myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
54.230.111.71200 OK 3.9 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
IP 54.230.111.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1226)
Hash 9bd6705ea123fb9acf5a44489c6fe2d4
e8a702749efb36fb638eff93c85e8e7072e12f17
2207bfee0d4c399b521295f0536c3c9183283a934dd035cdba5abd78bff454d3
GET /1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043 HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 01 Apr 2023 05:14:47 GMT
ETag: W/"4a4bf442ad8fb0eff2846a63b32f8fc2"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: p__Dk-ySu_sNpTeFuYXs7FQ52EhjjUE_niNDqLbFIDy4pyzokq1QLQ==
Age: 37604
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3c6ad41618caef9613685a8f786def7
ce6e1256460e0d28da63f797e14a77c1477d0779
ce87c093a66e4a2adfba7794f5db0428a0986b7e74690b773cbd7708ccca3f0e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE87C093A66E4A2ADFBA7794F5DB0428A0986B7E74690B773CBD7708CCCA3F0E"
Last-Modified: Sat, 01 Apr 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13368
Expires: Sat, 01 Apr 2023 19:24:18 GMT
Date: Sat, 01 Apr 2023 15:41:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 035772439731bbe3992c865f68e4b977
53fe2d0f678772b6b3e935aaca4d1ef82767e48f
9880ae6537e30af38e8d7ed612a5a44a54037d86686c63ef7eeebcc62cbda05f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9880AE6537E30AF38E8D7ED612A5A44A54037D86686C63EF7EEEBCC62CBDA05F"
Last-Modified: Sat, 01 Apr 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19902
Expires: Sat, 01 Apr 2023 21:13:12 GMT
Date: Sat, 01 Apr 2023 15:41:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a57eb49c1ac36edd2db6573eb357bd87
592724177530a39ce4af02874beb776b91fefbbe
0dd258adc062ad2b6f5ce8fec0457e55e594c942817f37509ca2d1f2e8152edf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0DD258ADC062AD2B6F5CE8FEC0457E55E594C942817F37509CA2D1F2E8152EDF"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3359
Expires: Sat, 01 Apr 2023 16:37:29 GMT
Date: Sat, 01 Apr 2023 15:41:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Alert, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 01 Apr 2023 15:28:29 GMT
content-type: application/json
age: 781
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vIhIopAEWkImVmaMbzhYQ0Tb2bdT5yxHOOArS7K80ymsIKNYliXGm0D7xxAyqM3tCJP8vO5/rKp6Pj27J+1r0A==
x-amz-request-id: Q1F029BHRJK2Y1QN
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Apr 2023 15:03:47 GMT
age: 2263
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
myrealgift.xyz/1/prizewheel/cash/pkcash/css/app.css?id=c588c17324f2be0e0ec9
54.230.111.71200 OK 33 B URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/css/app.css?id=c588c17324f2be0e0ec9
IP 54.230.111.71:0
File type ASCII text, with no line terminators
Hash c588c17324f2be0e0ec90a18f39e7d7c
69d360eddd15f527aac7f7e610346517732b7770
b83e8830b6b2f1253a78f90191cf1087e8fd7638831fd4c1376a7a6029297240
GET /1/prizewheel/cash/pkcash/css/app.css?id=c588c17324f2be0e0ec9 HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 33
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "c588c17324f2be0e0ec90a18f39e7d7c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NhygegPrCUStkTEXSG3jxDW_VkZ7cYdYjP8dM0M7EitndFzJ3z8kaw==
Age: 32504
myrealgift.xyz/1/prizewheel/cash/pkcash/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444
54.230.111.71200 OK 1.1 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444
IP 54.230.111.71:0
File type ASCII text, with very long lines (3495), with no line terminators
Hash 6dc8fd37ec67396c913ac5398f090faa
fd106bd51f08ab54b5b889a98fd0b30b44c0bd89
048c06fe0da63797dea415fa989f71e221665b4926e9567691a3615838d4dd24
GET /1/prizewheel/cash/pkcash/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444 HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: W/"cd41123a11e97e0f2444b57d180631a0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: aH6tDPcsRTBOhvP1YqRisRvGndnZXdjd5TSmVBSJRG1nSz-tf3c7Uw==
Age: 38131
myrealgift.xyz/1/prizewheel/cash/pkcash/img/prizes/iphone-12-pro-max/default@0.5x.png
54.230.111.71200 OK 20 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/prizes/iphone-12-pro-max/default@0.5x.png
IP 54.230.111.71:0
File type PNG image data, 250 x 179, 8-bit colormap, non-interlaced\012- data
Hash a22b55e7567839da1aa70c8e233735ff
546cc5508387c5cd52da05ad42823508828619fa
4a456c28bfb2c64e9ae64a97e0fb8ed70a18dfeee3bab7085f7d0e9f40d33e1e
GET /1/prizewheel/cash/pkcash/img/prizes/iphone-12-pro-max/default@0.5x.png HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 19696
Connection: keep-alive
Date: Fri, 31 Mar 2023 19:07:15 GMT
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
ETag: "a22b55e7567839da1aa70c8e233735ff"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XpOE7y05y55ixojxWqXbirHiA_2klK-29mSeOMIT5AEjTtMq-64-bg==
Age: 74056
myrealgift.xyz/1/prizewheel/cash/pkcash/js/landers/prizewheel-fb/app.js?id=c3c399d8b44b50eee3e6
54.230.111.71200 OK 53 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/js/landers/prizewheel-fb/app.js?id=c3c399d8b44b50eee3e6
IP 54.230.111.71:0
File type ASCII text, with very long lines (65475)
Hash 943ce5b62d336574b33301487ddd89c7
9815a15e32f04d43b737494545bd170df0c08e9d
90b12262692c24f4a5262426329d95958e586804c97a1617a92aee0b7ad0d4d6
GET /1/prizewheel/cash/pkcash/js/landers/prizewheel-fb/app.js?id=c3c399d8b44b50eee3e6 HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: W/"cdf97653c213f02233f50a1ec975633c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YHF9ZBUxNknE4fFRdVrtkiOfonIAofs4T-EVgIV0dex6WHrOYsYxNA==
Age: 7020
myrealgift.xyz/1/prizewheel/cash/pkcash/js/app.js?id=15b1bae461854d516179
54.230.111.71200 OK 977 B URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/js/app.js?id=15b1bae461854d516179
IP 54.230.111.71:0
File type ASCII text, with very long lines (977), with no line terminators
Hash 15b1bae461854d516179a34a8c9b5f08
330c1d191253fe07c5fe6b5af37872408f2e5904
1bd25e467ea078265aee433e0cf9732a7e127514304634590a2de17fb2330896
Analyzer Verdict Alert fortinet Phishing
GET /1/prizewheel/cash/pkcash/js/app.js?id=15b1bae461854d516179 HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 977
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "15b1bae461854d516179a34a8c9b5f08"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dHMEwR8LghCHNIQFPONAHZco5AgrqcUD0Xq_ZMO6q5f0tZ0kz8m7qA==
Age: 44802
myrealgift.xyz/1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/prizewheel_spinner.jpg
54.230.111.71200 OK 32 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/prizewheel_spinner.jpg
IP 54.230.111.71:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1002x1002, components 3\012- data
Hash d4655cba21d806e849eed4e4119fbe1a
6453039d85005643e9d65074ca022f63b5d47cdd
90f2363aaebaf03f06fb20c6c02fb2e97497d7cd54b611281303ce7e10335ee7
GET /1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/prizewheel_spinner.jpg HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 32496
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "d4655cba21d806e849eed4e4119fbe1a"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PCWKx6j_Lx3vSVolgFaaVHxsVZNwfP-GHEjIQO5ZToNHJPexoVZ6Tw==
Age: 45299
myrealgift.xyz/1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/loader.gif
54.230.111.71200 OK 5.1 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/loader.gif
IP 54.230.111.71:0
File type GIF image data, version 89a, 50 x 50\012- data
Hash ed786659a534e0d183c09a90c50abc9d
a6c3d90bfaa86a7cda490bc5d04c8939c31a414e
cbaeb154dcb93bff5f6e382cede5d51a11175a2295e56bb2790611910280ba97
GET /1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/loader.gif HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 5083
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "ed786659a534e0d183c09a90c50abc9d"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wkTdb9JZI5qg3fXXzM6Y9c5ZzYU2L-3jwlZZNed3m9D9_RazZwtwEg==
Age: 31853
myrealgift.xyz/1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/notification.png
54.230.111.71200 OK 449 B URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/notification.png
IP 54.230.111.71:0
File type PNG image data, 30 x 28, 8-bit colormap, non-interlaced\012- data
Hash bd5203f2cc9e7a9125e4575e029541b0
9fa565ab2f4b55da4735b79e529562252b3c9afe
db94c8ae725f947f20e12df29e6b6c8ade5ffcd5a7dc9ffd9be0351d963f826f
GET /1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/notification.png HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 449
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "bd5203f2cc9e7a9125e4575e029541b0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: a1U23NCa66mqNl5A-J7EO4uZkP98iC-hZ1ZjkO0TFy6_F71U8SqZqQ==
Age: 17200
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 01 Apr 2023 15:41:30 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
myrealgift.xyz/1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/prizewheel_static.png
54.230.111.71200 OK 3.4 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/prizewheel_static.png
IP 54.230.111.71:0
File type PNG image data, 1002 x 1002, 4-bit colormap, non-interlaced\012- data
Hash dc484e0043b5ff6191b1880c8779863c
a5b67e3dff3dea3940eed090431aecbb36611b1d
30bc059973d84a6e1d22d16747bce062025561f2555cdd9cec012a87866abcb6
GET /1/prizewheel/cash/pkcash/img/landers/prizewheel-fb/prizewheel_static.png HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3370
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "dc484e0043b5ff6191b1880c8779863c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: L5uJpwQCKO2yH2ZAxAiqx_JNr5h6C9YEfw_jMsqap2scwoAat0zH4Q==
Age: 45280
myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/male/3@0.25x.jpg
54.230.111.71200 OK 2.8 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/male/3@0.25x.jpg
IP 54.230.111.71:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 128x128, components 3\012- data
Hash e0e1c71521e196029de3a477f55555b4
9c63de173f03a5164b5741ff40a5aeaec7f73faa
f93563cee3c44cfbab3d4750427af8f1aa7318ecc7d15e51cdb5e621108e77d8
GET /1/prizewheel/cash/pkcash/img/profiles/african/male/3@0.25x.jpg HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2805
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "e0e1c71521e196029de3a477f55555b4"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Holaw5BsRbXYYge5P9lmyLTvRQQwnciy-cZ6BkWYAKlzHD9Gdx79MA==
Age: 50507
myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/male/10@0.25x.jpg
54.230.111.71200 OK 3.4 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/male/10@0.25x.jpg
IP 54.230.111.71:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 128x128, components 3\012- data
Hash d9a8df3e21aba705922061a07fabdbf1
748584e3c7c4e7f7f025ce4155644c32691cb5ba
ff80ac3bc5088101cb352d27ed48a576fa3e12832b0f2166dbe6dbf39a60b51a
GET /1/prizewheel/cash/pkcash/img/profiles/african/male/10@0.25x.jpg HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 3446
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "d9a8df3e21aba705922061a07fabdbf1"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SulWYCa8DMS3HVl2LLcknr_ptrDYonOqVrv1PzX2aMTDAAl6wCQyiQ==
Age: 23575
myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/male/9@0.25x.jpg
54.230.111.71200 OK 3.5 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/male/9@0.25x.jpg
IP 54.230.111.71:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 128x128, components 3\012- data
Hash e752003f7fd0dd89677e743dd77f980d
1b0454ff2be96603c38f177537bff8712935def4
c1b0af1a82b85d851c7ede45f2b1cb711583d061917dc47f94ce75c9273ddef8
GET /1/prizewheel/cash/pkcash/img/profiles/african/male/9@0.25x.jpg HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 3516
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "e752003f7fd0dd89677e743dd77f980d"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YBRIb3V5fxYZ51uhTL1hmAFmE2dG828gfV1AOSAQ8i6vI0SbS1T9Gg==
Age: 34263
myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/female/3@0.25x.jpg
54.230.111.71200 OK 2.5 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/female/3@0.25x.jpg
IP 54.230.111.71:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 128x128, components 3\012- data
Hash 719db1f4103dae5cdce3f5e515b6f8d0
b66fb13eb815275dc542df93a43ec25871bfe86c
b6f5528c58b4e3dfa5fd5bbddbca64dc2014364337e4f6c7c9c4036d1788de6f
GET /1/prizewheel/cash/pkcash/img/profiles/african/female/3@0.25x.jpg HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2454
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "719db1f4103dae5cdce3f5e515b6f8d0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZKzCdDEbS30eVjn2AXJcABNvvQfHik-IgSxd6QZ_5dw-8gcnGVrB5g==
Age: 28225
myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/female/6@0.25x.jpg
54.230.111.71200 OK 3.0 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/female/6@0.25x.jpg
IP 54.230.111.71:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 128x128, components 3\012- data
Hash 0a2602e52bf858f58f7055d2d767c197
8536f15ffd401c61a976434953360cfc29ffb47e
46a818cc00663ce201b8fad257181de21d0200d47aefe6ec7b97123aacf6c3d5
GET /1/prizewheel/cash/pkcash/img/profiles/african/female/6@0.25x.jpg HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 3020
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "0a2602e52bf858f58f7055d2d767c197"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DYHz7e6-vStFR_oL2eT9EuwibFR8Ewb-nw_tH9Mu14cUbUSvqhCJMw==
Age: 35666
myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/male/2@0.25x.jpg
54.230.111.71200 OK 2.8 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/male/2@0.25x.jpg
IP 54.230.111.71:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 128x128, components 3\012- data
Hash 3a03d0953111d0bab8bb000d914ae9f5
935bac7ce117c9fe16a6a6a44c4b83dc442d0a39
810516dd8de28de198b9005d8c3a19f61841a18655046fdce8aea22ce0ba2950
GET /1/prizewheel/cash/pkcash/img/profiles/african/male/2@0.25x.jpg HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2800
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "3a03d0953111d0bab8bb000d914ae9f5"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fi-3u6k9-Fid8DX5yh0jqS2VCzA3yNzPlCHkMHbj_oaR0ir3tl9bTA==
Age: 27631
myrealgift.xyz/1/prizewheel/cash/pkcash/img/prizes/iphone-12-pro-max/proof.jpg
54.230.111.71200 OK 75 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/prizes/iphone-12-pro-max/proof.jpg
IP 54.230.111.71:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=353, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=528], progressive, precision 8, 500x329, components 3\012- data
Hash 1939dba33cf55de498d7d0ba5e4d2c62
114142de7b39cec07d07e907a902c7c3b8d02964
2506f6331aa63304b36dbe0c19b527de970f8ea8b9041f3ed3ecaae6f27339f2
GET /1/prizewheel/cash/pkcash/img/prizes/iphone-12-pro-max/proof.jpg HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 75064
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "1939dba33cf55de498d7d0ba5e4d2c62"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: O-lYi8U18O3cwTYzJSKm4APXn6PDAMxHQBM77qBwzMvmK0zp9Eg31A==
Age: 23731
myrealgift.xyz/1/prizewheel/cash/pkcash/img/fb-like.svg
54.230.111.71200 OK 2.1 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/fb-like.svg
IP 54.230.111.71:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4627), with no line terminators
Hash 94b11e2fd7883923dbe24695ef22cad4
2d32fc2891e8c0ee4edc9f18e147b7d6bf403e61
8477ac97cdbc3b07770b2a618ac05965e6dd60c6fa01cfbf2e6b66e6d173726c
Analyzer Verdict Alert fortinet Phishing
GET /1/prizewheel/cash/pkcash/img/fb-like.svg HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: W/"765203989756e91925e8f947e660b644"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MSMOlvHNkXvZTeTnwup5mYwFwm3z6fczKStZAFYWnpHSOPePop4u6w==
Age: 23566
myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/female/5@0.25x.jpg
54.230.111.71200 OK 2.3 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/female/5@0.25x.jpg
IP 54.230.111.71:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 128x128, components 3\012- data
Hash 98bcd4e6223fb41f34f9d20f3fed86d2
04ffc7d79511b8380a2f1606345cbcdd8fd63ef3
c021ea995f3ac999b04162cfd703f99cc7ab38ca8c6495287610fc945e21ed25
GET /1/prizewheel/cash/pkcash/img/profiles/african/female/5@0.25x.jpg HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2318
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "98bcd4e6223fb41f34f9d20f3fed86d2"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GZG67LMWetDvd1-IYpCrK9UoTn_618u6lE35_M56_QKJYx-0IcNB4g==
Age: 38213
myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/female/1@0.25x.jpg
54.230.111.71200 OK 3.3 kB URL HTTP/1.1 myrealgift.xyz/1/prizewheel/cash/pkcash/img/profiles/african/female/1@0.25x.jpg
IP 54.230.111.71:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 128x128, components 3\012- data
Hash fb5fe39b137ae3031317cd6973fda68b
46922080e7e0557afcac22c64f9d55af2e730c86
7b9690cdd4e0cb04183d9bafd406fbc87e6c81046c776d59ba2dd7e9ceae947f
GET /1/prizewheel/cash/pkcash/img/profiles/african/female/1@0.25x.jpg HTTP/1.1
Host: myrealgift.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/1/prizewheel/cash/pkcash/index.html?domain=continuetosite.com&brand=&bemobdata=c=6fab7ea7-7072-4cb5-ad47-1503f18f1b51..l=2f62c3ac-2ba1-493a-854c-9e2b6a9ec5b6..a=0..b=0..r=http://continuetosite.com..ts=1680363682043
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 3339
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 09:03:37 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Apr 2023 15:41:30 GMT
ETag: "fb5fe39b137ae3031317cd6973fda68b"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HICZ8-hrrBrg2xkkazAP4cKv2xoXXLpd4lmqbh8Jw5uFMsxqS4bU_w==
Age: 64034
laugoust.com/pfe/current/micro.tag.min.js?z=5653883&sw=/sw-check-permissions-fab86.js
139.45.197.250200 OK 15 kB URL HTTP/1.1 laugoust.com/pfe/current/micro.tag.min.js?z=5653883&sw=/sw-check-permissions-fab86.js
IP 139.45.197.250:0
File type C source, ASCII text, with very long lines (41316), with no line terminators
Hash 0ecf6fdfee643f03e72d6f83ed00ee68
e2788f2ab55a93809d1c4eac6bb79bd6955bfe72
7991d3bf5a333e109fe3830f132634fa45e9d4a1fe6be340aefe9d956be5e546
GET /pfe/current/micro.tag.min.js?z=5653883&sw=/sw-check-permissions-fab86.js HTTP/1.1
Host: laugoust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://myrealgift.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 15:41:30 GMT
Content-Type: application/javascript
Last-Modified: Fri, 31 Mar 2023 12:18:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6426cfa3-a164"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 23d51e711da7019115620634693df373
59a79d8cbe18885a82f9215b539679fb51663673
2b2bc569d330774a66e3b33967ac49997f071fe80e85896b33e759454f32b370
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2B2BC569D330774A66E3B33967AC49997F071FE80E85896B33E759454F32B370"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20441
Expires: Sat, 01 Apr 2023 21:22:12 GMT
Date: Sat, 01 Apr 2023 15:41:31 GMT
Connection: keep-alive
laugoust.com/zone?&pub=0&zone_id=5653883&is_mobile=false&domain=myrealgift.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
139.45.197.250200 OK 0 B URL HTTP/2 laugoust.com/zone?&pub=0&zone_id=5653883&is_mobile=false&domain=myrealgift.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=5653883&is_mobile=false&domain=myrealgift.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest HTTP/1.1
Host: laugoust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://myrealgift.xyz
Connection: keep-alive
Referer: http://myrealgift.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Sat, 01 Apr 2023 15:41:31 GMT
content-length: 0
x-trace-id: 6fa27ae8d542a2346e9ce26654322a3f
access-control-allow-origin: http://myrealgift.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Alert, Expires, Pragma, Content-Length, ETag, Backoff, Cache-Control, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 01 Apr 2023 15:17:27 GMT
age: 1444
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d01bc719725bc76729fb299fc72f070f
2f490d875923484686e0396e561e6636a6bdf6f3
bed1c4f858b3cd56eb98aaa8e4c8ebfc326da5b5f18ff07cd52a824a3b7f1012
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BED1C4F858B3CD56EB98AAA8E4C8EBFC326DA5B5F18FF07CD52A824A3B7F1012"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2972
Expires: Sat, 01 Apr 2023 16:31:03 GMT
Date: Sat, 01 Apr 2023 15:41:31 GMT
Connection: keep-alive
push.services.mozilla.com/
54.71.69.209101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.71.69.209:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pPWOAIeSx5B/A2FC+qFhEw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: g9p9Z+Izny0FUUraINgmbpvs8G0=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3376
Expires: Sat, 01 Apr 2023 16:37:48 GMT
Date: Sat, 01 Apr 2023 15:41:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3376
Expires: Sat, 01 Apr 2023 16:37:48 GMT
Date: Sat, 01 Apr 2023 15:41:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c193cd4520e8ee5d17cd1f3faadc1c73
b46effcb93e0ad066474ec1f67bcd54020615caf
bc824341b884278e7e69ae3bb87484ad914e5909544959ebc8f8661a545cb929
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10128
x-amzn-requestid: bdd46a1d-4b43-4450-be32-3e3947d2fcd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VELdIAMFmmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-346e92d143f6fcf46db741c8;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jidQVHgb6EK_fyGj4wYgdWEBeth8CIB5szPrwrgmirz4Q9tSYpRrsw==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:06 GMT
age: 64466
etag: "b46effcb93e0ad066474ec1f67bcd54020615caf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb930830ac86ec8ace6a232f67810ba
d084bf4331446c35236019010b2bcf82d45dad1c
bb81782bf590d601110ec8fb891f701e0f5084bda46370d30345bd81403a33ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5830
x-amzn-requestid: 0897bf26-6156-48d3-ba67-596cc326dddc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnHHG0JoAMF87w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427522d-6f380d901d9d6b737ec19d6d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:35:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: UfN2iRmDUhddBZW6qGy3q2-HCqb6Kx3iDENnirUkIoCJ6BW6zdWVtw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 22:44:32 GMT
etag: "d084bf4331446c35236019010b2bcf82d45dad1c"
content-type: image/jpeg
age: 61020
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ddcef2c96778d9fdee670e187a43ab32
e8c98891a1ffdbb6d30cf8746e067d56fe65d964
4e6fb506079b1daab0b1913a31c6252452f133af9276e18d25fe6fb622ce54ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3800
x-amzn-requestid: a182fb32-649a-4228-a591-080aae8c053a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VEY2oAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-3a1abb584aa61a954dbd52c1;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ycsh7rNJt9blXZVpFbbdBDu5pZbGDfGIPLt5k0Ff9-fvWTX86Ndz6A==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:45:01 GMT
age: 64591
etag: "e8c98891a1ffdbb6d30cf8746e067d56fe65d964"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: c00efe5b-7fdb-445a-a924-75ddd461b72b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: COQPtHizoAMF7-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641bfa64-3eb90ae703b78e8a06130540;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: wlc65ytdELa_faMSddEDHZNsbtF1_CgMOho3W3BvkaOSrFyAkKUagg==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Apr 2023 10:47:01 GMT
age: 17671
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfa5d643-243c-4157-97e2-d929d9b82514.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfa5d643-243c-4157-97e2-d929d9b82514.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 613b90b49678a72443e992713b7eb711
f4216e9b06d9cb62aadfafce434789a3cc5d1fe2
7cb101a12e824bf26552b2aaeb00df0e3f239c254168b9dee65192b484f1b61e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfa5d643-243c-4157-97e2-d929d9b82514.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4697
x-amzn-requestid: 800eecdb-6883-4266-a476-7e3ce7985d3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ClVE3HmcoAMF9cg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64253552-6ee0d63805e7a9631efa30fd;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 07:08:02 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: f6eh434UX0ff2-bARUFXdDr0W1Z78rO5MItrz39fdCpqpIVuftr4yw==
via: 1.1 304b956e2039e07753fa39109152d594.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Apr 2023 07:33:34 GMT
age: 29278
etag: "f4216e9b06d9cb62aadfafce434789a3cc5d1fe2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 800c2662fd6ab8829a02b7d63084c38d
0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239
76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5950
x-amzn-requestid: 5d5a94f5-db2f-4c4c-9c9f-08c14b0ccd80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NG2NIAMF-sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-57c957f442c42fe148e66831;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: KkjS04mCLqFET4v9-sePYK-zcztrds608GECT1Fxz3BEpslgxnpLOg==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:37:17 GMT
age: 65055
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2