52.216.249.44:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash f9299c2023539a8f27a6e1b12ed260e5
046baf9bcd1bbdf9d51ca63e3899ea2e7f5de0b2
ba0c57dd9fbd100462ac62c8c8b3156caf1283d250fb56ee8ce5b0f53e575ccd
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/like_user_2.jpg HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: OYO3KnSOZDY/N/y6uAGf712PtwpUs469ETOqrSroblmhZfkuexzDmwFDUJ0KHWHJ7865syholKQ=
x-amz-request-id: 5PF0YJ9N6SNV6HK7
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:58:04 GMT
ETag: "f9299c2023539a8f27a6e1b12ed260e5"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 1216
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/1.jpg
52.216.249.44200 OK 2.5 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/1.jpg
IP 52.216.249.44:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash e69e56799051d24a67414a67301ac984
7d7db0281213342c25abf9e08937e38c7d1e8449
cff50b269e3afdcf620ba9a8f6d3ac55b03a953136f3148d1b3296798bf57210
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/1.jpg HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: Y+EbC7w0CT5W45TVRjqkh02LOp3P/dZdiLIYgtyvuXOPA+EAHvrMl1gPmu22UvH/8Gx7mkio3Ew=
x-amz-request-id: 5PFAX15AV8KTZ5FG
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:47 GMT
ETag: "e69e56799051d24a67414a67301ac984"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2506
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/pw_ix2.png
52.216.249.44200 OK 477 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/pw_ix2.png
IP 52.216.249.44:0
File type PNG image data, 1002 x 1002, 8-bit/color RGBA, non-interlaced\012- data
Size 477 kB (476687 bytes)
Hash e37d8818f4d2d2852dd51c63771f7d47
1d35c430720dbfbefde4b9400c1a08ee2317bf6b
d62a4f929a4d9774c3e3b62ce2b5341cda4d2ff3a2becbad154e515220bb7d4b
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/pw_ix2.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: kmQOJeEEICCLR9zIqIpoj7o2N432W4HG0wZGEVqYjMhOBvMdECWiE1D4M0to7Mpaakjuf9tp9AU=
x-amz-request-id: 5PFDXHKGKCYTE9N3
Date: Tue, 20 Sep 2022 04:19:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:43 GMT
ETag: "e37d8818f4d2d2852dd51c63771f7d47"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 476687
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/comment_action_2x.png
52.216.249.44200 OK 641 B URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/comment_action_2x.png
IP 52.216.249.44:0
File type PNG image data, 24 x 120, 8-bit colormap, non-interlaced\012- data
Hash e9b3872b3e63e19728176d45f0aa6986
b638f89d5d80c4cd65327da973c52f778e30bd55
a3f59e07404f1745bed88a314113a86da376526e7e1e555c99b3e249178c6ba5
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/comment_action_2x.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/jumostyle.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: zUPM8UpY8zcKH9y7qprzsLNM9CG/gVbTkNKGCfDl8g+70YZjdFsHrGwSkv3AQlBBk/A/6TLrPy4=
x-amz-request-id: 6VA964SQYVKTJ5V9
Date: Tue, 20 Sep 2022 04:19:39 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:57 GMT
ETag: "e9b3872b3e63e19728176d45f0aa6986"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 641
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/2.jpg
52.216.249.44200 OK 3.3 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/2.jpg
IP 52.216.249.44:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 49f1b40f2ed2ef127cb64293ae8b1524
7939aacf51d0ba9b4358cb17ef40eb91fa31e27b
c5e6dbfaac2e982618aa4ea88a1785ca965b57f3149551f194cdaae2d8406a53
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/2.jpg HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: o5hJbRaf48lX+JKPhrZChPFDrkK+HqtYluUwy4kNy7NDFcq6d/GBhwzf+NQx0S+Pq1gaMBLYQk4=
x-amz-request-id: 6VA8VGWPHZCBDAAQ
Date: Tue, 20 Sep 2022 04:19:39 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:48 GMT
ETag: "49f1b40f2ed2ef127cb64293ae8b1524"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 3301
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/3.jpg
52.216.249.44200 OK 3.2 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/3.jpg
IP 52.216.249.44:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash f8002e02aac0ac1bb22d2c80f36ebf15
bf277a8747caf561b91a25860e772cf0f1a834a5
0e98e32d27f59276dc137de153e32c28220a635701413565a4646dc8361fd94c
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/3.jpg HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: qnHM2vK5DrpYcYG45sjW6wPufixr6/Ooc6rutjwY4tlSWYNSaQNWP3Xyjdo2zafUVCNdGNAagTY=
x-amz-request-id: 6VA2KWKRJ3SXDXT9
Date: Tue, 20 Sep 2022 04:19:39 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:49 GMT
ETag: "f8002e02aac0ac1bb22d2c80f36ebf15"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 3175
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/loading.gif
52.216.249.44200 OK 5.1 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/loading.gif
IP 52.216.249.44:0
File type GIF image data, version 89a, 50 x 50\012- data
Hash f4f031edfb2f37765dab11b35eafd026
1901e655edaaf84a56454516189adfa72c1630a4
835f56bb96eb76384dc480bc6c866efb1980d4a36ad42fbc82e46d9167542050
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/loading.gif HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: oCrMzsS1+dkvNlHFwh9ppPBSlsrD5qeLHGeRGDOwf8WeETQovFluN9Ozr/LaHx4ovhkVp/hVMwY=
x-amz-request-id: 6VA7XC017D88PW6R
Date: Tue, 20 Sep 2022 04:19:39 GMT
Last-Modified: Tue, 20 Sep 2022 00:58:05 GMT
ETag: "f4f031edfb2f37765dab11b35eafd026"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 5139
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/airpods.png
52.216.249.44200 OK 9.3 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/airpods.png
IP 52.216.249.44:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 917a97957ac9d428393595a1b05645b3
00a7e1d8da03c739b57365157fff260f5cbc45a6
6e710d1f8fcc99de99ab516c4c9b699726b851e3dfe18c441d00a88e9d68ef55
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/airpods.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: +9ONcbpkvBCZTRZdhJ6aB59nvGfCoSguDcidH7xqkXxg7ZN//N9rgEEGwjl1xL86QLzO0yLkFwU=
x-amz-request-id: 6VA0JH80YCEHG96D
Date: Tue, 20 Sep 2022 04:19:39 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:54 GMT
ETag: "917a97957ac9d428393595a1b05645b3"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 9277
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/prize1.png
52.216.249.44200 OK 32 kB URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/prize1.png
IP 52.216.249.44:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash c562f63263ffff2688791c38014b36bc
59fe19592cb3f6a2709c418026f0a1ddb12c1314
c331ce815fcd0ed99bc592c082eed6e51efd0f107d2ae967021d0273def59ae8
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/prize1.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: U5Qv44UPgqpFw1meCUDuIEoWOF8K4CkozlgOaRTx39WJEYZh7kF6N3BJtR8nTFKMcTz01KjEMQ4=
x-amz-request-id: 6VAF594S0Q1RX524
Date: Tue, 20 Sep 2022 04:19:39 GMT
Last-Modified: Tue, 20 Sep 2022 00:57:41 GMT
ETag: "c562f63263ffff2688791c38014b36bc"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 32266
specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/notification.png
52.216.249.44200 OK 449 B URL HTTP/1.1 specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/notification.png
IP 52.216.249.44:0
File type PNG image data, 30 x 28, 8-bit colormap, non-interlaced\012- data
Hash bd5203f2cc9e7a9125e4575e029541b0
9fa565ab2f4b55da4735b79e529562252b3c9afe
db94c8ae725f947f20e12df29e6b6c8ade5ffcd5a7dc9ffd9be0351d963f826f
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sws/KW/resurants-looniters.com/clickstar/sweep/iphone/index_files/notification.png HTTP/1.1
Host: specialprizecloudfrontawstoday.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://specialprizecloudfrontawstoday.s3.amazonaws.com/sws/KW/resurants-looniters.com/clickstar/sweep/iphone/2index23.htm?cep=F7I30GKqqALfkEJ6bXyy40qe9aSAzmjg1LixGFuDy2c5oA0zcnvBkb-gQk7cAOqVAdXqG-Vp5ruQYnn57E2VrC6yGwTHJAmB55jX92w1lbAxQQzqa_b9ldoaR7Vity6afbkNKxbfjrxrChm30EIB-Z0VpOb43wj1Un5xUKqj1A1PLGrBQlGqjJVgV3OMmreLkUrXONy4H1doMDXuFRs7dBlebGy0D6nloIi0Waq7NpGQbJveoN5QKRw1HD424V8Fz5n6qBlimGLYteWmUB5cOKO54zU0le4K96Uv4eo97cNlnmQ--7X_zjUV7fxL-ZfyNhjIWaL4Etvhqx83AVJN2rqCHiK1tXX3qf-SWTnDZNk&lptoken=16b963f56408932c762e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: LbKoUuWUIJ8O50WLJhAnCkNH51sriG/VeHLFnOzycbKHuWrpibw0kxWW1l/7IkS0aSwG9RNYEj8=
x-amz-request-id: 6VAFTQ3JN93H661P
Date: Tue, 20 Sep 2022 04:19:39 GMT
Last-Modified: Tue, 20 Sep 2022 00:58:08 GMT
ETag: "bd5203f2cc9e7a9125e4575e029541b0"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 449
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3840
Expires: Tue, 20 Sep 2022 05:23:38 GMT
Date: Tue, 20 Sep 2022 04:19:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3840
Expires: Tue, 20 Sep 2022 05:23:38 GMT
Date: Tue, 20 Sep 2022 04:19:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3840
Expires: Tue, 20 Sep 2022 05:23:38 GMT
Date: Tue, 20 Sep 2022 04:19:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f4438521bfdc6871ae384abcb7da547
a17fc7a7c30999b8789011c2064f5a8704b00eee
2e40ac154724af625c4858b09b90fa3f6a600b70c9e5e959598f0cdb05a78847
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5402
x-amzn-requestid: 56e3a080-a8df-4385-ab3e-20e1f822083f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYvaLH1-IAMFbgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202c40-28f492196d5699066cb53d39;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:07:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KBsiDc6LmziklLtN8BUFv9QDsj7s9zEFhmtXtlIfBp_RKoBPpqOgfA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 02:54:48 GMT
age: 5090
etag: "a17fc7a7c30999b8789011c2064f5a8704b00eee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2788c069-e7f7-45ec-981b-55b4cbd2f6a7.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2788c069-e7f7-45ec-981b-55b4cbd2f6a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30ce8c6eca69c20d7c089ad7daee407e
284f63c895719f14e16f00553c04225144439405
05a5e38499ef572bdd92c5cff6c26209b928d75ecdd2780204b869a2725f61bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2788c069-e7f7-45ec-981b-55b4cbd2f6a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6832
x-amzn-requestid: 504798f8-c96f-4ce6-b32d-96ecbb9aced9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7gxEreoAMFyXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632572d1-5a97bf420a97a96b55aff1aa;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:10:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Wqf5m6YW9wvhXwLaDNgyAWA31tcF1XuE1kiTQLWrD30myZHPEt8aIg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 08:12:14 GMT
age: 72444
etag: "284f63c895719f14e16f00553c04225144439405"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cd69952-07d9-4c8f-bca7-42e656653eb2.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cd69952-07d9-4c8f-bca7-42e656653eb2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dabfd2d5fb3605aa709fdd2db0d20cd7
88fb16d3b1921de810e81d5c8f45292ac6e58468
d70b8b66fb0bef5e4230cc96178f42fa7eec641f832f6ee64bae0d44daeda322
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cd69952-07d9-4c8f-bca7-42e656653eb2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8191
x-amzn-requestid: 03da0b2b-078e-4565-b905-09e63b0eb65d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugIXFAroAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09b-1c6f93d3145908a321f59583;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:23 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fBe9POTGKqHYAm4U4rhZhgwgaoCo56479cNXNvBVJbd3ZKY3LoQJfA==
via: 1.1 442d080ad536f368b087d8fa4ff33ee6.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:49:12 GMT
age: 23426
etag: "88fb16d3b1921de810e81d5c8f45292ac6e58468"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49ffb7cd4c40b37f5b61c1fd86ee36ec
4188174bf6e595335f784d2bf9c90db57294b2fc
5af29dbb676f5a38288e73e9ca4feada901ccfb06385110ca0a46a4970532d32
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7358
x-amzn-requestid: 88cc5413-2f66-4dc6-b20d-57dd16e77e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugqUHZIoAMFd3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e175-7357c2251f4434bc4686f9ed;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tqQuwCb5au2yf-m5wbZyUdOh7VEnYzxCk19p2IlH0vHCFx9Lkhu6lw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:00:04 GMT
age: 22774
etag: "4188174bf6e595335f784d2bf9c90db57294b2fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb7ceffe-3c92-417f-bd64-15a9e9118a4a.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb7ceffe-3c92-417f-bd64-15a9e9118a4a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e8175cd370c35ad06cb2d009c3f7095
4f71cdda787ce98a58f2fe9ce8ba2e7ec7b150d2
649f5309448c163e4d379f02c4af8d9b6801935eea1939c61c010b7f76af1591
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb7ceffe-3c92-417f-bd64-15a9e9118a4a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2951
x-amzn-requestid: 087a36dd-984f-49d1-8a37-b357967e67ce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugIiH7KoAMF5uQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09c-38b316cc31454446524f7b01;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9Pa1_SEmH8wkgR6Ux-sHxEzAi2bOKP7LwW3GR6HsqX0Kfr8Bavvjxg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:07:05 GMT
age: 22353
etag: "4f71cdda787ce98a58f2fe9ce8ba2e7ec7b150d2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf62dac-1ffa-4daa-b23e-b3be303c9660.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf62dac-1ffa-4daa-b23e-b3be303c9660.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29f4a52fb629dce4ef8038d4df7ea58a
4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0
32cee35b22110b83738f49f49edb6efcedb54fe793d5ccc900004e16e3fefda3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf62dac-1ffa-4daa-b23e-b3be303c9660.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5827
x-amzn-requestid: 9a4bb6fa-13e5-4271-a5be-c551a570a5d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugoqHKbIAMF9WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e16a-53ccce5d5ab40afc1d0901af;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: KPBiONnlEEPs-Ut0o1SS6KF7nIY586K95dYz2aCqGgq8CxSjN9773A==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:00:28 GMT
age: 22750
etag: "4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2