| clickwinner.icu/32fa968d-f388-46db-95ea-4ced12abdfd9 | 18.156.16.63 | 302 | 0 B |
URL HTTP/1.1clickwinner.icu/32fa968d-f388-46db-95ea-4ced12abdfd9 IP18.156.16.63:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /32fa968d-f388-46db-95ea-4ced12abdfd9 HTTP/1.1
Host: clickwinner.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Wed, 07 Dec 2022 12:11:39 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Pragma: no-cache
Set-Cookie: 32fa968d-f388-46db-95ea-4ced12abdfd9-v4=hqGh6yf5A7CAaoTFwRQn-ahAX0zS1An8Nw7RfvV2lME; Max-Age=86400; Expires=Thu, 08-Dec-2022 12:11:39 GMT; Domain=clickwinner.icu; Path=/; HttpOnly
cep-v4=V3JlkZjkLNguYVn-0Ng_PjFv0l8zJ4BYmEykT0J2wOTTxUerxrgfgVocpkh1rGCO7ZGF9o-mbP3fvbL7TsaL8ggK2BLxB2bBKjKlj932ZbPKXcykUv2gQjxp3wVOw8UylIt91ZOwHUEaxQ7Vk9VkYJn3heaEfo8Dj9QmoQusMj4pHuEeUeWHWCmrnRbpD0l5xJQL_V_Da8XXeZTm3qX4IG4axH8O7zqaEy3gBMriUOTDSJW0i-hUtU-W3sTckNZ34fqcQqNr1CDr-tutjxystcrOYbNiTVZ6p4p8132wTsjwDSPALYsi8aVvfS_wwK7oLo6CmsY_xnU7xMCs9FRQ5HwOSO7ihkTPa9VJ95RnJKg; Max-Age=86400; Expires=Thu, 08-Dec-2022 12:11:39 GMT; Domain=clickwinner.icu; Path=/; HttpOnly
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash5ceaca9fd4ad000cb435820812fc69c8 8168397aaf7b572c89a9c83f46c0b65e4ac509f2 9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9988
Expires: Wed, 07 Dec 2022 14:58:08 GMT
Date: Wed, 07 Dec 2022 12:11:40 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashf83c5e33ba42e312ee398848bbb711f5 caa1fd23b1fbbe883292ded04404c1cfd861eb09 106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5976
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 12:11:40 GMT
Last-Modified: Wed, 07 Dec 2022 10:32:04 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 11:20:28 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3072
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hasha0abf10fb7e96c1c98dacf2f013a68b4 acdd839bce85eadc78a8e821e32e00a958d5c0c8 b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6700
Expires: Wed, 07 Dec 2022 14:03:20 GMT
Date: Wed, 07 Dec 2022 12:11:40 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6vH6HFbCalmarjyPBwT4O64b61FMGgQzdc3Wif6xA1vsCUbexeGUNqXQYhlFkCOVo4ZWDXoWeMw=
x-amz-request-id: B46F7PFR1CHNWMH4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 11:49:21 GMT
age: 1339
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 12:11:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.r2m02.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m02.amazontrust.com/ IP54.230.80.227:0
Hasha09ecc18083779bf22b16a32f8097187 0d9c6fa7205b3e4d447685654350137ff31b4a18 ec623f5aef1e43368fd06ae10fdc7649b82fc6e3294d8051ad1b9c5170a83753
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147337
Date: Wed, 07 Dec 2022 12:11:40 GMT
Etag: "63901f85-1d7"
Expires: Fri, 09 Dec 2022 05:07:17 GMT
Last-Modified: Wed, 07 Dec 2022 05:07:17 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ExyNPASn2lW2Eb812_v1pGQng-sif_MmbMMUsGHglJW5cXVqb-ev7Q==
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 12:08:58 GMT
cache-control: public,max-age=3600
age: 162
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/prizewheel_spinner.jpg | 54.230.111.119 | 200 OK | 32 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/prizewheel_spinner.jpg IP54.230.111.119:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1002x1002, components 3\012- data Hashd4655cba21d806e849eed4e4119fbe1a 6453039d85005643e9d65074ca022f63b5d47cdd 90f2363aaebaf03f06fb20c6c02fb2e97497d7cd54b611281303ce7e10335ee7
GET /1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/prizewheel_spinner.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 32496
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:40 GMT
etag: "d4655cba21d806e849eed4e4119fbe1a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZzDe4SYoeYn6PMdveakMfwgSdHQpOBsUtCIJlvYtApajfJ1XVbFJqw==
age: 8454
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash053aff7451e55d4269dd9610ab070f3f b3376256d11d159b0c7280ba1515b78d7d9e12ca 24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5963
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 12:11:40 GMT
Last-Modified: Wed, 07 Dec 2022 10:32:17 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/css/app.css?id=c588c17324f2be0e0ec9 | 54.230.111.119 | 200 OK | 33 B |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/css/app.css?id=c588c17324f2be0e0ec9 IP54.230.111.119:0
File typeASCII text, with no line terminators Hashc588c17324f2be0e0ec90a18f39e7d7c 69d360eddd15f527aac7f7e610346517732b7770 b83e8830b6b2f1253a78f90191cf1087e8fd7638831fd4c1376a7a6029297240
GET /1/prizewheel/iphone13/fr-cd/css/app.css?id=c588c17324f2be0e0ec9 HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 33
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:40 GMT
etag: "c588c17324f2be0e0ec90a18f39e7d7c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gMeQSN45ydNIjTxzZfNZNDoG1Yf0d-PFaoS6soRkWKdYTsjAX349YA==
age: 70879
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/notification.png | 54.230.111.119 | 200 OK | 449 B |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/notification.png IP54.230.111.119:0
File typePNG image data, 30 x 28, 8-bit colormap, non-interlaced\012- data Hashbd5203f2cc9e7a9125e4575e029541b0 9fa565ab2f4b55da4735b79e529562252b3c9afe db94c8ae725f947f20e12df29e6b6c8ade5ffcd5a7dc9ffd9be0351d963f826f
GET /1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/notification.png HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 449
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:40 GMT
etag: "bd5203f2cc9e7a9125e4575e029541b0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jM1KeWvn8_DqBBHr2LdGzSYdPcSM7NqBrOuFArKhHZrbCgdGhObtjA==
age: 70879
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/loader.gif | 54.230.111.119 | 200 OK | 5.1 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/loader.gif IP54.230.111.119:0
File typeGIF image data, version 89a, 50 x 50\012- data Hashed786659a534e0d183c09a90c50abc9d a6c3d90bfaa86a7cda490bc5d04c8939c31a414e cbaeb154dcb93bff5f6e382cede5d51a11175a2295e56bb2790611910280ba97
GET /1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/loader.gif HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 5083
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:40 GMT
etag: "ed786659a534e0d183c09a90c50abc9d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H2a81Yfd0Sa1cihXDJffIRfYPeVm9Q6f7VqD7yGmyjTHqEkofpEG-A==
age: 70878
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/js/app.js?id=15b1bae461854d516179 | 54.230.111.119 | 200 OK | 977 B |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/js/app.js?id=15b1bae461854d516179 IP54.230.111.119:0
File typeASCII text, with very long lines (977), with no line terminators Hash15b1bae461854d516179a34a8c9b5f08 330c1d191253fe07c5fe6b5af37872408f2e5904 1bd25e467ea078265aee433e0cf9732a7e127514304634590a2de17fb2330896
GET /1/prizewheel/iphone13/fr-cd/js/app.js?id=15b1bae461854d516179 HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 977
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:40 GMT
etag: "15b1bae461854d516179a34a8c9b5f08"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Fo3v6aWVIvY2udSbX9p-knOHANeUXfE4r11R60UDveuio8ntOZhMfw==
age: 29415
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/prizes/iphone-12-pro-max/default@0.5x.png | 54.230.111.119 | 200 OK | 32 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/prizes/iphone-12-pro-max/default@0.5x.png IP54.230.111.119:0
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data Hashc562f63263ffff2688791c38014b36bc 59fe19592cb3f6a2709c418026f0a1ddb12c1314 c331ce815fcd0ed99bc592c082eed6e51efd0f107d2ae967021d0273def59ae8
GET /1/prizewheel/iphone13/fr-cd/img/prizes/iphone-12-pro-max/default@0.5x.png HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 32266
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:40 GMT
etag: "c562f63263ffff2688791c38014b36bc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: etDvFXvxlv7UFEdQs28cJpu2WuL8H8oVCW1GU4v8YBaiMbAfFjJqUg==
age: 67132
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 54.149.51.98 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.149.51.98:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Q1U9APb1TpDIKDaGBddmKQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: b2QgB72BDj9pUA6vKrkmRhpklgk=
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/prizewheel_static.png | 54.230.111.119 | 200 OK | 3.4 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/prizewheel_static.png IP54.230.111.119:0
File typePNG image data, 1002 x 1002, 4-bit colormap, non-interlaced\012- data Hashdc484e0043b5ff6191b1880c8779863c a5b67e3dff3dea3940eed090431aecbb36611b1d 30bc059973d84a6e1d22d16747bce062025561f2555cdd9cec012a87866abcb6
GET /1/prizewheel/iphone13/fr-cd/img/landers/prizewheel-fb/prizewheel_static.png HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3370
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:41 GMT
etag: "dc484e0043b5ff6191b1880c8779863c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CL40MhRr0id6TRCDsmkXBLVkxvjphcnjRx_LQwSYRfYbadIkxRpWpA==
age: 8455
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/male/3@0.25x.jpg | 54.230.111.119 | 200 OK | 2.5 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/male/3@0.25x.jpg IP54.230.111.119:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data Hash2c188d082f97b0a5b29c92dbaf7a9787 f2a3828b68ba4d06d450832a977c48a22360d5eb afc758b894177d4003b5d02d80cd023429c99cfc3cd880804570d237cf6a96f0
GET /1/prizewheel/iphone13/fr-cd/img/profiles/african/male/3@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2518
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:41 GMT
etag: "2c188d082f97b0a5b29c92dbaf7a9787"
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ap5pJ0FAFAlT81xsPgYafyohAdVZ30ApYjvWYDirC-niDzaiwglwBg==
age: 54262
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/male/10@0.25x.jpg | 54.230.111.119 | 200 OK | 2.3 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/male/10@0.25x.jpg IP54.230.111.119:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data Hash2ec37a714ba9202b2492cc1eff504041 29d005604784110044c80c13610ec1fe946a7d83 278b0f8b52650d39e549fc69ea49d62d3bdd0c41b3ffd939da265842b6e40369
GET /1/prizewheel/iphone13/fr-cd/img/profiles/african/male/10@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2302
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:41 GMT
etag: "2ec37a714ba9202b2492cc1eff504041"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iLIxSw9g_7-WteeHPE-AZ2DImhZl7tC0WwHYIclRjFawoX1exBrvSQ==
age: 8455
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/male/9@0.25x.jpg | 54.230.111.119 | 200 OK | 3.1 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/male/9@0.25x.jpg IP54.230.111.119:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data Hash4c30d4f61201b822adcfa58dbe32389c 9d9edd23a3b074135d9e043b5d1e52d8dbe29c91 19d491c137daf159170ed6d6340c33b11806347b18b2e89840989b914346d9f4
GET /1/prizewheel/iphone13/fr-cd/img/profiles/african/male/9@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3146
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:41 GMT
etag: "4c30d4f61201b822adcfa58dbe32389c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RPnMb-N8DkaeM64Os8aIef9B3yWntxrwswb9fxji1Rud1z2yaWbT7Q==
age: 54262
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/prizes/iphone-12-pro-max/proof.jpg | 54.230.111.119 | 200 OK | 23 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/prizes/iphone-12-pro-max/proof.jpg IP54.230.111.119:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 339x450, components 3\012- data Hash029d38095e06ced0688fd67a58e70781 b5bdaddeb39b947c35f883f001f34dd163bcb362 5e41534f027f676ce89db3b87319ffbdc1a1e7515e379f80f476e0989fa4bcc1
GET /1/prizewheel/iphone13/fr-cd/img/prizes/iphone-12-pro-max/proof.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 23152
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:41 GMT
etag: "029d38095e06ced0688fd67a58e70781"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WVTOXI9mcg7eyI8Nai1EqDq7ds3LOVRkF_nmek6XLTUZXd5woqyyyA==
age: 25435
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/female/5@0.25x.jpg | 54.230.111.119 | 200 OK | 2.0 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/female/5@0.25x.jpg IP54.230.111.119:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data Hash732da0e5f3968ec3d9014a6bbb62c04a 5d306c8778fdcac19f03542fccaf31df1cb8a783 d3eefd5709b25e1bb1129cccb1da22e54816cb2d15a2ed4cfa045b57579a7ef8
GET /1/prizewheel/iphone13/fr-cd/img/profiles/african/female/5@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1960
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:41 GMT
etag: "732da0e5f3968ec3d9014a6bbb62c04a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Gwj7YQgFTMWZeWCYYBcXQtqAjYFCM9nmRspC8LSVretCW1hwuV7_Sw==
age: 54262
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/female/1@0.25x.jpg | 54.230.111.119 | 200 OK | 2.8 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/female/1@0.25x.jpg IP54.230.111.119:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data Hash9ef452251daa9ff9fbdc5fe827a35061 2cb40a02efce5fd8772f57b8e9737018fed3f9ba 355126576c7a0bdbbe771a2b039d093c855efe6805941a36456324a2076e2ce1
GET /1/prizewheel/iphone13/fr-cd/img/profiles/african/female/1@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2781
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:41 GMT
etag: "9ef452251daa9ff9fbdc5fe827a35061"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A71GF2Zsn8i7g2QcKN2mNnwJtjofHr7SVtBpfezTCJ4t8pcNTMx-jQ==
age: 8454
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/female/3@0.25x.jpg | 54.230.111.119 | 200 OK | 2.7 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/female/3@0.25x.jpg IP54.230.111.119:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data Hash2790f79b7e764407ae4b87a9dc30734b 30f0a1e4d30ac25108f2d0487f49944fbe630b72 8970ba9af5b39727ac25d42ab540c42ae7f58de4011fadb8efd2f5f317a8d575
GET /1/prizewheel/iphone13/fr-cd/img/profiles/african/female/3@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2727
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:41 GMT
etag: "2790f79b7e764407ae4b87a9dc30734b"
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xLO2WWS7tZwew32JP3NAiDCa3v-ivIl8kUaLWneo_PjoTCX1Uhk0gA==
age: 54262
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/female/6@0.25x.jpg | 54.230.111.119 | 200 OK | 2.8 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/female/6@0.25x.jpg IP54.230.111.119:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data Hashaf242991b9a56424739c63a6bd4090a7 7b41b3b2cfbbe69a865efa8863883bf029738b6e c53bda952fa4ca1869dfb4fd7db948ef87f1a8c8f2e6633e2320465f01f0829f
GET /1/prizewheel/iphone13/fr-cd/img/profiles/african/female/6@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2766
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:41 GMT
etag: "af242991b9a56424739c63a6bd4090a7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kxipFCAIJwxEBlT1VuI2c2ArJ0jmBwv-5mE0A3dygr2yuM5r9Y7lBA==
age: 54262
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/male/2@0.25x.jpg | 54.230.111.119 | 200 OK | 2.1 kB |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/profiles/african/male/2@0.25x.jpg IP54.230.111.119:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data Hash0f15632c24d4646c58f30feaa3baaa8a a7f319366432f5a63d7f11d30b0a6c9cb6398b64 4118d09fb21a7f34160f470078f6dcba042e8a07e2b4e32de12a4dcd9c5e7da8
GET /1/prizewheel/iphone13/fr-cd/img/profiles/african/male/2@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2053
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Dec 2022 12:11:41 GMT
etag: "0f15632c24d4646c58f30feaa3baaa8a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KUGBRFCf3fxFr-PTnqHbuQVAEOWr5RIe0zbnevTp3EoPkmf9PU7NfQ==
age: 54261
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashb4151ff7c795edc2525820a18907103c 7ca6120868d92f4f053977ba2f35bbfa3e32497e 8ddfbb77723881a20dce8d5ebe4ff71e0ff89b688c60fd6ebc3c443a311c233d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8DDFBB77723881A20DCE8D5EBE4FF71E0FF89B688C60FD6EBC3C443A311C233D"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17438
Expires: Wed, 07 Dec 2022 17:02:19 GMT
Date: Wed, 07 Dec 2022 12:11:41 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash1ab1615b2c8cc26b12fc0cf41734ff07 a7d54b3709ce75a20210e20013e6f06b0aa88e2d 22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14047
Expires: Wed, 07 Dec 2022 16:05:49 GMT
Date: Wed, 07 Dec 2022 12:11:42 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash1ab1615b2c8cc26b12fc0cf41734ff07 a7d54b3709ce75a20210e20013e6f06b0aa88e2d 22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14047
Expires: Wed, 07 Dec 2022 16:05:49 GMT
Date: Wed, 07 Dec 2022 12:11:42 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash1ab1615b2c8cc26b12fc0cf41734ff07 a7d54b3709ce75a20210e20013e6f06b0aa88e2d 22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14047
Expires: Wed, 07 Dec 2022 16:05:49 GMT
Date: Wed, 07 Dec 2022 12:11:42 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg | 34.120.237.76 | 200 OK | 8.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe95ebce9d79ba46cb96af9a45af1762f 985c6761675e6bcc0186f64d55f94cf09352f05c 5837d6bf31e57f955ba2577f112281cc33a5502b358c83192f4e396b57042ac0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8438
x-amzn-requestid: 0f5d1b0e-1193-4006-8a54-555681d9f62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlqVGMjoAMFS6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb641-6366ea6464122d857407cdff;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nm0qQpo75zvDYWxv8V3GvOSBFenh8ocfjV9d02Mc2l-ABieIb3h2uA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:53:40 GMT
age: 51482
etag: "985c6761675e6bcc0186f64d55f94cf09352f05c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg | 34.120.237.76 | 200 OK | 7.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc9257f2e3b9bd1b3aa262b0f4bf57968 4bcdd6ecd63834aa1010faf19457a97f37ae99fa 9afd592279c51b533b3bf72a860cf4a8f2bc6cf01b07d1ab6f11f0ff302e0ef6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7392
x-amzn-requestid: f4b6890a-7a8f-48f8-b2af-365cb5f681e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpwREFiXoAMFSMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d60d3-009e524f30c72d0629c877bb;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 03:09:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C0-H0LUbxaxMEXoDf6PXEFAvVTj2D9K2M7eshRo39QzAAWSk2ubepA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 03:15:41 GMT
age: 32161
etag: "4bcdd6ecd63834aa1010faf19457a97f37ae99fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb15136d60fd0a5e0f657a4f5c75d540f 36082b7329d473829178f280cb71a83b1531e486 79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 20:49:34 GMT
age: 55328
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg | 34.120.237.76 | 200 OK | 8.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha0f0782df385287698881f1c19e79b96 5a25f245b594f6cbf2fdaeed2463ac5fbc08068a 4f795cd2286e194cd96751e6a4e3bd0da09c6db5344182e51986b65149e75cd7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8579
x-amzn-requestid: 0efa303a-364e-488d-beac-24836c7c1e4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlirE2KoAMFX9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb610-5564a0c0264ed36f0497e17e;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xpzGji_JAWkUjhXLouXWlin6rV-44shz6Z_STqo7uK7ZUV2PWs7Zpg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:57:19 GMT
etag: "5a25f245b594f6cbf2fdaeed2463ac5fbc08068a"
content-type: image/jpeg
age: 51263
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg | 34.120.237.76 | 200 OK | 6.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash210b27f5f6310d8fad640acce3d9ae0e 08d241e56622cb900754d95bc5d58ed8826d9f32 64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:32:51 GMT
age: 13131
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| desekansr.com/pfe/current/micro.tag.min.js?z=5378963&sw=/sw-check-permissions-f40a4.js | 139.45.197.250 | 200 OK | 23 kB |
URL HTTP/2desekansr.com/pfe/current/micro.tag.min.js?z=5378963&sw=/sw-check-permissions-f40a4.js IP139.45.197.250:0
Hash3f5b163135577204919f71063ea59340 740fae92aac274a0e2ddd38ae00bdba29cc703d7 0c20b1e85eafdef9beed4af47d8493fd5b4db58890fd368c81352702efc17a93
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /pfe/current/micro.tag.min.js?z=5378963&sw=/sw-check-permissions-f40a4.js HTTP/1.1
Host: desekansr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 12:11:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 15:42:47 GMT
etag: W/"6388cb77-9a87"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb | 54.230.111.119 | 200 OK | 0 B |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb IP54.230.111.119:0
GET /1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Dec 2022 12:11:40 GMT
etag: W/"6167068e6e55fa30b9bbe607d8efa806"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QmmsdvK-6eaRp6NM8fLsXWv_SplbT6B6cybteGCel0UbHC27yFMQ6A==
age: 29416
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444 | 54.230.111.119 | 200 OK | 0 B |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444 IP54.230.111.119:0
GET /1/prizewheel/iphone13/fr-cd/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444 HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
server: AmazonS3
content-encoding: br
date: Wed, 07 Dec 2022 12:11:42 GMT
etag: W/"cd41123a11e97e0f2444b57d180631a0"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: n8fOomb9qxvaiQxtXje7uan44M85hjpYxeKIHsB74pGLVhVEV_pNUw==
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/js/landers/prizewheel-fb/app.js?id=c3c399d8b44b50eee3e6 | 54.230.111.119 | 200 OK | 0 B |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/js/landers/prizewheel-fb/app.js?id=c3c399d8b44b50eee3e6 IP54.230.111.119:0
GET /1/prizewheel/iphone13/fr-cd/js/landers/prizewheel-fb/app.js?id=c3c399d8b44b50eee3e6 HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
server: AmazonS3
content-encoding: br
date: Wed, 07 Dec 2022 12:11:42 GMT
etag: W/"cdf97653c213f02233f50a1ec975633c"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wCsTnXUt-ghdw1_O2oJnzQdL9J1jg70w7_B9UhNAN39_E84Hturaaw==
X-Firefox-Spdy: h2
|
|
| officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/fb-like.svg | 54.230.111.119 | 200 OK | 0 B |
URL HTTP/2officialwinner.xyz/1/prizewheel/iphone13/fr-cd/img/fb-like.svg IP54.230.111.119:0
GET /1/prizewheel/iphone13/fr-cd/img/fb-like.svg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/fr-cd/index.html?brand=Desktop&domain=clickwinner.icu&cep=hhqiXLQnqlf2EwVgdlkX_1wEIUVU9Zi710IbadfJ2vUcMBPFL19jFMn6xfiUkPz8dplTL63V5-mLpl8yzDTqkpKmXtJabE0GO_CcmN0shSMw28qJFYm9cxJ70VqDcZ1ptFyGoloNhIkUfzzAp6NmAHPMCetTpYc8MlMP8Dj0BrzaLDerF3pvQtsqsRBuqX-B9YvD5otd_5MZ1xiN1hkZToztcogVHLyTLCyjgPfbFi9rAX6yPGtZ6Mac9bH7t63AmXPB6210u4rL_uYmICTnAzTf8uuoStGNtofOUqEWtkgGZxUA9WNttEV-A0eji4vhIxt1LSjgi-MJLllI2_l1cz1exEJs7G2NpUxWuEjzHfA&lptoken=16f670d341cb682799eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 16 Nov 2022 08:56:19 GMT
server: AmazonS3
content-encoding: br
date: Wed, 07 Dec 2022 12:11:41 GMT
etag: W/"765203989756e91925e8f947e660b644"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TlN3YQ4P_MS9O0zi2jpfQ4z7o1g1ThCuc3dCtLcmvXiZPVd4KaFFGg==
age: 25429
X-Firefox-Spdy: h2
|
|