Overview

URLy.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html
IP 104.16.118.67 ()
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2023-01-25 02:58:45 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (8)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2023-01-24 17:36:02 UTC 34.120.237.76
r3.o.lencr.org (8) 344 2020-12-02 08:52:13 UTC 2023-01-24 17:12:25 UTC 95.101.11.115
y.superiorvivaciousdirect.shop (16) 0 2023-01-23 22:00:35 UTC 2023-01-24 17:14:15 UTC 104.16.118.67 Unknown ranking
firefox.settings.services.mozilla.com (2) 867 2020-05-25 20:06:39 UTC 2023-01-24 17:12:37 UTC 35.241.9.150
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2023-01-24 17:21:06 UTC 34.160.144.191
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2023-01-24 17:12:46 UTC 34.117.237.239
gauvaiho.net (2) 285509 2021-03-26 19:00:47 UTC 2023-01-24 16:32:09 UTC 139.45.197.251
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2023-01-24 17:21:57 UTC 44.235.159.98

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2023-01-25 2 y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket100 (...) Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected

ThreatFox
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.16.118.67
Date UQ / IDS / BL URL IP
2023-02-05 22:26:49 +0000 1 - 0 - 0 h.perfectfabulousdrive.shop/wbiwxb/i14s22/ind (...) 104.16.118.67
2023-02-05 13:59:46 +0000 1 - 0 - 1 i.generousglimmeringmobile.shop/wbiwxb/i14s22 (...) 104.16.118.67
2023-02-04 17:53:10 +0000 1 - 0 - 1 n.spiritedeffervescentclick.shop/wbiwxb/i13s2 (...) 104.16.118.67
2023-02-04 15:00:34 +0000 0 - 0 - 1 c.amiableawesomeclick.shop/wbsweep/zh/wheel/i (...) 104.16.118.67
2023-02-03 11:14:05 +0000 0 - 0 - 6 h.splendidawesomeclick.shop/ 104.16.118.67


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-02-06 03:13:54 +0000 3 - 0 - 13 ntutdc1995.com/wp-content/plugins/advanced-fl (...) 104.26.1.51
2023-02-06 03:13:42 +0000 0 - 2 - 1 porngen.top 188.114.97.1
2023-02-06 03:12:29 +0000 0 - 2 - 0 download.cdn-televzr.com/pro/ummy_setup_1.9.7 (...) 104.21.1.194
2023-02-06 03:06:15 +0000 0 - 1 - 0 secure.jbs.elsevierhealth.com/action/getShare (...) 104.18.124.114
2023-02-06 03:04:17 +0000 0 - 1 - 0 www.ahajournals.org/doi/suppl/10.1161/STROKEA (...) 104.18.21.186


Last 2 reports on domain: superiorvivaciousdirect.shop
Date UQ / IDS / BL URL IP
2023-01-25 02:58:45 +0000 0 - 0 - 1 y.superiorvivaciousdirect.shop/wbsweep/zh/whe (...) 104.16.118.67
2023-01-08 00:00:49 +0000 1 - 0 - 0 z.superiorvivaciousdirect.shop/wbiwxb/i12s20/ (...) 104.16.118.67


Last 3 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-02-04 15:00:34 +0000 0 - 0 - 1 c.amiableawesomeclick.shop/wbsweep/zh/wheel/i (...) 104.16.118.67
2022-12-18 21:06:18 +0000 0 - 0 - 1 h.amiablefabulousmobi.shop/wbsweep/zh/wheel/i (...) 104.16.117.67
2023-01-06 13:59:01 +0000 0 - 0 - 1 b.fearlessfabulousdrive.shop/wbsweep/zh/wheel (...) 104.16.118.67

JavaScript

Executed Scripts (4)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (37)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0582B6180687DD95C7FD728F1B9DB4495B807151E309B608AD203D69708F9DA6"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5475
Expires: Wed, 25 Jan 2023 04:29:49 GMT
Date: Wed, 25 Jan 2023 02:58:34 GMT
Connection: keep-alive

                                        
                                            GET /wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 25 Jan 2023 02:58:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 14 Dec 2022 07:58:26 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nT8WvtDTvfXm1NP%2BpFq%2FaQSP%2FIDYne0enrD%2BzRH9XPdBBHAZTJfLsLeUJaHxFJfzB8MtaWlS5rPO4iBbcQdzqY2VSWNGUAKT7YUAwL1TEt17cNsvgzUrCNIdjhPJB0Ep9Ze8CUdTzR69cJYacAPYaDI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78edbf74dc520b59-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text
Size:   5473
Md5:    7a88f3f40eaea6ed76be97054ea58166
Sha1:   00d3c6eac7269514aac82dcbd2dbeca08a383227
Sha256: 1250a537d7b7e98343ef452f8c0c4e1622df8687eb4f89dcc55c9a5b1e911094

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "124D9534F75506B8E8C7535EE7295AC4E6CF5A8249A0EDAC6940839E56043181"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19069
Expires: Wed, 25 Jan 2023 08:16:23 GMT
Date: Wed, 25 Jan 2023 02:58:34 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 02:35:09 GMT
age: 1405
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    dcd75ca6daca51c5e39d431468511793
Sha1:   07f76d3bf23d65c9110d810fa71a994e39e085d3
Sha256: 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6446
Expires: Wed, 25 Jan 2023 04:46:00 GMT
Date: Wed, 25 Jan 2023 02:58:34 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 6tIIQ0icttO7H17/QNap/HsFs60rxPvY3S47422FZHsrh42VD6fUYJorc36DMgHC6Nr5DJcoe8w=
x-amz-request-id: DV55623P53FM286N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 02:19:30 GMT
age: 2344
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    7b922915ebf1fa3639b333f994c74f24
Sha1:   144a3f80b98fd0652d4614f24cf6cbbee40f8938
Sha256: adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 25 Jan 2023 02:58:34 GMT
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /wbsweep/zh/wheel/style.css HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 25 Jan 2023 02:58:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 06 May 2022 13:05:15 GMT
ETag: W/"2a43-5de5782774981"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ncJuTYWNPNmr2m3%2FtbthFkwXTiO6XPiUdtZ4gcRqpwpeB%2F1MnmIrzAeKBGuWCFn05gMs1KXgxVkNQELAKeIFyAx1l5TnGN8IYx4tQOPvt%2BVLXrWP3CcrXV0F8N938QnrIbDjz0KxvWNhnheIiqoww2E%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78edbf76ccbd0b59-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text
Size:   2382
Md5:    fa906ac805fdf6ecc581233414a1fcfb
Sha1:   4186981d44e21be0db86bfe9cf7548009ff034fb
Sha256: a3ccc420d230fb0c6de7ea30366a86347f02605039da9f12ed6fc3945c11a522
                                        
                                            GET /pfe/current/micro.tag.min.js?z=4984707&sw=/sw-check-permissions-4eee0.js HTTP/1.1 
Host: gauvaiho.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/

search
                                         139.45.197.251
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 25 Jan 2023 02:58:34 GMT
Last-Modified: Tue, 24 Jan 2023 14:31:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cfebc5-a020"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (40992), with no line terminators
Size:   14457
Md5:    8caba2fc5255f0ee194c5186b4461a34
Sha1:   6efec850a39b07bbb9044b23f37ae6f7499c4371
Sha256: d466f8364a2a16ec2fa60b73c837212e2280e04c43e2735bf494ffd877961627
                                        
                                            GET /wbsweep/zh/wheel/hk17.jpg HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 1352
Connection: keep-alive
Last-Modified: Fri, 06 May 2022 13:05:24 GMT
ETag: "548-5de5782ff36da"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SahyIziw4XzmW1QZR%2F2g0FBbqLesI1oYDmRdXm3cb8YPW9KKvit68%2BnzoqPSHilW09OAH6N0oyZ3plXplG5cnxuda%2BxO8GuBrjvduiej2bBaczZ7QzJt9Mfr1m%2BWVPvKw69Re4JGYwhJgxsrFJN587k%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf77ccf70b59-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size:   1352
Md5:    3000c6e3bfa18d16008f0f3192322323
Sha1:   45bb4eea9cf64a2c1cae8fd8581f5bfdb0e965a7
Sha256: 02433c254172c78cea60db8374d39b5d454fa59bf809f7d304aaab91d49918d7
                                        
                                            GET /wbsweep/zh/wheel/hk13.jpg HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 948
Connection: keep-alive
Last-Modified: Fri, 06 May 2022 13:05:27 GMT
ETag: "3b4-5de57832acb41"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lAdHu%2F%2B6fXvYhjtwyu0vX75Ejz7iZf5uLsy%2FjjYGIKrO5mhslzhP8gRPPeKGCQD4D%2BhFlzBSBcRGflVLj1WrLD02kKzdubUXs5VPtKmFVh3N%2Fs4i3p9pQX0xTPhJQgTIF32W1sKOD3M%2FZuptXE72IVU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf77ce47b4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size:   948
Md5:    1cfce9b964a1acd1e8f8428493f6e407
Sha1:   8a00a71e985aa5335881daf8c8d61e1b333786b1
Sha256: e693ac73cd32d070039e88fe58d46680c7abb2784a874a11e800a6d3b3de3fd1
                                        
                                            GET /wbsweep/zh/wheel/hk11.jpg HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 1276
Connection: keep-alive
Last-Modified: Fri, 06 May 2022 13:05:29 GMT
ETag: "4fc-5de5783407a1c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pdgWUvG0Ebfrk%2Bes1B1DdcPzzQZ72UmUUqbzbFKFrdXrbJSEcf25EotJV%2FGJ2r76%2B1kVhhPiEGq43PKCpE0dQsO1fX4e48%2FD7DqKPK%2Bt%2Bmla2Ef%2B5JszCMYehErbz916s7eq5OtP9yOPuEy0vJLu1fU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf77cf7cb4fd-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size:   1276
Md5:    7dab456c9c55e07b18bfbb47c0e70b91
Sha1:   ba0278fcf1a71589e21163ff7a9040d1d0fdf777
Sha256: 1bf63d954e79d99813474caee35372b80a5ab5727a874bc5280002e49603a087
                                        
                                            GET /wbsweep/zh/wheel/generic.png HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 11323
Connection: keep-alive
Last-Modified: Wed, 14 Dec 2022 08:01:22 GMT
ETag: "2c3b-5efc524733088"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H6FZmOd%2FnS5g1N1R4WTWUBGUXp9q5NRft5qxRmpQ6pk2pzvQ7AOLOymE4e3iNm6JKxh6UKPqn5OWz7a4FGWSenoTMaCBJqfOmR3fTNvEwNcKgnqTB2EnyzJw%2FEUBGcyNB2AdANtCno8F5u0svUoQ7Fk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf77cb010afe-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 312 x 198, 8-bit/color RGBA, non-interlaced\012- data
Size:   11323
Md5:    0591648b3c6efe8f1a7217d32bebcabe
Sha1:   43891de43363d4559feff041309df906f893b345
Sha256: 7644f1298586df1659df8ebeaeccbb9c734e258048a0372999403349001b1682
                                        
                                            GET /wbsweep/zh/wheel/hk14.jpg HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 1236
Connection: keep-alive
Last-Modified: Fri, 06 May 2022 13:05:26 GMT
ETag: "4d4-5de5783184118"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2n8kUd%2FjfOVmAQoNhgQGW61spFfWDl4%2FehAuwyXuVQboq8TUuj3PVw%2Bj2LBIsNL8gYlCCWZQYLe0WzdDz3SphhnEtYrTu0ecPLbwq%2BiM2zWKoAFPpghRXwDxGw43M95%2BCclRR%2Fn%2B70LZPKWaarSb20o%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf77cce10b69-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size:   1236
Md5:    637f145d8bc3a832f76d1dce668d2368
Sha1:   37e94085cb7cd8e0df90b2b6aef1e7cc21e85883
Sha256: 54544a2e343c2461cb997ac6e38e339038ece2049be4d64c77c6c15b3e66741f
                                        
                                            GET /wbsweep/zh/wheel/hk12.jpg HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 968
Connection: keep-alive
Last-Modified: Fri, 06 May 2022 13:05:27 GMT
ETag: "3c8-5de57832e0f34"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7%2B3ZpbAclqayJmNENnz%2FMfbtGUZkwycfyUDzBCDkCiZa3BsruxnwJUD9Y9doUv5uz1m%2FyuAjq9gzGm%2BoY76m3hbh1tllu3xzWyv0zx5jgcnHpNVuGSGMT4%2FkRe9vRubo6cUQg85hGuQpCaluXNNqGgY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf77ce94fab4-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size:   968
Md5:    542c1f205459a1dcbe2f647835b6bdf6
Sha1:   bc31caefcff3ce8e9b66d3add6cb1e2ca28e5dab
Sha256: 5a02f02d659bde82354ce6697d0efb23b711152c6b9da19a50778d6463fa0f2d
                                        
                                            GET /wbsweep/zh/wheel/menu-shengsiong.png HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 206
Connection: keep-alive
Last-Modified: Mon, 16 May 2022 01:24:14 GMT
ETag: "ce-5df16e1d018c0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lz6JMoybYxtIygsPZCeKedBElOaCoFWL%2BN8fYbEKJj%2FBD8GNhQvZNAR8yAHu%2BwnI1fMIIvD9yCTZ1N3bXVU5eVUWmWbc5PpLkz1hbU0kFCa%2FAN6QzWdupeClLasnN%2Bb9s2Gj9GW5d%2BNMybLY6He2P%2B8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf78cd220b59-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 40 x 36, 4-bit colormap, non-interlaced\012- data
Size:   206
Md5:    86af01e00a27dab8057099daec489702
Sha1:   378b5ccab413871132f08961d3844730ed86fb6a
Sha256: 534c15b747d5f592782028e45940b80df079a387730d0b3f0ab797fb9f62d5e3
                                        
                                            GET /wbsweep/zh/wheel/hk15.jpg HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 1065
Connection: keep-alive
Last-Modified: Fri, 06 May 2022 13:05:26 GMT
ETag: "429-5de578314d9fd"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uYXXsXLw2Spuq%2F1twZaMR3IYA6O%2BLNpvYwD12XrcKQSPpz%2F5mDkdG%2FTEn0e5ABzCG39ZffhocL12FDSXedtjJH5F3N3Ux1hAKx4x1G7U3cGtsi8JdwJWMR5lsylU8FTiOtLptD06zZgvTpqf2clgzoc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf78db570afe-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size:   1065
Md5:    3dcd8af21ab9e0229d2bded0d4c4b636
Sha1:   cee5fd315e1d4e3648e627ea4d1c2f2a33622896
Sha256: 72bd4c23cd888e897b10f46646a5c17f156b9cebb22038b3ac3d00cd2647030c
                                        
                                            GET /wbsweep/zh/wheel/icon-right-shengsiong.png HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 225
Connection: keep-alive
Last-Modified: Mon, 16 May 2022 01:24:14 GMT
ETag: "e1-5df16e1d53945"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jan05YgesTlzvrHqeIJ8CUciWzryr1jqmtjy4KHqfO5ye5yd2yHPbkKIeM3K8XQ0hADBct%2BkGX2SjNZGhLdYrEJjcvqovoIxsgc73n00w8U%2FGSLFkmnvV%2BXoIIWZEQHCJ%2F8HZ16bIiVJD%2BPLrD3rKtE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf78ce8ab4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 39 x 28, 1-bit colormap, non-interlaced\012- data
Size:   225
Md5:    7d8ba69909455f77158fa76b90a4a8a5
Sha1:   e4d372dbca1550ed6b723f9806e73582f9b06521
Sha256: 6ca4da5cf006a6a3fd4851d6a02b5070dde0c87e5e44e02a8bb0b53fa9f36d77
                                        
                                            GET /wbsweep/zh/wheel/spin_prize2.png HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/style.css

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 1890
Connection: keep-alive
Last-Modified: Fri, 06 May 2022 13:05:21 GMT
ETag: "762-5de5782cca55d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IKVGA7HN4eY1jVLexYN5YuUqDFubCdc0oRTPD%2Fmn4ExBvHUFy3klMzCHqRwd4COWhVyFGsxJq0lkngAKZ2UhMpaYzPUUx7ejuKVqBV4QcWp09vRa8bh1IN8jiuu9cFh%2FEWcQ%2FLuWQwlaDiIsZTPFzMQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf78cfc4b4fd-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 142 x 173, 4-bit colormap, non-interlaced\012- data
Size:   1890
Md5:    7036fee4ba5b6009050412490607b03b
Sha1:   a96277e7cd406d8b8cebee70f9da647ed8eb2811
Sha256: 1f94e057950d5af4ab3e59aae248d0b76dd39ebfc0dcc39f3e4ba0ef9d619a72
                                        
                                            GET /wbsweep/zh/wheel/ko11.jpg HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 1065
Connection: keep-alive
Last-Modified: Fri, 06 May 2022 13:05:23 GMT
ETag: "429-5de5782ef7b74"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5fheuxyCcgILcxfN6s32rGyUh5TvtRBo37Zagi1cLwyibkYULh2qRFndP5Bo%2BbouulrFL6FrlmOWY548RlYZ5AYfNXxOW6qRbnIOQpoLNOt3TOgP%2BdJKWWV780P8gSxg6o4MHdQ0A8c8Aj%2BNl%2F4C9y8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf78deb6fab4-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size:   1065
Md5:    8f9150c620cc90075fcd6712df19e1d5
Sha1:   66123e1b1a94db0d8a96c7dd4243d158b9db114e
Sha256: ec90b28f6106eb9eb94fdda0225a360751ede9c7f2574eba230534a8fc9e666e
                                        
                                            GET /wbsweep/zh/wheel/hk16.jpg HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 1213
Connection: keep-alive
Last-Modified: Fri, 06 May 2022 13:05:25 GMT
ETag: "4bd-5de578304110e"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wt7mwun7Qp59xOgz0Ra90Yg6%2BCV4nIohdmXPU%2BFY90zJBB1qjt8Nt7D8mbO3u8msNrlIN7uyiYOfxY37v0BG2Z%2BXgkllUTLcoPNtPdmbndHGFOcia6UmtstF%2BYO59N5K677mgvfXLQ9tr62BmhuUtv4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf78dd280b69-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size:   1213
Md5:    1dbb14e6699e2fa550d4a65c2d3d526f
Sha1:   a84dd184df7bf6d3b2e741e9c0142cfbcffe392d
Sha256: f33acb60a4036e6615127ac604a53f697137e8f4aa29aadff0cc846093597cfd
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E391B5BEDFCFE57A41084DD76AD03ABD7E3896DF276F798ECBFBC584BB5D1189"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11704
Expires: Wed, 25 Jan 2023 06:13:39 GMT
Date: Wed, 25 Jan 2023 02:58:35 GMT
Connection: keep-alive

                                        
                                            POST /zone?&pub=0&zone_id=4984707&is_mobile=false&domain=y.superiorvivaciousdirect.shop&var=&ymid=&var_3=&dsig=&action=prerequest HTTP/1.1 
Host: gauvaiho.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://y.superiorvivaciousdirect.shop
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

search
                                         139.45.197.251
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 25 Jan 2023 02:58:35 GMT
content-length: 0
x-trace-id: ebae954bd5ca7e891d3729c12479f611
access-control-allow-origin: http://y.superiorvivaciousdirect.shop
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

                                        
                                            GET /wbsweep/zh/wheel/gift.gif HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 7819
Connection: keep-alive
Last-Modified: Fri, 06 May 2022 13:05:18 GMT
ETag: "1e8b-5de5782a458d1"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e4g%2B0l27MrJg8iiIvxYBdfbzZB7MBW02INmAzniC3UpHynFXRNdlPIzNujyXRWjoBU7tD7sY7m%2Bb2Gq8vPZsm6SlEWZUN8BPxKCOojgfOpfk5ZHWH7LAof8X4K7gkORFffhLCEIZtjMLxJE9c7clYqQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf79bd570b59-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 70 x 70\012- data
Size:   7819
Md5:    0d61554227445957833d5a59fb50720c
Sha1:   b6717ef98f131eeb1bca21a53907e31ea939177b
Sha256: 6267cfe381b8def516dc6d81a4a099350d66236c18c605c7059456cd48d26e99
                                        
                                            GET /wbsweep/zh/wheel/supermarket-wheel.png HTTP/1.1 
Host: y.superiorvivaciousdirect.shop
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://y.superiorvivaciousdirect.shop/wbsweep/zh/wheel/index-zhtrad-supermarket1000-x-mas.html

search
                                         104.16.118.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 25 Jan 2023 02:58:35 GMT
Content-Length: 60106
Connection: keep-alive
Last-Modified: Wed, 14 Dec 2022 07:58:31 GMT
ETag: "eaca-5efc51a3edd98"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kv8MguM5Vx1xZbUgdaUbtEVlKgGlPzberHRuyGovgtzbc9m2rJLDazH%2BdWmXNYkc4bgei2pFMtmZpB%2FV7l3UfWnGLQozJmQv%2FhY3vs8egGP9VQeIXGmGUL0Nm%2FT%2FyFbzDB3Z0BOO09zsbTb8VhmYX6g%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78edbf79cb950afe-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 330 x 330, 8-bit/color RGBA, non-interlaced\012- data
Size:   60106
Md5:    e647d22df3644369aefc24e6e2a7d72c
Sha1:   649ce49e64d80fb1c7e29d91a5070864d0276f12
Sha256: 68b4d2aea510b4b516e702bdf20ce03319294e5ad972ab53681832d66c932cb8
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 02:17:31 GMT
age: 2464
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18478
Expires: Wed, 25 Jan 2023 08:06:33 GMT
Date: Wed, 25 Jan 2023 02:58:35 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6I82FQvGYLO2o+onOueJ1w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         44.235.159.98
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7Xfj143M5KHyQmh5kTxaGBm6s00=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6343
Expires: Wed, 25 Jan 2023 04:44:20 GMT
Date: Wed, 25 Jan 2023 02:58:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6343
Expires: Wed, 25 Jan 2023 04:44:20 GMT
Date: Wed, 25 Jan 2023 02:58:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6343
Expires: Wed, 25 Jan 2023 04:44:20 GMT
Date: Wed, 25 Jan 2023 02:58:37 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42c8799a-4bfb-409b-9789-78388344ffa6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7266
x-amzn-requestid: 97a4233c-38fc-461a-afb5-d89b3f25681b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFHVkGsmIAMFqEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb85bd-634989b11d1b5c7b0e047f57;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 06:27:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cgsCHmWkKtiMLK9_i-TqXW4dQB2AFgdkZ-U3-5Mpr7YcStQIpAaiGw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 08:57:59 GMT
age: 64838
etag: "f003c2a8a841d70c0c77d28362aa855e5c4826ae"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7266
Md5:    cd550f762800dcbbd86f599c1283050b
Sha1:   f003c2a8a841d70c0c77d28362aa855e5c4826ae
Sha256: f5d669beac28d5dd73b7850b601b965d41a6192d8dc226c65a2eb85bdb5b77e5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3411
x-amzn-requestid: 62afd364-e94f-45ff-ba6c-9b589fc53e5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-EyCEzrIAMFb8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8b4d9-203f51040f82f12d535446c4;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 03:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3Ke5d5WguVrF_Phnhu9ojzN5Md0VkYnFfxKNoh5HHrmHwPI90IAIdA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 04:49:41 GMT
age: 79736
etag: "2bd02a45c8b407e36a41a482b121ea3e14f7c722"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3411
Md5:    805711aaab303931f8966bbf73aeda52
Sha1:   2bd02a45c8b407e36a41a482b121ea3e14f7c722
Sha256: 66268668c1a970268d75beb1b57f66a759bedac76958a3359cb23104de40fbeb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07f8fda5-486e-4c4b-82f2-d763219f4562.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6715
x-amzn-requestid: c808c9d9-bbbb-43ff-ab15-33074a760093
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4BO5En_oAMFTzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c648c5-67151eb46f5a10b0732fbd09;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:05:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0pvebF903zoRPgzBK2gxMlcYQTurylOzzCfOO07hYCG5aD7wX_fl9g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 19:26:10 GMT
age: 27147
etag: "298cafecdcac99de25fe5c2c4c993487f73ced6b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6715
Md5:    6fa8338e574e2b8272ad3ca7cd9d1d63
Sha1:   298cafecdcac99de25fe5c2c4c993487f73ced6b
Sha256: f75c20ebc4c0db2df40d958337cd87768714bdf53a48609ad0f97b7129b0b100
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8252
x-amzn-requestid: c7064a36-7bb0-42c7-9ee8-9ee798ce8cbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEq3UEjVoAMFipg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb582e-5be2ad2a217f9b4b6834a278;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: b4EbiS-go4Yy-UcA4CbKj10TbS6qKgQd6ZgqB3XVyd9ieBPszfx_jw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:47:57 GMT
age: 18640
etag: "c9b86b2b27063e0a58b0f237d451f9cf05b2122d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8252
Md5:    d10114508bd40d76f497fc5b9c064350
Sha1:   c9b86b2b27063e0a58b0f237d451f9cf05b2122d
Sha256: a156bd21bee2fca1d82940fb172a695044321ed432786ae100a7baf3b5e12b3f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd57136f3-3a32-4cb9-be6a-29e47e59a6f9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5732
x-amzn-requestid: 779904e5-f2c8-4d10-a3bf-0ed43b9ca019
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7ULOFf3oAMFfUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79a47-22f5fe110d67b7d8215368d4;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: kYNlMFpl4zmNWdYW1WatxKIqjZw4lWONAX0uXKBi0mfwzND1kTeLOg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 13:55:37 GMT
age: 46980
etag: "3a5ac9f9831aa4c735d335e7d24e9ccc5e1ee0d4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5732
Md5:    24a73392615d623dc852bdab43c9f133
Sha1:   3a5ac9f9831aa4c735d335e7d24e9ccc5e1ee0d4
Sha256: edc11bdc8b40a513dc62b32f7eff0ba1f80db27208bd80bd16235da3c369157b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9091
x-amzn-requestid: c5849f51-8fc6-40c0-a1e3-9deb74e06c59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRE7TEzxoAMFmuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d04eae-22d80a0c3e6485dd62f420ef;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 21:33:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JlD-eXZtA8-dDqRe6gMZSyNbPuksroMQ4J_L2g_NjPQB8KQGgZWpXA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:36:12 GMT
age: 19345
etag: "f6364de0805cf3cfe66d19293085da16a2c2f832"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9091
Md5:    af3ceda828750acf5ac7c837612a6e0f
Sha1:   f6364de0805cf3cfe66d19293085da16a2c2f832
Sha256: baa0cb6e3cec7f840477dfdcea518968f5b72a828dbd346abb09e2d3e3aa3bee