urlquery - report: braokeextrefore.com/8cf0787f-3dd4-4a3b-953b-559a204f0181

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
ocsp.sca1b.amazontrust.com (1)	1015	2017-03-03 15:20:51 UTC	2019-03-27 04:05:54 UTC	143.204.42.165
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2020-05-03 10:09:39 UTC	54.148.242.254
braokeextrefore.com (1)	0	2022-08-18 08:49:11 UTC	2022-11-27 07:44:32 UTC	3.124.99.72	Unknown ranking
r3.o.lencr.org (6)	344	No data	No data	23.36.76.226
ocsp.digicert.com (2)	86	2012-05-21 07:02:23 UTC	2020-05-02 20:58:10 UTC	93.184.220.29
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-11-27 05:29:56 UTC	34.102.187.140
content-signature-2.cdn.mozilla.net (1)	1152	No data	No data	34.160.144.191
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-11-27 05:29:57 UTC	34.117.237.239
www.luckboxllc.xyz (6)	0	2022-11-02 09:32:03 UTC	2022-11-27 21:09:53 UTC	54.230.111.100	Unknown ranking
hop.greenbluefrog.click (2)	0	2022-08-29 09:19:28 UTC	2022-11-27 13:59:54 UTC	108.178.23.115	Unknown ranking
img-getpocket.cdn.mozilla.net (6)	1631	2018-06-21 23:36:00 UTC	2020-02-19 04:43:25 UTC	34.120.237.76

Scan Date	Severity	Indicator	Comment
2022-11-27	2	braokeextrefore.com/8cf0787f-3dd4-4a3b-953b-559a204f0181	Phishing

Date	UQ / IDS / BL	URL	IP
2023-02-05 06:07:23 +0000	0 - 0 - 1	braokeextrefore.com/f8552512-5984-4e87-9404-0 (...)	3.124.99.72
2023-02-05 05:01:30 +0000	0 - 0 - 1	braokeextrefore.com/e6729198-39da-42ef-93f2-e (...)	3.124.99.72
2023-02-05 01:01:48 +0000	0 - 0 - 1	braokeextrefore.com/d23b81c4-83b5-45d5-910b-6 (...)	3.124.99.72
2023-02-04 23:04:45 +0000	0 - 0 - 1	braokeextrefore.com/3c88956c-b63c-4636-a278-b (...)	3.124.99.72
2023-02-04 17:12:14 +0000	0 - 0 - 1	braokeextrefore.com/7ca4137b-5d79-49ee-b8ca-e (...)	3.124.99.72

Date	UQ / IDS / BL	URL	IP
2023-02-05 14:14:50 +0000	0 - 0 - 12	reminderset.com/go/dc26c419-4bb2-4522-a4df-b5 (...)	3.70.16.242
2023-02-05 14:14:41 +0000	0 - 1 - 0	tdp.becs.com/	54.69.43.116
2023-02-05 14:14:27 +0000	0 - 1 - 1	track.buller-matuma.com/b5abab4e-82ef-4498-a6 (...)	18.195.128.171
2023-02-05 14:12:52 +0000	0 - 3 - 1	track.coolestdiscount.club/f245137f-65a6-45b0 (...)	18.184.38.55
2023-02-05 14:11:16 +0000	0 - 2 - 7	nhw3staging.serenitybirthstudio.com/wp-conten (...)	100.21.95.251

Date	UQ / IDS / BL	URL	IP
2023-02-05 06:07:23 +0000	0 - 0 - 1	braokeextrefore.com/f8552512-5984-4e87-9404-0 (...)	3.124.99.72
2023-02-05 05:01:30 +0000	0 - 0 - 1	braokeextrefore.com/e6729198-39da-42ef-93f2-e (...)	3.124.99.72
2023-02-05 01:01:48 +0000	0 - 0 - 1	braokeextrefore.com/d23b81c4-83b5-45d5-910b-6 (...)	3.124.99.72
2023-02-04 23:04:45 +0000	0 - 0 - 1	braokeextrefore.com/3c88956c-b63c-4636-a278-b (...)	3.124.99.72
2023-02-04 17:12:14 +0000	0 - 0 - 1	braokeextrefore.com/7ca4137b-5d79-49ee-b8ca-e (...)	3.124.99.72

Date	UQ / IDS / BL	URL	IP
2022-12-18 11:08:01 +0000	0 - 0 - 1	braokeextrefore.com/e3ed3d92-f201-47f8-8b62-2 (...)	3.124.99.72
2022-12-18 07:01:12 +0000	0 - 0 - 1	braokeextrefore.com/1f5fe611-43e3-4d50-b70f-f (...)	3.124.99.72
2022-12-13 08:07:20 +0000	0 - 0 - 1	braokeextrefore.com/3f86fab8-c377-401f-87e3-4 (...)	3.124.99.72
2022-12-05 06:00:43 +0000	0 - 0 - 1	braokeextrefore.com/8ec5fa84-4356-4670-b564-e (...)	3.124.99.72
2022-11-30 13:42:50 +0000	0 - 0 - 1	braokeextrefore.com/ced6182e-abe1-4437-bb54-f (...)	3.124.99.72

Request	Response
GET /8cf0787f-3dd4-4a3b-953b-559a204f0181 HTTP/1.1 Host: braokeextrefore.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: braokeextrefore.com/8cf0787f-3dd4-4a3b-953b-559a204f0181 FQDN: braokeextrefore.com IP: 3.124.99.72 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 3.124.99.72 HTTP/1.1 302 Server: nginx Date: Sun, 27 Nov 2022 22:08:28 GMT Content-Length: 0 Connection: keep-alive Cache-Control: no-store, no-cache, pre-check=0, post-check=0 Expires: Thu, 01 Jan 1970 00:00:00 GMT Location: https://www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/index.html?cep=foY7dXvnFeQVu3NYbsbwEvZ3HFjaVaiRGu_nYnN7laQ7qQoQDHrKucq8z77Qf4dojnNKcBtad9rDn9uh81G6qQLlMqSl1rE8GXSDniVdjuZJLv_D8jvoHbKagHJkXy8xXCXDG2ffU7esrvYxC65vGtgeRxPVuv9zLs0qBU00_WJ3l-y3RchQe_RPA1qsBvdNtvu-4cCXLOXrFApeNBKA8L8cHo0_8As0Z-5UmJ983GUy4hSnL9kwrxY00SCNLhvxOSQGVXGIdE2rqgP0QoezyJLNOqVRSErXdTh5oCitt0gBQn5lheX37V1h9ZbIiBBvDXgz8vjX7z_KBQW7MiiRMat3qDUu8s60hjHbuoAvy2-PjHg3y8U-k4Ozo9xuEUMM&lptoken=169a694e584c873e0899 Pragma: no-cache Set-Cookie: 8cf0787f-3dd4-4a3b-953b-559a204f0181-v4=G1DWvK9hdz9DXSPkNFWxlakLk4ebPOrpsiBBejyZHFw; Max-Age=86400; Expires=Mon, 28-Nov-2022 22:08:28 GMT; Domain=braokeextrefore.com; Path=/; HttpOnly cep-v4=xfetSJEXJ_hLBOlOfI7-Vz1fsW6ITX2HK1AHdfs13w_mlYQQf5_4psL7KLMd8xZgUwNkwOgRJrfKiP-QiH8PHtw5QUcyHnbOu4MYwEfsIueUDvkI1ul3UYbgxIlC4Kj73mLsUG0UUTwKDUG1IbUCRzn1mxTViTYZ6nIwBPSVjYI0-UJ9PFn6vSxc8_fLbyZ3N0gB09ta4-m3ffeV6zwvbZzDwQWJRayDdEfm2sSOBO7iK7aWpSjL7arr47m8BRpKcAwnux4ql2E9JmX3utmKSbKHZjkUvhbmlT74U7WKalZFqKw8uO8o0Rl6832wcuiFWhvj-R2bcZJ3ATrsXiQ9mBBfHLFEwGhfxt3PLH1mX05-RRKFNf0E207ke9JkBTks; Max-Age=86400; Expires=Mon, 28-Nov-2022 22:08:28 GMT; Domain=braokeextrefore.com; Path=/; HttpOnly --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - fortinet: Phishing
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1" Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12204 Expires: Mon, 28 Nov 2022 01:31:52 GMT Date: Sun, 27 Nov 2022 22:08:28 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: cdbad2434b7d127a4fc769807a9dc3e7 Sha1: fa98cd9fc2309ab4423f33f683d17bdb17d76713 Sha256: 560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5546 Cache-Control: max-age=136511 Date: Sun, 27 Nov 2022 22:08:28 GMT Etag: "63833c71-1d7" Expires: Tue, 29 Nov 2022 12:03:39 GMT Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT Server: ECS (ska/F70F) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 64b2a23eab6e5ae8c010ec7242be930c Sha1: 0673e4385ba01a5a245711bab96cafc34f765793 Sha256: 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sun, 27 Nov 2022 21:19:25 GMT cache-control: public,max-age=3600 age: 2943 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 567df7db606cf5d0871aa5bc9311b6da Sha1: 4263faac7cbab2fcaf6661911dcad5091c06be17 Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11014 Expires: Mon, 28 Nov 2022 01:12:02 GMT Date: Sun, 27 Nov 2022 22:08:28 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 3b56944f0e5716fd4fad2ec18994d4be Sha1: 61cafa4de31ba960d1145ec37272f6f6b6944e0c Sha256: 4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: sTwgVhSdCSMccsN4ZY0JpmkcUuH7v4FykX1fKPzQQxs6Ji7H01Y50tTc+4V0wlJH3YyBQxMaZPk= x-amz-request-id: BR61ZHX47Q5V27TB content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sun, 27 Nov 2022 21:44:47 GMT age: 1421 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Sun, 27 Nov 2022 22:08:28 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 143.204.42.165 HASH: cf70dd6f5678e63e7de86d0c538fed704a936d13d63263f7a662fc7406f70f99 143.204.42.165 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=108261 Date: Sun, 27 Nov 2022 22:08:28 GMT Etag: "6382e3c1-1d7" Expires: Tue, 29 Nov 2022 04:12:49 GMT Last-Modified: Sun, 27 Nov 2022 04:12:49 GMT Server: nginx X-Cache: Miss from cloudfront Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Fc1s_9S_NcCIM0JUJbw9s3o1G3KXBEtCPd7kH-kI0aktlU6k2Ab4-A== --- Additional Info --- Magic: data Size: 471 Md5: e86c12b6efdcc1d8ffc66c42e1db2eed Sha1: 9d216cd2af500d8bc4d6d101e50f16209dd59aac Sha256: cf70dd6f5678e63e7de86d0c538fed704a936d13d63263f7a662fc7406f70f99
GET /sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/c02173e7e4e2e6e95265f3f52dba5132a5a6e15111.gif HTTP/1.1 Host: www.luckboxllc.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/index.html?cep=foY7dXvnFeQVu3NYbsbwEvZ3HFjaVaiRGu_nYnN7laQ7qQoQDHrKucq8z77Qf4dojnNKcBtad9rDn9uh81G6qQLlMqSl1rE8GXSDniVdjuZJLv_D8jvoHbKagHJkXy8xXCXDG2ffU7esrvYxC65vGtgeRxPVuv9zLs0qBU00_WJ3l-y3RchQe_RPA1qsBvdNtvu-4cCXLOXrFApeNBKA8L8cHo0_8As0Z-5UmJ983GUy4hSnL9kwrxY00SCNLhvxOSQGVXGIdE2rqgP0QoezyJLNOqVRSErXdTh5oCitt0gBQn5lheX37V1h9ZbIiBBvDXgz8vjX7z_KBQW7MiiRMat3qDUu8s60hjHbuoAvy2-PjHg3y8U-k4Ozo9xuEUMM&lptoken=169a694e584c873e0899 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-Anima (...) FQDN: www.luckboxllc.xyz IP: 54.230.111.100 HASH: a79832a29a4c866c3f7830f60abfa91a89367ab6af66786104d92d85a9ff50ad 54.230.111.100 HTTP/2 200 OK content-type: image/gif content-length: 636270 date: Sun, 27 Nov 2022 14:49:29 GMT last-modified: Thu, 03 Nov 2022 05:24:16 GMT etag: "e9c2b911f7146d835ac0020b436d34e9" accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: G0YaHV4vexfQ7Cx_rqJymwCefJlRSS1SLoFMyxzOyR8YDQEfOWr2WQ== age: 26341 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 800 x 600\012- data Size: 636270 Md5: e9c2b911f7146d835ac0020b436d34e9 Sha1: 8a5e8a2275c780ffc650615325b6213d6e35d8f0 Sha256: a79832a29a4c866c3f7830f60abfa91a89367ab6af66786104d92d85a9ff50ad
GET /sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/index.html?cep=foY7dXvnFeQVu3NYbsbwEvZ3HFjaVaiRGu_nYnN7laQ7qQoQDHrKucq8z77Qf4dojnNKcBtad9rDn9uh81G6qQLlMqSl1rE8GXSDniVdjuZJLv_D8jvoHbKagHJkXy8xXCXDG2ffU7esrvYxC65vGtgeRxPVuv9zLs0qBU00_WJ3l-y3RchQe_RPA1qsBvdNtvu-4cCXLOXrFApeNBKA8L8cHo0_8As0Z-5UmJ983GUy4hSnL9kwrxY00SCNLhvxOSQGVXGIdE2rqgP0QoezyJLNOqVRSErXdTh5oCitt0gBQn5lheX37V1h9ZbIiBBvDXgz8vjX7z_KBQW7MiiRMat3qDUu8s60hjHbuoAvy2-PjHg3y8U-k4Ozo9xuEUMM&lptoken=169a694e584c873e0899 HTTP/1.1 Host: www.luckboxllc.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-Anima (...) FQDN: www.luckboxllc.xyz IP: 54.230.111.100 HASH: b418e15a7dabc03508c599e1c787790e145b711c66fa5dd63027a81d32b4ec76 54.230.111.100 HTTP/2 200 OK content-type: text/html last-modified: Thu, 03 Nov 2022 12:05:45 GMT server: AmazonS3 content-encoding: gzip date: Sun, 27 Nov 2022 04:49:03 GMT etag: W/"82f8e7b1b220ae723297577b1a4d7182" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: wMrbXqoWLCmjelnGrYDlMrNU9Y1YxqgbYE552pofVe4Ck7o1fMobhA== age: 62367 X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 48869 Md5: 9a00ed011280ea4db1ac6c6a343d98c6 Sha1: 443299960e9eac066aa5d38bece6337f57b8719b Sha256: b418e15a7dabc03508c599e1c787790e145b711c66fa5dd63027a81d32b4ec76
GET /sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/style.css HTTP/1.1 Host: www.luckboxllc.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/index.html?cep=foY7dXvnFeQVu3NYbsbwEvZ3HFjaVaiRGu_nYnN7laQ7qQoQDHrKucq8z77Qf4dojnNKcBtad9rDn9uh81G6qQLlMqSl1rE8GXSDniVdjuZJLv_D8jvoHbKagHJkXy8xXCXDG2ffU7esrvYxC65vGtgeRxPVuv9zLs0qBU00_WJ3l-y3RchQe_RPA1qsBvdNtvu-4cCXLOXrFApeNBKA8L8cHo0_8As0Z-5UmJ983GUy4hSnL9kwrxY00SCNLhvxOSQGVXGIdE2rqgP0QoezyJLNOqVRSErXdTh5oCitt0gBQn5lheX37V1h9ZbIiBBvDXgz8vjX7z_KBQW7MiiRMat3qDUu8s60hjHbuoAvy2-PjHg3y8U-k4Ozo9xuEUMM&lptoken=169a694e584c873e0899 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-Anima (...) FQDN: www.luckboxllc.xyz IP: 54.230.111.100 HASH: c2fab784ed0de26999ed323d0087e1f62dbb7b7b1c5c895643d1fde702c9e267 54.230.111.100 HTTP/2 200 OK content-type: text/css last-modified: Thu, 03 Nov 2022 05:24:19 GMT server: AmazonS3 content-encoding: br date: Sun, 27 Nov 2022 22:08:29 GMT etag: W/"5e1f5f4c96dc20f233a6ef9d8cc271ff" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: lOI-2DMmLlMqG2wjDEp7dDXzLxW9ctmsidXYfak5vEe78r53tJ3v_A== age: 10404 X-Firefox-Spdy: h2 --- Additional Info --- Magic: CSV text\012- , ASCII text Size: 9377 Md5: 75d82e0efce273a0c0f5b42d398756c7 Sha1: 53ef6eac17bde844bc89ad9ca047dd43f2ae8c81 Sha256: c2fab784ed0de26999ed323d0087e1f62dbb7b7b1c5c895643d1fde702c9e267
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sun, 27 Nov 2022 21:08:54 GMT cache-control: public,max-age=3600 age: 3575 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/99e01d3e0c461a43735019cc73db8074aa7ab504.png HTTP/1.1 Host: www.luckboxllc.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/index.html?cep=foY7dXvnFeQVu3NYbsbwEvZ3HFjaVaiRGu_nYnN7laQ7qQoQDHrKucq8z77Qf4dojnNKcBtad9rDn9uh81G6qQLlMqSl1rE8GXSDniVdjuZJLv_D8jvoHbKagHJkXy8xXCXDG2ffU7esrvYxC65vGtgeRxPVuv9zLs0qBU00_WJ3l-y3RchQe_RPA1qsBvdNtvu-4cCXLOXrFApeNBKA8L8cHo0_8As0Z-5UmJ983GUy4hSnL9kwrxY00SCNLhvxOSQGVXGIdE2rqgP0QoezyJLNOqVRSErXdTh5oCitt0gBQn5lheX37V1h9ZbIiBBvDXgz8vjX7z_KBQW7MiiRMat3qDUu8s60hjHbuoAvy2-PjHg3y8U-k4Ozo9xuEUMM&lptoken=169a694e584c873e0899 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-Anima (...) FQDN: www.luckboxllc.xyz IP: 54.230.111.100 HASH: cfee15b8d3ffca2475ecab6e25900ed1454d9c327fca1942728629452ad00ee6 54.230.111.100 HTTP/2 200 OK content-type: image/png content-length: 96 date: Sun, 27 Nov 2022 14:49:29 GMT last-modified: Thu, 03 Nov 2022 05:24:13 GMT etag: "35b9ee99fe32d3d68f7807c43d768092" accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: r_K4tsBDsa8upgAwphh4mRpMWjxaonxrdE7YOgAfF-YVNStEAetSjA== age: 26340 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 16 x 16, 1-bit colormap, non-interlaced\012- data Size: 96 Md5: 35b9ee99fe32d3d68f7807c43d768092 Sha1: 99e01d3e0c461a43735019cc73db8074aa7ab504 Sha256: cfee15b8d3ffca2475ecab6e25900ed1454d9c327fca1942728629452ad00ee6
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5607 Cache-Control: max-age=131510 Date: Sun, 27 Nov 2022 22:08:29 GMT Etag: "638328ac-1d7" Expires: Tue, 29 Nov 2022 10:40:19 GMT Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT Server: ECS (ska/F70F) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: a6fee11dfe1b88cd768a0ca3e2bd0c89 Sha1: 59cec9a44a4a92467678afe65f347f68641a2174 Sha256: 50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
GET /sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/flag.png HTTP/1.1 Host: www.luckboxllc.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/index.html?cep=foY7dXvnFeQVu3NYbsbwEvZ3HFjaVaiRGu_nYnN7laQ7qQoQDHrKucq8z77Qf4dojnNKcBtad9rDn9uh81G6qQLlMqSl1rE8GXSDniVdjuZJLv_D8jvoHbKagHJkXy8xXCXDG2ffU7esrvYxC65vGtgeRxPVuv9zLs0qBU00_WJ3l-y3RchQe_RPA1qsBvdNtvu-4cCXLOXrFApeNBKA8L8cHo0_8As0Z-5UmJ983GUy4hSnL9kwrxY00SCNLhvxOSQGVXGIdE2rqgP0QoezyJLNOqVRSErXdTh5oCitt0gBQn5lheX37V1h9ZbIiBBvDXgz8vjX7z_KBQW7MiiRMat3qDUu8s60hjHbuoAvy2-PjHg3y8U-k4Ozo9xuEUMM&lptoken=169a694e584c873e0899 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-Anima (...) FQDN: www.luckboxllc.xyz IP: 54.230.111.100 HASH: 23c1dc2a7c8dc63c007177b262bf9ae588615bfcca96b053163c18996d4c8bc8 54.230.111.100 HTTP/2 200 OK content-type: image/png content-length: 27233 last-modified: Thu, 03 Nov 2022 05:24:17 GMT accept-ranges: bytes server: AmazonS3 date: Sun, 27 Nov 2022 22:08:30 GMT etag: "bc0851c50f07aaefdac4753dc4dd6ed5" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: zYkdLGpX8igNAAI1SOHfQVG7NGYwq9cQFEqmpQwZQGsFN0LUTsSmng== X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 35 x 20, 8-bit/color RGBA, non-interlaced\012- data Size: 27233 Md5: bc0851c50f07aaefdac4753dc4dd6ed5 Sha1: f624df1d4403b8cf2880ee450c1fac3ae2cdf482 Sha256: 23c1dc2a7c8dc63c007177b262bf9ae588615bfcca96b053163c18996d4c8bc8
GET /js/pub.min.js HTTP/1.1 Host: hop.greenbluefrog.click User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.luckboxllc.xyz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: hop.greenbluefrog.click/js/pub.min.js FQDN: hop.greenbluefrog.click IP: 108.178.23.115 HASH: d2c713c2734353dc0ef2896d057021e9b04f35bb7c851d920d390941769c66be 108.178.23.115 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sun, 27 Nov 2022 22:08:29 GMT content-length: 1482 last-modified: Fri, 09 Sep 2022 11:46:08 GMT vary: Accept-Encoding etag: "631b2780-5ca" content-encoding: gzip expires: Mon, 28 Nov 2022 22:08:29 GMT cache-control: max-age=86400 strict-transport-security: max-age=31536000; includeSubdomains; X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (2752) Size: 1482 Md5: 31c303586c1b78e33984bd252b8e2644 Sha1: 8083e2aad4cbf8242a4e6fb53657d49552b85f82 Sha256: d2c713c2734353dc0ef2896d057021e9b04f35bb7c851d920d390941769c66be
GET /sw.js?v=1669586909419 HTTP/1.1 Host: www.luckboxllc.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Service-Worker: script Connection: keep-alive Sec-Fetch-Dest: serviceworker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers	URL: www.luckboxllc.xyz/sw.js?v=1669586909419 FQDN: www.luckboxllc.xyz IP: 54.230.111.100 HASH: 30160e59ded9cd7035b13f61d711bb9523fc6b03f68f51d7f42f429d7be11775 54.230.111.100 HTTP/2 200 OK content-type: application/javascript content-length: 55 last-modified: Mon, 12 Sep 2022 05:41:36 GMT accept-ranges: bytes server: AmazonS3 date: Sun, 27 Nov 2022 22:08:29 GMT etag: "26f6b690be52718039148d66237935c9" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: RB77jVavQLCjgPlPuH5dSUwiQpPtg76d2joFQZcIRc7PYi_Ya-dVqA== age: 17229 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 55 Md5: 26f6b690be52718039148d66237935c9 Sha1: c37b26ac420dccfb6ca1e6829d9a81caad399ba5 Sha256: 30160e59ded9cd7035b13f61d711bb9523fc6b03f68f51d7f42f429d7be11775
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: QGFzg5hg6jgedaPQMfl1zw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 54.148.242.254 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 54.148.242.254 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: X4FG5MM3qtnJ4RLOdvad+LsKVPg= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sw.js HTTP/1.1 Host: hop.greenbluefrog.click User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.luckboxllc.xyz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers	URL: hop.greenbluefrog.click/sw.js FQDN: hop.greenbluefrog.click IP: 108.178.23.115 HASH: 70d744bbd19a0cc35c8d9f1d8ba181c6cdc902f95799ac750da4adc3ad987b11 108.178.23.115 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sun, 27 Nov 2022 22:08:30 GMT content-length: 776 last-modified: Mon, 03 Oct 2022 07:40:54 GMT vary: Accept-Encoding etag: "633a9206-308" content-encoding: gzip content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src ; style-src 'unsafe-inline'; X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text Size: 776 Md5: f72a11763f13b05c1f2379d13387dd05 Sha1: 002fbf7672d3f4655b89b6413d160e4185ce9900 Sha256: 70d744bbd19a0cc35c8d9f1d8ba181c6cdc902f95799ac750da4adc3ad987b11
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0" Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15111 Expires: Mon, 28 Nov 2022 02:20:22 GMT Date: Sun, 27 Nov 2022 22:08:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 8bb181e3f5ca898c6e31a8efc2e28291 Sha1: eda3a91f8e2cbc5467da08ad85e6f6a30702b66c Sha256: 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0" Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15111 Expires: Mon, 28 Nov 2022 02:20:22 GMT Date: Sun, 27 Nov 2022 22:08:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 8bb181e3f5ca898c6e31a8efc2e28291 Sha1: eda3a91f8e2cbc5467da08ad85e6f6a30702b66c Sha256: 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0" Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15111 Expires: Mon, 28 Nov 2022 02:20:22 GMT Date: Sun, 27 Nov 2022 22:08:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 8bb181e3f5ca898c6e31a8efc2e28291 Sha1: eda3a91f8e2cbc5467da08ad85e6f6a30702b66c Sha256: 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0" Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15111 Expires: Mon, 28 Nov 2022 02:20:22 GMT Date: Sun, 27 Nov 2022 22:08:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 8bb181e3f5ca898c6e31a8efc2e28291 Sha1: eda3a91f8e2cbc5467da08ad85e6f6a30702b66c Sha256: 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10199 x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cOo4iF1VIAMF09g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 21:42:14 GMT age: 1577 etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10199 Md5: 2cd887044e91d7ed0f1a8d7119ff7dd0 Sha1: ae8aa4ce6ddaccba771fe65446926b60fc5628da Sha256: bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 4224287ba765da59c877ac4f1dec65accc5bec934b7598d9cbbee669ba4ab12e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6883 x-amzn-requestid: 9e3878c9-1817-427e-b121-969a8cbc7ad8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cL1ySF0tIAMFY4Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638169a8-5143ffea77b70cf67ef60ad7;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 01:19:36 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: K4mksi8EQxTxRXDqN-0iWJc-LmiI7joDX5xGmPb1HetziDj4mRCC7Q== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 05:53:37 GMT age: 58494 etag: "590c34be54c9889eec4ff7993e070fda836f711f" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6883 Md5: f7f16c0f8a8e710210ce77c0e4c1c2a2 Sha1: 590c34be54c9889eec4ff7993e070fda836f711f Sha256: 4224287ba765da59c877ac4f1dec65accc5bec934b7598d9cbbee669ba4ab12e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5099 x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cOo4jFBvoAMFl1w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 21:42:14 GMT age: 1577 etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5099 Md5: 433875a1b1fef34e45f2d8ac344c07e3 Sha1: f2129466436cbbdd58abe42a47fb7af19eba58e6 Sha256: ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4309 x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: blE0hGNioAMF_Tg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0 x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 05:54:16 GMT age: 58455 etag: "126771b86638108050cf57c0d12faa27f80f0edb" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4309 Md5: 841a4b110022a99ddea6f7bf66df0fa1 Sha1: 126771b86638108050cf57c0d12faa27f80f0edb Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8387 x-amzn-requestid: fc238ea9-0169-47fc-b92e-f12b3ee27c72 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b433YGtOoAMFexg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6379d362-2f97c67a2e5f05b6746cf858;Sampled=0 x-amzn-remapped-date: Sun, 20 Nov 2022 07:12:34 GMT x-amz-cf-pop: SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: oMrdB0NUGe5CqTY7eFd3u8xaSy9TyDdOrf1awBikFJzm3jWreD2irQ== via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 12:30:20 GMT age: 34691 etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8387 Md5: 4e97baa4851785eac92c719abf481c64 Sha1: c32a57038d3cdbc514c9081c9938eca6a04fb481 Sha256: adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8817 x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cJ40OEOqIAMFaOg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0 x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA== via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 10:16:35 GMT age: 42716 etag: "308c08784ce4a0757cbd112807555b83e17a1d56" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8817 Md5: 741ddfb19764ac9a77509e7e87cfbfb2 Sha1: 308c08784ce4a0757cbd112807555b83e17a1d56 Sha256: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 5546 

                                        
                                            
Cache-Control: max-age=136511 

                                        
                                            
Date: Sun, 27 Nov 2022 22:08:28 GMT 

                                        
                                            
Etag: "63833c71-1d7" 

                                        
                                            
Expires: Tue, 29 Nov 2022 12:03:39 GMT 

                                        
                                            
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT 

                                        
                                            
Server: ECS (ska/F70F) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    64b2a23eab6e5ae8c010ec7242be930c

                                                Sha1:   0673e4385ba01a5a245711bab96cafc34f765793

                                                Sha256: 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4" 

                                        
                                            
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=11014 

                                        
                                            
Expires: Mon, 28 Nov 2022 01:12:02 GMT 

                                        
                                            
Date: Sun, 27 Nov 2022 22:08:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    3b56944f0e5716fd4fad2ec18994d4be

                                                Sha1:   61cafa4de31ba960d1145ec37272f6f6b6944e0c

                                                Sha256: 4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 27 Nov 2022 22:08:28 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            GET /sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/c02173e7e4e2e6e95265f3f52dba5132a5a6e15111.gif HTTP/1.1 

                                        
                                            
Host: www.luckboxllc.xyz

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/index.html?cep=foY7dXvnFeQVu3NYbsbwEvZ3HFjaVaiRGu_nYnN7laQ7qQoQDHrKucq8z77Qf4dojnNKcBtad9rDn9uh81G6qQLlMqSl1rE8GXSDniVdjuZJLv_D8jvoHbKagHJkXy8xXCXDG2ffU7esrvYxC65vGtgeRxPVuv9zLs0qBU00_WJ3l-y3RchQe_RPA1qsBvdNtvu-4cCXLOXrFApeNBKA8L8cHo0_8As0Z-5UmJ983GUy4hSnL9kwrxY00SCNLhvxOSQGVXGIdE2rqgP0QoezyJLNOqVRSErXdTh5oCitt0gBQn5lheX37V1h9ZbIiBBvDXgz8vjX7z_KBQW7MiiRMat3qDUu8s60hjHbuoAvy2-PjHg3y8U-k4Ozo9xuEUMM&lptoken=169a694e584c873e0899 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.230.111.100

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
content-length: 636270 

                                        
                                            
date: Sun, 27 Nov 2022 14:49:29 GMT 

                                        
                                            
last-modified: Thu, 03 Nov 2022 05:24:16 GMT 

                                        
                                            
etag: "e9c2b911f7146d835ac0020b436d34e9" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-P1 

                                        
                                            
x-amz-cf-id: G0YaHV4vexfQ7Cx_rqJymwCefJlRSS1SLoFMyxzOyR8YDQEfOWr2WQ== 

                                        
                                            
age: 26341 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 800 x 600\012- data

                                                Size:   636270

                                                Md5:    e9c2b911f7146d835ac0020b436d34e9

                                                Sha1:   8a5e8a2275c780ffc650615325b6213d6e35d8f0

                                                Sha256: a79832a29a4c866c3f7830f60abfa91a89367ab6af66786104d92d85a9ff50ad

                                        
                                            GET /sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/style.css HTTP/1.1 

                                        
                                            
Host: www.luckboxllc.xyz

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/index.html?cep=foY7dXvnFeQVu3NYbsbwEvZ3HFjaVaiRGu_nYnN7laQ7qQoQDHrKucq8z77Qf4dojnNKcBtad9rDn9uh81G6qQLlMqSl1rE8GXSDniVdjuZJLv_D8jvoHbKagHJkXy8xXCXDG2ffU7esrvYxC65vGtgeRxPVuv9zLs0qBU00_WJ3l-y3RchQe_RPA1qsBvdNtvu-4cCXLOXrFApeNBKA8L8cHo0_8As0Z-5UmJ983GUy4hSnL9kwrxY00SCNLhvxOSQGVXGIdE2rqgP0QoezyJLNOqVRSErXdTh5oCitt0gBQn5lheX37V1h9ZbIiBBvDXgz8vjX7z_KBQW7MiiRMat3qDUu8s60hjHbuoAvy2-PjHg3y8U-k4Ozo9xuEUMM&lptoken=169a694e584c873e0899 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.230.111.100

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css

                                        

                                        
                                            
last-modified: Thu, 03 Nov 2022 05:24:19 GMT 

                                        
                                            
server: AmazonS3 

                                        
                                            
content-encoding: br 

                                        
                                            
date: Sun, 27 Nov 2022 22:08:29 GMT 

                                        
                                            
etag: W/"5e1f5f4c96dc20f233a6ef9d8cc271ff" 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-P1 

                                        
                                            
x-amz-cf-id: lOI-2DMmLlMqG2wjDEp7dDXzLxW9ctmsidXYfak5vEe78r53tJ3v_A== 

                                        
                                            
age: 10404 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  CSV text\012- , ASCII text

                                                Size:   9377

                                                Md5:    75d82e0efce273a0c0f5b42d398756c7

                                                Sha1:   53ef6eac17bde844bc89ad9ca047dd43f2ae8c81

                                                Sha256: c2fab784ed0de26999ed323d0087e1f62dbb7b7b1c5c895643d1fde702c9e267

                                        
                                            GET /sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/99e01d3e0c461a43735019cc73db8074aa7ab504.png HTTP/1.1 

                                        
                                            
Host: www.luckboxllc.xyz

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/index.html?cep=foY7dXvnFeQVu3NYbsbwEvZ3HFjaVaiRGu_nYnN7laQ7qQoQDHrKucq8z77Qf4dojnNKcBtad9rDn9uh81G6qQLlMqSl1rE8GXSDniVdjuZJLv_D8jvoHbKagHJkXy8xXCXDG2ffU7esrvYxC65vGtgeRxPVuv9zLs0qBU00_WJ3l-y3RchQe_RPA1qsBvdNtvu-4cCXLOXrFApeNBKA8L8cHo0_8As0Z-5UmJ983GUy4hSnL9kwrxY00SCNLhvxOSQGVXGIdE2rqgP0QoezyJLNOqVRSErXdTh5oCitt0gBQn5lheX37V1h9ZbIiBBvDXgz8vjX7z_KBQW7MiiRMat3qDUu8s60hjHbuoAvy2-PjHg3y8U-k4Ozo9xuEUMM&lptoken=169a694e584c873e0899 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.230.111.100

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
content-length: 96 

                                        
                                            
date: Sun, 27 Nov 2022 14:49:29 GMT 

                                        
                                            
last-modified: Thu, 03 Nov 2022 05:24:13 GMT 

                                        
                                            
etag: "35b9ee99fe32d3d68f7807c43d768092" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-P1 

                                        
                                            
x-amz-cf-id: r_K4tsBDsa8upgAwphh4mRpMWjxaonxrdE7YOgAfF-YVNStEAetSjA== 

                                        
                                            
age: 26340 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 16 x 16, 1-bit colormap, non-interlaced\012- data

                                                Size:   96

                                                Md5:    35b9ee99fe32d3d68f7807c43d768092

                                                Sha1:   99e01d3e0c461a43735019cc73db8074aa7ab504

                                                Sha256: cfee15b8d3ffca2475ecab6e25900ed1454d9c327fca1942728629452ad00ee6

                                        
                                            GET /sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/flag.png HTTP/1.1 

                                        
                                            
Host: www.luckboxllc.xyz

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.luckboxllc.xyz/sweeps/giftcard/ES/GiftCard-ES-AnimationFlag/index.html?cep=foY7dXvnFeQVu3NYbsbwEvZ3HFjaVaiRGu_nYnN7laQ7qQoQDHrKucq8z77Qf4dojnNKcBtad9rDn9uh81G6qQLlMqSl1rE8GXSDniVdjuZJLv_D8jvoHbKagHJkXy8xXCXDG2ffU7esrvYxC65vGtgeRxPVuv9zLs0qBU00_WJ3l-y3RchQe_RPA1qsBvdNtvu-4cCXLOXrFApeNBKA8L8cHo0_8As0Z-5UmJ983GUy4hSnL9kwrxY00SCNLhvxOSQGVXGIdE2rqgP0QoezyJLNOqVRSErXdTh5oCitt0gBQn5lheX37V1h9ZbIiBBvDXgz8vjX7z_KBQW7MiiRMat3qDUu8s60hjHbuoAvy2-PjHg3y8U-k4Ozo9xuEUMM&lptoken=169a694e584c873e0899 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.230.111.100

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
content-length: 27233 

                                        
                                            
last-modified: Thu, 03 Nov 2022 05:24:17 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
date: Sun, 27 Nov 2022 22:08:30 GMT 

                                        
                                            
etag: "bc0851c50f07aaefdac4753dc4dd6ed5" 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
x-cache: RefreshHit from cloudfront 

                                        
                                            
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-P1 

                                        
                                            
x-amz-cf-id: zYkdLGpX8igNAAI1SOHfQVG7NGYwq9cQFEqmpQwZQGsFN0LUTsSmng== 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 35 x 20, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   27233

                                                Md5:    bc0851c50f07aaefdac4753dc4dd6ed5

                                                Sha1:   f624df1d4403b8cf2880ee450c1fac3ae2cdf482

                                                Sha256: 23c1dc2a7c8dc63c007177b262bf9ae588615bfcca96b053163c18996d4c8bc8

                                        
                                            GET /sw.js?v=1669586909419 HTTP/1.1 

                                        
                                            
Host: www.luckboxllc.xyz

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Service-Worker: script 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: serviceworker 

                                        
                                            
Sec-Fetch-Mode: same-origin 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
TE: trailers

                                         54.230.111.100

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
content-length: 55 

                                        
                                            
last-modified: Mon, 12 Sep 2022 05:41:36 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
date: Sun, 27 Nov 2022 22:08:29 GMT 

                                        
                                            
etag: "26f6b690be52718039148d66237935c9" 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-P1 

                                        
                                            
x-amz-cf-id: RB77jVavQLCjgPlPuH5dSUwiQpPtg76d2joFQZcIRc7PYi_Ya-dVqA== 

                                        
                                            
age: 17229 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   55

                                                Md5:    26f6b690be52718039148d66237935c9

                                                Sha1:   c37b26ac420dccfb6ca1e6829d9a81caad399ba5

                                                Sha256: 30160e59ded9cd7035b13f61d711bb9523fc6b03f68f51d7f42f429d7be11775

                                        
                                            GET /sw.js HTTP/1.1 

                                        
                                            
Host: hop.greenbluefrog.click

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.luckboxllc.xyz/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
TE: trailers

                                         108.178.23.115

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 27 Nov 2022 22:08:30 GMT 

                                        
                                            
content-length: 776 

                                        
                                            
last-modified: Mon, 03 Oct 2022 07:40:54 GMT 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
etag: "633a9206-308" 

                                        
                                            
content-encoding: gzip 

                                        
                                            
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   776

                                                Md5:    f72a11763f13b05c1f2379d13387dd05

                                                Sha1:   002fbf7672d3f4655b89b6413d160e4185ce9900

                                                Sha256: 70d744bbd19a0cc35c8d9f1d8ba181c6cdc902f95799ac750da4adc3ad987b11

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0" 

                                        
                                            
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=15111 

                                        
                                            
Expires: Mon, 28 Nov 2022 02:20:22 GMT 

                                        
                                            
Date: Sun, 27 Nov 2022 22:08:31 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    8bb181e3f5ca898c6e31a8efc2e28291

                                                Sha1:   eda3a91f8e2cbc5467da08ad85e6f6a30702b66c

                                                Sha256: 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0" 

                                        
                                            
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=15111 

                                        
                                            
Expires: Mon, 28 Nov 2022 02:20:22 GMT 

                                        
                                            
Date: Sun, 27 Nov 2022 22:08:31 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    8bb181e3f5ca898c6e31a8efc2e28291

                                                Sha1:   eda3a91f8e2cbc5467da08ad85e6f6a30702b66c

                                                Sha256: 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 6883 

                                        
                                            
x-amzn-requestid: 9e3878c9-1817-427e-b121-969a8cbc7ad8 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cL1ySF0tIAMFY4Q= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-638169a8-5143ffea77b70cf67ef60ad7;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 26 Nov 2022 01:19:36 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: K4mksi8EQxTxRXDqN-0iWJc-LmiI7joDX5xGmPb1HetziDj4mRCC7Q== 

                                        
                                            
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 05:53:37 GMT 

                                        
                                            
age: 58494 

                                        
                                            
etag: "590c34be54c9889eec4ff7993e070fda836f711f" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   6883

                                                Md5:    f7f16c0f8a8e710210ce77c0e4c1c2a2

                                                Sha1:   590c34be54c9889eec4ff7993e070fda836f711f

                                                Sha256: 4224287ba765da59c877ac4f1dec65accc5bec934b7598d9cbbee669ba4ab12e

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 4309 

                                        
                                            
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: blE0hGNioAMF_Tg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT 

                                        
                                            
x-amz-cf-pop: SEA73-P1 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g== 

                                        
                                            
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 05:54:16 GMT 

                                        
                                            
age: 58455 

                                        
                                            
etag: "126771b86638108050cf57c0d12faa27f80f0edb" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4309

                                                Md5:    841a4b110022a99ddea6f7bf66df0fa1

                                                Sha1:   126771b86638108050cf57c0d12faa27f80f0edb

                                                Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8817 

                                        
                                            
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cJ40OEOqIAMFaOg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA== 

                                        
                                            
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 10:16:35 GMT 

                                        
                                            
age: 42716 

                                        
                                            
etag: "308c08784ce4a0757cbd112807555b83e17a1d56" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8817

                                                Md5:    741ddfb19764ac9a77509e7e87cfbfb2

                                                Sha1:   308c08784ce4a0757cbd112807555b83e17a1d56

                                                Sha256: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e

URL	braokeextrefore.com/8cf0787f-3dd4-4a3b-953b-559a204f0181
IP	3.124.99.72 (Germany)
ASN	#16509 AMAZON-02
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-11-27 22:08:39 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	1
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (11)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 3.124.99.72

Last 5 reports on ASN: AMAZON-02

Last 5 reports on domain: braokeextrefore.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (5)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (29)

Overview

Domain Summary (11)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 3.124.99.72

Last 5 reports on ASN: AMAZON-02

Last 5 reports on domain: braokeextrefore.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (5)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (29)

Network Intrusion Detection Systems