www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
143.204.55.121200 OK 3.8 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
IP 143.204.55.121:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (329)
Hash 84dd729c3cb4e6329f29741fa7bb5c57
2cf8b91325990714955ef44525e7adbe45bab207
a2de06eba49a5ad3d99a2a1e9f4fc598b56598d4082d643bf3f6387cd5a0c706
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/gcspinner/EN/GC-EN-Spinner/index.html HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:22 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 11 Sep 2022 01:03:05 GMT
ETag: W/"a223c70c4756c7473ffa87bddd1784cf"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: K0nRxGuPUQBoSP0kxSdx6u9GAsPs7eHGITC46Tbd4QzrhKkCWVCHYA==
Age: 36225
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19078
Expires: Sun, 11 Sep 2022 16:24:47 GMT
Date: Sun, 11 Sep 2022 11:06:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 10:07:34 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 85c0jjMyCRnuh6A2fUvOftZaxBz-kDUPHj7TilMzPZ7cICXpXfgesQ==
Age: 3555
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HkrGrF3vsBi3WtiZdEterlZ5vRjs3IcwUKMfdK9ISNm6ZsIIQ05auw==
age: 13777
X-Firefox-Spdy: h2
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/style.css
143.204.55.121200 OK 3.2 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/style.css
IP 143.204.55.121:0
Hash f690b4ddd9b1f02d627ca1e8457f2f4d
fc46addb28840a8491f86a1c1f4315090c8555d8
7d18129faef6722de6e19564de68008b1a3e1f0eb318c11b75cf215c1d0bcb84
GET /sweeps/gcspinner/EN/GC-EN-Spinner/style.css HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:23:49 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 11 Sep 2022 09:04:26 GMT
ETag: W/"8c24a5cb4c55b9d6cd3029f5fd2c6fe7"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NOKkMhUGGLhCW7F2TFbCBxhmh59SjIskiXS90nDqUbFNPnqSjAC1rg==
Age: 7344
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/ix-g.png
143.204.55.121200 OK 16 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/ix-g.png
IP 143.204.55.121:0
File type PNG image data, 71 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 60b9ad5e285cd3f1acdd3421f221988b
02dbabf1450da1eb4ef7ed2d5525f9f1f53e4aa2
d862a29baa861ea1b4aa89b9574ed1d0928a324947eeca509604d91524bb7f53
GET /sweeps/gcspinner/EN/GC-EN-Spinner/ix-g.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 16034
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:23 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 10 Sep 2022 17:18:10 GMT
ETag: "60b9ad5e285cd3f1acdd3421f221988b"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mIXIY3DUloFVezemF9uZkRlM1C3ptKxEff4FK6Q0Pg7yW2qXdHEVxA==
Age: 64120
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/like_user_1.jpeg
143.204.55.121200 OK 1.3 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/like_user_1.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 2aa0d43e70d60d76ac4bdff139f8c7cb
d7e3433297ad90f5d99249aee29b645265c9f3eb
e7c85bfa7ba6d75dd0de72e51da2e185351ced82b32090ab35395766ef4849fa
Analyzer Verdict Alert urlquery Scam / Brand infringement
fortinet Phishing
GET /sweeps/gcspinner/EN/GC-EN-Spinner/like_user_1.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1293
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:30 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 10 Sep 2022 17:18:10 GMT
ETag: "2aa0d43e70d60d76ac4bdff139f8c7cb"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vm4b502S51Y0bM2mIxroXidgwXNEZc4K2VvKRo2Q_DN-acQlbYRoVw==
Age: 64120
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/7.jpeg
143.204.55.121200 OK 4.3 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/7.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash b067b7287cb30c70952a17bb2c7b2ba8
86208b6a77c998a3121de739716bf30d108d4768
b6c91b9d5eacc1dcc9c4331d865a7f26474a96a18a1d4d80aee0bbdeb7ffb775
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/gcspinner/EN/GC-EN-Spinner/7.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 4333
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:15 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 09:04:27 GMT
ETag: "b067b7287cb30c70952a17bb2c7b2ba8"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gAXnpBXf0hBz-hFnaChPNPQ3dbwfGB3a2OqwDzPK8g4Ouz_LQ0SA0g==
Age: 7343
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/pw_ix.png
143.204.55.121200 OK 117 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/pw_ix.png
IP 143.204.55.121:0
File type PNG image data, 502 x 502, 8-bit/color RGBA, non-interlaced\012- data
Size 117 kB (116858 bytes)
Hash d43fde05ae0717361faaa6520a8cce7f
846043a1567c2ca9878824f221cc174a71d177cc
349c952851c8a464e3364ce23cf6a6ee92d98ffa64e4da5859120175e14ac39b
GET /sweeps/gcspinner/EN/GC-EN-Spinner/pw_ix.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 116858
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:23:47 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 10 Sep 2022 17:18:10 GMT
ETag: "d43fde05ae0717361faaa6520a8cce7f"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: o83ZHTIpuHx6JZv1ejY2-Rkr-eUDIQgrhT8MUcAustdaC69FfIYp1A==
Age: 64120
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 11:06:49 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
hop.greenbluefrog.click/js/pub.min.js
108.178.23.115200 OK 1.5 kB URL HTTP/1.1 hop.greenbluefrog.click/js/pub.min.js
IP 108.178.23.115:0
File type ASCII text, with very long lines (2752)
Hash 31c303586c1b78e33984bd252b8e2644
8083e2aad4cbf8242a4e6fb53657d49552b85f82
d2c713c2734353dc0ef2896d057021e9b04f35bb7c851d920d390941769c66be
GET /js/pub.min.js HTTP/1.1
Host: hop.greenbluefrog.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 11 Sep 2022 11:06:50 GMT
Content-Type: application/javascript
Content-Length: 1482
Last-Modified: Fri, 09 Sep 2022 11:46:08 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "631b2780-5ca"
Content-Encoding: gzip
Expires: Mon, 12 Sep 2022 11:06:50 GMT
Cache-Control: max-age=86400
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/ixo.jpg
143.204.55.121200 OK 6.0 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/ixo.jpg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 82x117, components 3\012- data
Hash beaf70ea3651f5f2a72ff3a47e4a9be0
c857163c6ab49fdcbcf859492c547474d3e1169a
b949c00462170df489472ca49496d64cfa3d1b7365cece92d65faa4c124c02a6
GET /sweeps/gcspinner/EN/GC-EN-Spinner/ixo.jpg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 5964
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:28 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "beaf70ea3651f5f2a72ff3a47e4a9be0"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: O-hszHswQ8DPA3UXWjiwaOdnSioF8uts9c7EbvnOv2bGsX6GrbUmEw==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/3.jpg
143.204.55.121200 OK 2.8 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/3.jpg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 50x50, components 3\012- data
Hash c0435c5a0b8dd743d5b207bccd854567
7b3b222278eddf3448fe2a8aae43e8bec306da91
13c64405bb582243ef141e364556f17e40d2339d8908ef1243f64580535c8911
GET /sweeps/gcspinner/EN/GC-EN-Spinner/3.jpg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2798
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:12 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "c0435c5a0b8dd743d5b207bccd854567"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hj3DLnDvJxc3HPV_KTE5AaI3oosNQhMtKc9Ms0iSzisJK9JNNnD9Rw==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/main_script.js
143.204.55.121200 OK 1.0 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/main_script.js
IP 143.204.55.121:0
File type CSV text\012- , ASCII text
Hash 995c66b3181c80b758ea2ba249700485
74bf428195fd59c5479a0d43ff0048eabac4159e
555c9add9fc08d843ed03b20c28e98b9534c1452597ae8b347230bd065ce8df5
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/gcspinner/EN/GC-EN-Spinner/main_script.js HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 11 Sep 2022 09:04:27 GMT
ETag: W/"dc9a27d01c1e53204a61a4a78b5bec2a"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fLZJhf-MhoBdAUnAgNLtk6Cnqp_XZftHFnB43_nw8ycGQDbI3nd-jg==
Age: 7344
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/2.jpg
143.204.55.121200 OK 2.0 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/2.jpg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 50x50, components 3\012- data
Hash 2d38216bf35b56368815f026724ad7a6
aa431f11b160c1d6de7c00cdd294eb3082deb8b2
7d32ddf4f92f6fb856eac6ea9db1bf4e3e7d8ce35c27388a814a0e3da9818817
GET /sweeps/gcspinner/EN/GC-EN-Spinner/2.jpg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1997
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:11 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "2d38216bf35b56368815f026724ad7a6"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LdnBN0FA_naPfFZm98eWUdFQpPsHB-nfUhErmKC2ZRS-Y63JZCzFsQ==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/ix-s.png
143.204.55.121200 OK 26 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/ix-s.png
IP 143.204.55.121:0
File type PNG image data, 82 x 117, 8-bit/color RGBA, non-interlaced\012- data
Hash ce5cb943bc5e6808c15018af7d135f9d
e790639667ef11fcae703eb7e0e53664fe0f66a3
8e90efaaea6f98000afe88dab3145b9508755b36951d6f20d246896e54e1a30d
GET /sweeps/gcspinner/EN/GC-EN-Spinner/ix-s.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 26207
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:26 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "ce5cb943bc5e6808c15018af7d135f9d"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vxBI8WTqA2v8h601Ln_s9mzJtcMZdZlCqlO-zBnUh8YTWaukExxUxA==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/like_user_2.jpeg
143.204.55.121200 OK 1.2 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/like_user_2.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash f9299c2023539a8f27a6e1b12ed260e5
046baf9bcd1bbdf9d51ca63e3899ea2e7f5de0b2
ba0c57dd9fbd100462ac62c8c8b3156caf1283d250fb56ee8ce5b0f53e575ccd
Analyzer Verdict Alert urlquery Scam / Brand infringement
fortinet Phishing
GET /sweeps/gcspinner/EN/GC-EN-Spinner/like_user_2.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1216
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:32 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "f9299c2023539a8f27a6e1b12ed260e5"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6Le9wF-LDitHpVl7aWJHwKnRJYPJAra60WMIwiMa04m5prdz56BDLA==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/4.jpeg
143.204.55.121200 OK 4.5 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/4.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash ce65860a3580eeb0663aeef0879d9b45
de58e30241ef04769d91e23462eb0b7660fc4888
7a9408bac7aff3dbb3053960f1fda2cd13b39c965105c33556897c5c01e94468
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/gcspinner/EN/GC-EN-Spinner/4.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 4515
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:13 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "ce65860a3580eeb0663aeef0879d9b45"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kLisx6UAORildp2fsB8RqyOXPZc5umPnFhfrTLVKm7w8qmWntKXRMQ==
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 11 Sep 2022 10:56:07 GMT
Expires: Sun, 11 Sep 2022 11:24:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FkaeDdkngDNtZNZyeXeSS_g8o4OTFM9i-BCyV4hLUP1Bf5e-O7TvFw==
Age: 643
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 26e829ba5f754918e20cbd316dc4348e
ba198501da0812dd11ca3b38a51325b5de6cfa60
4352c25d4af7637a8435b0df6d042fc606d37a348e966b99fecce8a853b8ebc0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6066
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 11:06:50 GMT
Last-Modified: Sun, 11 Sep 2022 09:25:44 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/8.jpeg
143.204.55.121200 OK 6.1 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/8.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 4c3de954b1a95aad7726248624aad1f3
7022b5b701205dd9a5c0f2b68efa63fd519432a5
cab3a2c8b31da648fbf2594c99f9c33e77b15f1f868e778c31063fc501474dff
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/gcspinner/EN/GC-EN-Spinner/8.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 6097
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:16 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "4c3de954b1a95aad7726248624aad1f3"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mNgaKBBM434ZJTPnst-eprTA3BG-9-GoX2h1sGBCYGLQrnco1USX-g==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/menu_2x.png
143.204.55.121200 OK 124 B URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/menu_2x.png
IP 143.204.55.121:0
File type PNG image data, 40 x 36, 8-bit gray+alpha, non-interlaced\012- data
Hash 8f68efd9388ccd80b43759b2ed542305
9f2cf96efe3bdec2ab64bc51856619cc02958fe6
455b82fa1e54fc88fe0699eabecb02155f1d6228e0ae3d7f72e1abe92dae8f3c
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweeps/gcspinner/EN/GC-EN-Spinner/menu_2x.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 124
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:23:44 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "8f68efd9388ccd80b43759b2ed542305"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ovnJ1ZzubyUqi4oLak44W3VOnNaZv5J64RvjShRNlA7HPVJ_phY8sQ==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/1.jpeg
143.204.55.121200 OK 2.6 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/1.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 50x50, components 3\012- data
Hash cc828ee97beb67097fc7ab536c4af12c
84fea9004c5e5ac398956b2839fc4cd16d6a93ee
a00457ad70d21f9a9e8ab218b4b2174a3fe7ec928f3bcc9e44f994fa382d7d94
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/gcspinner/EN/GC-EN-Spinner/1.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2561
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:10 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "cc828ee97beb67097fc7ab536c4af12c"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: COr_2ulaJAbFQEz2T2j-AfrwehwD5SP2Px57jl2Zhz-LxL-iqlcCfQ==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/notify_2x.png
143.204.55.121200 OK 229 B URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/notify_2x.png
IP 143.204.55.121:0
File type PNG image data, 36 x 32, 8-bit gray+alpha, non-interlaced\012- data
Hash 988234626ae7a880ed9c6a92f6336c0f
173967c2b59baed4a06997d874aba32ab65da201
4566dd8f59a09f51415a7c8955f48f75298522fc6db554bc1a59ad79c3e3e314
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweeps/gcspinner/EN/GC-EN-Spinner/notify_2x.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 229
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:23:45 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "988234626ae7a880ed9c6a92f6336c0f"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ApMVJpZ_VfNq5yWShZrqcxtDHHYXUD7iwCNv__Q24zRhtOkg5EVwrg==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/spin_prize2.png
143.204.55.121200 OK 2.8 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/spin_prize2.png
IP 143.204.55.121:0
File type PNG image data, 142 x 173, 8-bit colormap, non-interlaced\012- data
Hash f278c8d30fc51b72e0774b9ecb49214c
03b574db82b31ee5758eb5093fda8ea25d1b00d8
43f3e6d7e7b011430b39020bc5ff8fe6be2947100c597de44ca549ea96a0fd7c
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweeps/gcspinner/EN/GC-EN-Spinner/spin_prize2.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2814
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:23:48 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "f278c8d30fc51b72e0774b9ecb49214c"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9BdO2eub0-9EV33VfjXl7p_9_DUoMa0TQqEtEaDvNrEYEvoypNiOgQ==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/6.jpg
143.204.55.121200 OK 2.3 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/6.jpg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5], baseline, precision 8, 50x50, components 3\012- data
Hash 69e5cc03921c4062d38f919618a099c9
3cd7704a62d2307abd2b031117e66e5675b4e870
ca0ebc484c7b346381f4e52721dc1495e7b1b7421c6d471712b248a19265ce78
GET /sweeps/gcspinner/EN/GC-EN-Spinner/6.jpg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2263
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:14 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "69e5cc03921c4062d38f919618a099c9"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TXAn5DY5h86v2aamT69MlvBDk8qAmQcONd513VWVvA2TsRf2ZAl2Fg==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/comment_action_2x.png
143.204.55.121200 OK 641 B URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/comment_action_2x.png
IP 143.204.55.121:0
File type PNG image data, 24 x 120, 8-bit colormap, non-interlaced\012- data
Hash e9b3872b3e63e19728176d45f0aa6986
b638f89d5d80c4cd65327da973c52f778e30bd55
a3f59e07404f1745bed88a314113a86da376526e7e1e555c99b3e249178c6ba5
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweeps/gcspinner/EN/GC-EN-Spinner/comment_action_2x.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 641
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:20 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:51 GMT
ETag: "e9b3872b3e63e19728176d45f0aa6986"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xnO4mvxpcgfSWuLHODuBxjpQsvN74OVza5QE1hT19m-NO1iD9LqXPg==
push.services.mozilla.com/
54.148.228.45101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.228.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mDX0o7czUDSmRE0TmHi5uA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: a6wqHLUa/byndQEWVHCk7npQ9kc=
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/action_icons_20px_2x.png
143.204.55.121200 OK 1.7 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/action_icons_20px_2x.png
IP 143.204.55.121:0
File type PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data
Hash b699975b5fe73b087e711a33ff24ee1e
0e33cc5c32a5e7d18440751e3946076664caaf53
4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
GET /sweeps/gcspinner/EN/GC-EN-Spinner/action_icons_20px_2x.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1726
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:17 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:52 GMT
ETag: "b699975b5fe73b087e711a33ff24ee1e"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ObKhU77uFFl4lTJeyfBctLela_GWZ9VfXJLVf-XbG1wxqlYH1MG_rg==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/clip_footer_3.png
143.204.55.121200 OK 2.5 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/clip_footer_3.png
IP 143.204.55.121:0
File type PNG image data, 52 x 59, 8-bit colormap, non-interlaced\012- data
Hash e1b626392882cc25b4d891afaa68afd4
454d7abdbc2548d04feb95436ea0ab4126b4f00b
ef3b8785199a0a640150a9d9ceb9b7cff2b118ee377ce36317d4a3e716bd944f
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweeps/gcspinner/EN/GC-EN-Spinner/clip_footer_3.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2460
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:19 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:52 GMT
ETag: "e1b626392882cc25b4d891afaa68afd4"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -Fgj0m2EApDcUaRsEucrc79go3Ug4fGczHRcJDdGZOTeXsaiyKelRQ==
www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/footer_right.png
143.204.55.121200 OK 4.9 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/footer_right.png
IP 143.204.55.121:0
File type PNG image data, 168 x 66, 8-bit colormap, non-interlaced\012- data
Hash 0e786b7344ac0b63609290a3a415fc4f
c2e77827e895aaa13522f1c5c0ef79d4caef0bb2
f044237e4439b415a4947127f26fb14b4d32cf1d32ff51fd8f0ff4d21d2692e5
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweeps/gcspinner/EN/GC-EN-Spinner/footer_right.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 4919
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 06:24:21 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Sep 2022 11:06:52 GMT
ETag: "0e786b7344ac0b63609290a3a415fc4f"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NdElRffcusHH6uS-oLbFFaPF68EkZ06n2hrBsVkDdzrFqpiijjRNkQ==
www.your-lucky-days.xyz/favicon.ico
143.204.55.121403 Forbidden 243 B URL HTTP/1.1 www.your-lucky-days.xyz/favicon.ico
IP 143.204.55.121:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 2edf2409c2cb89c970c968b320796e7a
a01e8ca01cddaed561ce185cc145413e046163e6
73c03adb3cc637e797218adf6b270202f54e590b1bdba936c37f777827a7b412
GET /favicon.ico HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/gcspinner/EN/GC-EN-Spinner/index.html
HTTP/1.1 403 Forbidden
Content-Type: application/xml
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 11 Sep 2022 11:06:51 GMT
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8atn6QRjzsqQOQRTUNpdX2fKh2rN5GuBgvdi_Jy_iZoIQ0NlnSB5ig==
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5791
Expires: Sun, 11 Sep 2022 12:43:23 GMT
Date: Sun, 11 Sep 2022 11:06:52 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5791
Expires: Sun, 11 Sep 2022 12:43:23 GMT
Date: Sun, 11 Sep 2022 11:06:52 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5791
Expires: Sun, 11 Sep 2022 12:43:23 GMT
Date: Sun, 11 Sep 2022 11:06:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8625e0707046e7a3715a8dbb40b1cae2
0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78
abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13568
x-amzn-requestid: a2fadcbe-350b-4a06-9f9c-ee2da40bb285
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEESeHA_oAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317e742-4740aa3f4ebd479e7a4886ed;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 00:35:14 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: jbF2ZaJUhIoJV-o4f6iviFyUnoDW4R0KHTfC5NySmITnsLbD5iJrPQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:11 GMT
age: 48401
etag: "0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F811981ca-4b3f-4f29-af80-fe3d2cd10dcc.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F811981ca-4b3f-4f29-af80-fe3d2cd10dcc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2d7f23ba6ae7c64ba15b344a073722bc
7e0ea8123a7fc1629ef72534112905cc635b0e25
060b7282494cbccf9ab058ef9996f823445f3edaddaec36df1a710330c2cd2f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F811981ca-4b3f-4f29-af80-fe3d2cd10dcc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6843
x-amzn-requestid: 1ebc1cef-617c-4673-9b3f-e09ea2da82d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k-HeYIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-4a62b8435cd69f0329a3ba2d;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: RrU6NvM9VdNfPn9aZnrmQB_p9va83P_OaKVnPRGQZizaYm3LYR9Z_g==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:54:02 GMT
age: 47570
etag: "7e0ea8123a7fc1629ef72534112905cc635b0e25"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c35b7f5f8e1b0b24570a41b7d18533a
c5b82c9d77851820b8d206573d5c03cd36d27a20
bb2456b31c48e6ebc9595c2bb9972b74531e93dd02ec4571d5af614f2d116ec7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6109
x-amzn-requestid: 271b006e-9d17-46ba-9eed-22fd638c4e9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2AhHZgIAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d039c-444e7d6b22f2a08f7215a986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z1ZoYLM2Mj7teQm-1Dz80IZxKGqzuzAoEiT85R3RldbJwO6iJR-JJA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:44:01 GMT
etag: "c5b82c9d77851820b8d206573d5c03cd36d27a20"
content-type: image/jpeg
age: 48171
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e407da4d97d497925b1ab523fd416787
166741631fb93d109b18dde6d316b3fa3276aa8f
707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mfmj40aUc8l5RPk56M-pbqTwhde_HzYcmN5MDrfv-WFPhbpoShWYNw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 22:14:30 GMT
age: 46342
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b83fa95ed30533299bc754adaced672
27eda8377e1c00c53fb66b4e2fa4f0dd6c7020af
bc59e5ba6abafd8e7b10d6f8ae2269cbf739a4b28f9cbbf3adfc29a9195e6985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8626
x-amzn-requestid: af5e61ab-4f7b-4b03-8413-5d750b17e0df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLj9TH7vIAMFVMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ae6bb-309144fb6e02564c4fcdb966;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 07:09:47 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: bFBgfMdRkPk-B4mnyk3sgdTEXhGAlHAaMl1MBVtlxzAE8iMtqVwdiA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 08:06:33 GMT
age: 10819
etag: "27eda8377e1c00c53fb66b4e2fa4f0dd6c7020af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234d0658-5bd0-4cc9-a828-3300a0005951.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234d0658-5bd0-4cc9-a828-3300a0005951.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash de6622cfd812509b317913e1a5e9cfc8
84e4a39c92ab111cc1072f898990cea6b05da6cf
6d41b564c2e15215d05ba74ba2ae08abf74f6aef9e58e808d31afc6d1ba123af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234d0658-5bd0-4cc9-a828-3300a0005951.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9319
x-amzn-requestid: 44d731e9-1da0-4ad0-9fbb-1b170fac3bf0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTxaFtpIAMFWAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c666f-2e155359546dae806f6dbfe2;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:10:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: a4f99UhuEWfzdGyMv22TnGq98xCUpM1at-u8BNxNrDUSNC4yfHLHVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:34 GMT
age: 48378
etag: "84e4a39c92ab111cc1072f898990cea6b05da6cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2