www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
54.230.111.87200 OK 3.7 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
IP 54.230.111.87:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1038)
Hash e1042b0ffd1db91ff09d4cc14fba7f7c
2fc59d21eff0ec77a70591a99e9ce96e62cb8ebd
07ebde59c5b791134f8344a3cc3346d290356fcc7cab88516a61745d957dd7ca
Analyzer Verdict Alert fortinet Phishing
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 03 Sep 2022 03:19:53 GMT
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
ETag: W/"263f258a20f851adfb5da42e89933174"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: R2H9Rvb8xwZuk5tpC4C_eHLiigP9peCg9EU1oXZMXFpoguvWc9_GcA==
Age: 46287
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 03 Sep 2022 15:43:04 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DrjnLe25iag763M5tSECL31oqsz8m3tZZJYLgZ77YWRWSytTiDICmQ==
Age: 1695
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5129
Expires: Sat, 03 Sep 2022 17:36:48 GMT
Date: Sat, 03 Sep 2022 16:11:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tDibaMEt0zUazPgMVgwFPzwELaTlGaIWJPBWhuWgjpcGje8BdjJiIA==
age: 53762
X-Firefox-Spdy: h2
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444
54.230.111.87200 OK 1.1 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444
IP 54.230.111.87:0
File type ASCII text, with very long lines (3495), with no line terminators
Hash ba8a1435ff223b2909706f678310def7
6d945ed87239f4b1544ee080873e3aacd70ac653
cafe68f02f3d4331a25a26a8419497011c8d18b583064f9ad7eacc167a5f5081
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444 HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:57 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 03 Sep 2022 16:11:19 GMT
ETag: W/"cd41123a11e97e0f2444b57d180631a0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6R8iBaHG1KYqHgTQ_nY5RpjOkz3W5d3GmWQ60Yl0KxNr-Z5BLzEhaw==
Age: 30448
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/css/app.css?id=c588c17324f2be0e0ec9
54.230.111.87200 OK 33 B URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/css/app.css?id=c588c17324f2be0e0ec9
IP 54.230.111.87:0
File type ASCII text, with no line terminators
Hash c588c17324f2be0e0ec90a18f39e7d7c
69d360eddd15f527aac7f7e610346517732b7770
b83e8830b6b2f1253a78f90191cf1087e8fd7638831fd4c1376a7a6029297240
Analyzer Verdict Alert urlquery Scam / Brand infringement
fortinet Phishing
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/css/app.css?id=c588c17324f2be0e0ec9 HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 33
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:57 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 03 Sep 2022 10:00:32 GMT
ETag: "c588c17324f2be0e0ec90a18f39e7d7c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Xdgy7hNIJiQVxvo6Urv6lM4xb2jXw-9_DStg2Pra9AMsN6izg6Ggig==
Age: 22248
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/js/app.js?id=25c7309b7a59873f6319
54.230.111.87200 OK 977 B URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/js/app.js?id=25c7309b7a59873f6319
IP 54.230.111.87:0
File type ASCII text, with very long lines (977), with no line terminators
Hash 25c7309b7a59873f63197055866a6b0f
9251767e6e9d953fede4e28c086bba54f2427174
5f6eff8d5a00dbd8788f1dced2a1dcbdaa98e43b9077aabc659fd8cd271dbfb7
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/js/app.js?id=25c7309b7a59873f6319 HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 977
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 03 Sep 2022 03:11:36 GMT
ETag: "25c7309b7a59873f63197055866a6b0f"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _4VZjK4q7r9QAc4uIfpe3yDAoVcb-PEdTPv6BjcJ8ESfyBDkJ8Q2ug==
Age: 46784
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/js/landers/prizewheel-fb/app.js?id=5e93c34d94f67102a29f
54.230.111.87200 OK 52 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/js/landers/prizewheel-fb/app.js?id=5e93c34d94f67102a29f
IP 54.230.111.87:0
File type ASCII text, with very long lines (65475)
Hash f6ce42d2dccf145dc776f6af32067623
da7e829d532180bcf43ba16236c7d68f528dba00
e5a9f25689b95de3baa05376ad7423d6f517155756a57993dee2d207bee87740
Analyzer Verdict Alert fortinet Phishing
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/js/landers/prizewheel-fb/app.js?id=5e93c34d94f67102a29f HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 03 Sep 2022 11:12:17 GMT
ETag: W/"3f82e29f02fe84cf86760e8c23554a85"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KLMNTIIAndCUbG4GhVmhZWuMMm6F5WIDdAwO3wH7m-AxeGQ1Si5FdQ==
Age: 17943
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/prizewheel_spinner.jpg
54.230.111.87200 OK 32 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/prizewheel_spinner.jpg
IP 54.230.111.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1002x1002, components 3\012- data
Hash d4655cba21d806e849eed4e4119fbe1a
6453039d85005643e9d65074ca022f63b5d47cdd
90f2363aaebaf03f06fb20c6c02fb2e97497d7cd54b611281303ce7e10335ee7
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/prizewheel_spinner.jpg HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 32496
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:57 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 03 Sep 2022 10:02:14 GMT
ETag: "d4655cba21d806e849eed4e4119fbe1a"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QDODeD2Cm1CQniciPM6dz7_5jvI4_u7Xw8mpC2QrggK3n58AjIYM5Q==
Age: 22146
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/notification.png
54.230.111.87200 OK 449 B URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/notification.png
IP 54.230.111.87:0
File type PNG image data, 30 x 28, 8-bit colormap, non-interlaced\012- data
Hash bd5203f2cc9e7a9125e4575e029541b0
9fa565ab2f4b55da4735b79e529562252b3c9afe
db94c8ae725f947f20e12df29e6b6c8ade5ffcd5a7dc9ffd9be0351d963f826f
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/notification.png HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 449
Connection: keep-alive
Date: Sat, 03 Sep 2022 04:46:02 GMT
Last-Modified: Wed, 29 Jun 2022 14:16:57 GMT
ETag: "bd5203f2cc9e7a9125e4575e029541b0"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5pqFeAbzz8VaXe3aexxz3VUwInOsl8id2xZ1KOgH24UrBxrwxcM8DA==
Age: 41118
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/loader.gif
54.230.111.87200 OK 5.1 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/loader.gif
IP 54.230.111.87:0
File type GIF image data, version 89a, 50 x 50\012- data
Hash ed786659a534e0d183c09a90c50abc9d
a6c3d90bfaa86a7cda490bc5d04c8939c31a414e
cbaeb154dcb93bff5f6e382cede5d51a11175a2295e56bb2790611910280ba97
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/loader.gif HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 5083
Connection: keep-alive
Date: Sat, 03 Sep 2022 01:18:06 GMT
Last-Modified: Wed, 29 Jun 2022 14:16:57 GMT
ETag: "ed786659a534e0d183c09a90c50abc9d"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FrZ7hclvbK_yJ99iBMYw0YUi66UM6lZPEo8DJ3uNgnN2dufvwnsHyg==
Age: 53593
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/prizes/iphone-12-pro-max/default@0.5x.png
54.230.111.87200 OK 32 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/prizes/iphone-12-pro-max/default@0.5x.png
IP 54.230.111.87:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash c562f63263ffff2688791c38014b36bc
59fe19592cb3f6a2709c418026f0a1ddb12c1314
c331ce815fcd0ed99bc592c082eed6e51efd0f107d2ae967021d0273def59ae8
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/prizes/iphone-12-pro-max/default@0.5x.png HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 32266
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 03 Sep 2022 10:00:13 GMT
ETag: "c562f63263ffff2688791c38014b36bc"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gwHMBFq5oL7dnNtS-nS9v5m0bt5n3Lzz8ZRCtu8h5SiaoABxPgYf1A==
Age: 22267
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 16:11:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/prizewheel_static.png
54.230.111.87200 OK 3.4 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/prizewheel_static.png
IP 54.230.111.87:0
File type PNG image data, 1002 x 1002, 4-bit colormap, non-interlaced\012- data
Hash dc484e0043b5ff6191b1880c8779863c
a5b67e3dff3dea3940eed090431aecbb36611b1d
30bc059973d84a6e1d22d16747bce062025561f2555cdd9cec012a87866abcb6
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/landers/prizewheel-fb/prizewheel_static.png HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3370
Connection: keep-alive
Date: Sat, 03 Sep 2022 08:25:35 GMT
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
ETag: "dc484e0043b5ff6191b1880c8779863c"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cqRBInVgSl5J6-UWuuatJYu0gM3S_eKRGJtW31toDtTV5OtOE6LWOw==
Age: 27944
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/3@0.25x.jpg
54.230.111.87200 OK 2.7 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/3@0.25x.jpg
IP 54.230.111.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 2790f79b7e764407ae4b87a9dc30734b
30f0a1e4d30ac25108f2d0487f49944fbe630b72
8970ba9af5b39727ac25d42ab540c42ae7f58de4011fadb8efd2f5f317a8d575
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/3@0.25x.jpg HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2727
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 03 Sep 2022 07:43:54 GMT
ETag: "2790f79b7e764407ae4b87a9dc30734b"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qJNCh-J-gkTpsFvMIYB52o5_jeh91pMs9E_mu1L6t6RwrGGu8jeg6g==
Age: 30446
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/3@0.25x.jpg
54.230.111.87200 OK 2.5 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/3@0.25x.jpg
IP 54.230.111.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 2c188d082f97b0a5b29c92dbaf7a9787
f2a3828b68ba4d06d450832a977c48a22360d5eb
afc758b894177d4003b5d02d80cd023429c99cfc3cd880804570d237cf6a96f0
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/3@0.25x.jpg HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2518
Connection: keep-alive
Date: Sat, 03 Sep 2022 08:25:35 GMT
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
ETag: "2c188d082f97b0a5b29c92dbaf7a9787"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: v_um8XCdQbCRGsKyTsiPWQ00fRF0S6AD7P0icFx2uTaO1bHRp5Y-5w==
Age: 27944
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/6@0.25x.jpg
54.230.111.87200 OK 2.8 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/6@0.25x.jpg
IP 54.230.111.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash af242991b9a56424739c63a6bd4090a7
7b41b3b2cfbbe69a865efa8863883bf029738b6e
c53bda952fa4ca1869dfb4fd7db948ef87f1a8c8f2e6633e2320465f01f0829f
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/6@0.25x.jpg HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2766
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 03 Sep 2022 10:20:31 GMT
ETag: "af242991b9a56424739c63a6bd4090a7"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nuHG-IyJEcCG21NZIBfTYoED3G1G559K24yARhlaRCpiyvswNXiYcg==
Age: 21049
deefauph.com/pfe/current/tag.min.js?z=3507687
139.45.197.251200 OK 6.1 kB URL HTTP/1.1 deefauph.com/pfe/current/tag.min.js?z=3507687
IP 139.45.197.251:0
File type C source, ASCII text, with very long lines (14904), with no line terminators
Hash b1f0d82760a522bb71fafb0254a0795e
1bc165979d58ccbe221d7ab5b431560edec23f8a
14476d56f2354230bf551b00da0a5afc0c565da457860c5c6586586f9adfe46a
GET /pfe/current/tag.min.js?z=3507687 HTTP/1.1
Host: deefauph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 16:11:19 GMT
Content-Type: application/javascript
Last-Modified: Mon, 22 Aug 2022 12:18:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63037403-3a38"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/5@0.25x.jpg
54.230.111.87200 OK 2.0 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/5@0.25x.jpg
IP 54.230.111.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 732da0e5f3968ec3d9014a6bbb62c04a
5d306c8778fdcac19f03542fccaf31df1cb8a783
d3eefd5709b25e1bb1129cccb1da22e54816cb2d15a2ed4cfa045b57579a7ef8
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/5@0.25x.jpg HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1960
Connection: keep-alive
Date: Sat, 03 Sep 2022 03:19:55 GMT
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
ETag: "732da0e5f3968ec3d9014a6bbb62c04a"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qf67lhVrmuyyZlL5zoD923f6AUCSVKwI-RxILtSx6CLzJzoXS9GBww==
Age: 46285
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/2@0.25x.jpg
54.230.111.87200 OK 2.1 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/2@0.25x.jpg
IP 54.230.111.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 0f15632c24d4646c58f30feaa3baaa8a
a7f319366432f5a63d7f11d30b0a6c9cb6398b64
4118d09fb21a7f34160f470078f6dcba042e8a07e2b4e32de12a4dcd9c5e7da8
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/2@0.25x.jpg HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2053
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 03 Sep 2022 07:43:54 GMT
ETag: "0f15632c24d4646c58f30feaa3baaa8a"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UkDe4-mHiIeYZUgZ2xkti2slNU-iDrysH62aypvJJX1J5931zvbGnw==
Age: 30446
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/prizes/iphone-12-pro-max/proof.jpg
54.230.111.87200 OK 23 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/prizes/iphone-12-pro-max/proof.jpg
IP 54.230.111.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 339x450, components 3\012- data
Hash 029d38095e06ced0688fd67a58e70781
b5bdaddeb39b947c35f883f001f34dd163bcb362
5e41534f027f676ce89db3b87319ffbdc1a1e7515e379f80f476e0989fa4bcc1
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/prizes/iphone-12-pro-max/proof.jpg HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 23152
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 03 Sep 2022 10:02:14 GMT
ETag: "029d38095e06ced0688fd67a58e70781"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YciI0FEA59o3mPc12zCDXlm4ljS4aCqSL2lBwpUPHWf-FHYfZRZWJA==
Age: 22146
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/9@0.25x.jpg
54.230.111.87200 OK 3.1 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/9@0.25x.jpg
IP 54.230.111.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 4c30d4f61201b822adcfa58dbe32389c
9d9edd23a3b074135d9e043b5d1e52d8dbe29c91
19d491c137daf159170ed6d6340c33b11806347b18b2e89840989b914346d9f4
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/9@0.25x.jpg HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 3146
Connection: keep-alive
Date: Sat, 03 Sep 2022 06:38:29 GMT
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
ETag: "4c30d4f61201b822adcfa58dbe32389c"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NPAaMfYVgSyARXagV65JTiJ1nSHfkErS-COwrQAI4q7ficG9U6858g==
Age: 34371
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/fb-like.svg
54.230.111.87200 OK 2.1 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/fb-like.svg
IP 54.230.111.87:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4627), with no line terminators
Hash 6339f263a7bd6246056bda98ae188336
60b93c1930cef992fac533e306c6e1033f95e028
0068899ef50e4bcb1827c1ce475827d3d82e2ddd8a24e578a5c669a613aa7fa2
Analyzer Verdict Alert fortinet Phishing
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/fb-like.svg HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:57 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 03 Sep 2022 16:11:19 GMT
ETag: W/"765203989756e91925e8f947e660b644"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KE07Yj-KLu9hYIElxxPjUL8Wl-XRiP9PpjtuKofehdvlQGSGpnNr9g==
Age: 35888
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/1@0.25x.jpg
54.230.111.87200 OK 2.8 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/1@0.25x.jpg
IP 54.230.111.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 9ef452251daa9ff9fbdc5fe827a35061
2cb40a02efce5fd8772f57b8e9737018fed3f9ba
355126576c7a0bdbbe771a2b039d093c855efe6805941a36456324a2076e2ce1
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/female/1@0.25x.jpg HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2781
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 03 Sep 2022 10:02:14 GMT
ETag: "9ef452251daa9ff9fbdc5fe827a35061"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EoYo1eYanYV62bJK_MGlVHlkEfJVFcO_p5CcRBvNurDyVKnlQpQaKg==
Age: 22146
www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/10@0.25x.jpg
54.230.111.87200 OK 2.3 kB URL HTTP/1.1 www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/10@0.25x.jpg
IP 54.230.111.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 2ec37a714ba9202b2492cc1eff504041
29d005604784110044c80c13610ec1fe946a7d83
278b0f8b52650d39e549fc69ea49d62d3bdd0c41b3ffd939da265842b6e40369
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/img/profiles/african/male/10@0.25x.jpg HTTP/1.1
Host: www.besquari.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besquari.xyz/sweepstake6/sweepstake-notix/sweepstake-notix/pop-script/Nigeria-spinwheel-popscript13/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2302
Connection: keep-alive
Date: Sat, 03 Sep 2022 03:19:55 GMT
Last-Modified: Wed, 29 Jun 2022 14:16:58 GMT
ETag: "2ec37a714ba9202b2492cc1eff504041"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Dth7NGnGmb6F7ag_SXbrGBpnTUtVcVqZW7TLYLKAjUcV9t1U3qS4iw==
Age: 46285
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dd96e11718a7cf890dbaab9b8eb25e83
927c6d72d1b4b1171d10b234b417cfb96d9800ee
a7487b4826ee5e8d0b84193f5f686aa63294862a492e422111efd87a97c4f155
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A7487B4826EE5E8D0B84193F5F686AA63294862A492E422111EFD87A97C4F155"
Last-Modified: Sat, 03 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13379
Expires: Sat, 03 Sep 2022 19:54:18 GMT
Date: Sat, 03 Sep 2022 16:11:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dd96e11718a7cf890dbaab9b8eb25e83
927c6d72d1b4b1171d10b234b417cfb96d9800ee
a7487b4826ee5e8d0b84193f5f686aa63294862a492e422111efd87a97c4f155
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A7487B4826EE5E8D0B84193F5F686AA63294862A492E422111EFD87A97C4F155"
Last-Modified: Sat, 03 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13379
Expires: Sat, 03 Sep 2022 19:54:18 GMT
Date: Sat, 03 Sep 2022 16:11:19 GMT
Connection: keep-alive
deefauph.com/zone?pub=0&zone_id=3507687&is_mobile=false&domain=www.besquari.xyz&var=&ymid=&var_3=
139.45.197.251200 OK 720 B URL HTTP/2 deefauph.com/zone?pub=0&zone_id=3507687&is_mobile=false&domain=www.besquari.xyz&var=&ymid=&var_3=
IP 139.45.197.251:0
File type JSON data\012- , ASCII text, with very long lines (719)
Hash de78a16d987b883e407098564f37de38
1c0e210f37c120761f8f97b7f4f47ac6a277359a
cb7c74086b2338d2f834a5d7842632ee26bd1ea9cd819f0bd54160d72466fe4b
GET /zone?pub=0&zone_id=3507687&is_mobile=false&domain=www.besquari.xyz&var=&ymid=&var_3= HTTP/1.1
Host: deefauph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.besquari.xyz/
Origin: http://www.besquari.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 16:11:19 GMT
content-type: application/json; charset=utf-8
content-length: 720
x-trace-id: 7748ff98a0f6ce24b29014b0dfb4bf5e
access-control-allow-origin: http://www.besquari.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 03 Sep 2022 15:38:16 GMT
Expires: Sat, 03 Sep 2022 16:38:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Bi4DyQPG0vaeAVyCTr5Afp96G7CKbsS1b6jHQYQY6hKyvC9PV7qpUA==
Age: 1984
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fc12f0a98aa28ccb56e0b56d7e40ded
f7efcfb8b4f4aa40268bada3fec380820a70ee35
a34aa9b7db949a583c3f1b4d87fed415a11d119c9615b5e710c3125173f8a277
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6323
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:11:20 GMT
Last-Modified: Sat, 03 Sep 2022 14:25:57 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.165.41.15101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.41.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KiuWGFpPajpdrwrdgqOH2Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5poz9ppIUiypMJI/abhIhIW7TD8=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5013
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 16:11:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5013
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 16:11:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60769237af4f32c663d494d91a672d08
31305131f340191799484f212e15513bd1204e88
6df36e459f3a2d0271732b645009b116e6671363f6c3050d22bbfe2d911a77bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4994
x-amzn-requestid: de39357f-d378-4bb8-b4d9-7dd4f82fbb58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xgj-kEHvoAMFyBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309b390-119fa01e254e89cb39a1b794;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 06:02:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1yjBt3dqEztIRHo4yR3ZzI67J4lWUMS8R44-PpkeDJ4KNdCTPkmh-w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 04:45:35 GMT
age: 41146
etag: "31305131f340191799484f212e15513bd1204e88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c199f7fc2a2857dec134bfdb2673e28c
af3989072b658e2de119d006ae4ca1703468913d
e57411ba0221f6ffa7baf7c374ec790959a66d6a683fad40883ef01cf67e35c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6976
x-amzn-requestid: da379546-9525-4e13-b9f0-a6446839df66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eNeG7kIAMF4-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63127722-37399f67565b06e7111095cd;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5SORUPJgJ_gKKs4hSa4EzCCQA6B1dmyO1EC-gCBvFKl2R2hV0mYTeA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:39:01 GMT
age: 63140
etag: "af3989072b658e2de119d006ae4ca1703468913d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4cb62c7c522b71c62a97630d8330ef5
950611314b81428b3d80ff8659272cc800cf48b6
3fd0bbf8a1fe8776136d611d6b99b909b71e6af3a13f8794338af2f0026b59ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7975
x-amzn-requestid: d4695cb0-76ed-495c-b548-d7819edd6d90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwqDSGuDIAMF6kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631023ae-7ba42ae9407c626a02d10e7f;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 03:14:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: paxjtCjggGuEMbpwW1HmCdQOemdktodVUl-grweVuYke_NynMIHMlg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 03:54:34 GMT
age: 44207
etag: "950611314b81428b3d80ff8659272cc800cf48b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9669117-bdb7-4eca-9f0c-900e888a9a98.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9669117-bdb7-4eca-9f0c-900e888a9a98.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9ae49d397bc8300ce0eceda8175a3ad
087b7d14d84ebb179126c9dcd8964d22f24f30ab
b9daa2fc390a97a4bd622dbdec7fe0fff7e6527ffb844a46b9b87b2bd6e0f006
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9669117-bdb7-4eca-9f0c-900e888a9a98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13241
x-amzn-requestid: 80083a05-9884-48f8-983b-d4132d7c8a0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMHFgPIAMF9qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-16fd2f06541cb4bc027f153f;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zugAT8FgWA5gShTMABbCTZbZzaCXxM6du0zskoXn-LtzDNb5j4ByeA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:18:36 GMT
age: 64365
etag: "087b7d14d84ebb179126c9dcd8964d22f24f30ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d78cbff83c152b84864606781a29563d
8bdbc6e135be6e582d0e23754399422e3792777b
3c385de9ade05e1652ccc386e73aaccc4c223a07b81af4c5fdf3f73a166909f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14061
x-amzn-requestid: 43535b37-15c9-4a28-a7c0-f43482948382
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqlhGFX4IAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630db606-77bd935d4364050f230ba5da;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:02:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y_-knSwUodyBxS8I8PAoUexT6Z4o0Aq7m62v7HrRjm7vV-jP0VuCpw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 06:26:07 GMT
age: 35114
etag: "8bdbc6e135be6e582d0e23754399422e3792777b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23b580e2b673257d24b9c2e80c4c48ce
f3a3d835a37f9b23e7458f9b7bc721bc415b61cc
c0e3559fde3dd08cdbd360f39dddcc98dd7c1b3aebd0861cc07105872a116d11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7501
x-amzn-requestid: bf297fc4-9164-45ee-bfab-06761a52e3ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMJEP1IAMFdpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-6b3e6416133d67a83d8a1469;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: datd5eYK6nOAUdEpy_y4gcqsVmCqjP4qhzTnlJ9pSrquoYk2PPugTA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:02:34 GMT
age: 65327
etag: "f3a3d835a37f9b23e7458f9b7bc721bc415b61cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
deefauph.com/pfe/current/universal.min.js?v=3.1.391
139.45.197.251200 OK 0 B URL HTTP/2 deefauph.com/pfe/current/universal.min.js?v=3.1.391
IP 139.45.197.251:0
GET /pfe/current/universal.min.js?v=3.1.391 HTTP/1.1
Host: deefauph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.besquari.xyz/
Origin: http://www.besquari.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 16:11:19 GMT
content-type: application/javascript
last-modified: Mon, 22 Aug 2022 12:18:11 GMT
etag: W/"63037403-20481"
access-control-allow-origin: http://www.besquari.xyz
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2